This course covers key concepts in internet data security and best practices for keeping information safe. Students will examine historical hacks, learn how to analyze websites and web architectures for classical security vulnerabilities, and learn how to defend against security attacks.
Course Delivery: online | 7 weeks | 14 sessions
Course Credits: 3 units | 37.5 Seat Hours | 75 Total Hours
By the end of the course, you will be able toβ¦
- Confidently talk about different types of vulnerabilities within the security space.
- Defend against vulnerabilities and attacks.
- Apply web security best practices to your projects.
- Understand and utilize adversarial security techniques.
- Use practical techniques for securing applications and web servers.
Course Dates: Wednesday, October 19 through Wednesday, December 7, 2022
Class Times: Monday & Wednesday at 4:00pm to 7:45pm
| Class | Security Category | Topic |
|---|---|---|
| 1 | Social Engineering | Lesson 1: How to Hack a Human |
| 2 | History | Lesson 2: Historic Hacks |
| 3 | Web | Lesson 3: Server-Side Vulnerabilities |
| 4 | Web | Lesson 4: Securing Data: Sanitization & Validation |
| 5 | Web | Lesson 5: Client-Side Vulnerabilities |
| 6 | Operational | Lesson 6: You've Been Hacked. What Do? |
| 7 | Web | Lesson 7: Cryptography |
| 8 | Web | Lesson 8: Encryption |
| 9 | Network | Lesson 9: OWASP Top 10 |
| 10 | Operational | Lesson 10: DDoS |
| 11 | - | Lab Day: Prepare Study Guide / Mock Interviews |
| 12 | - | TBD |
| 13 | 1-1 w/ Dani | Interview Day |
We will be using Gradescope this term, which allows us to provide fast and accurate feedback on your work. All assigned work will be submitted through Gradescope, and assignment and exam grades will be returned through Gradescope. As soon as grades are posted, you will be notified immediately so that you can log in and see your feedback. You may also submit regrade requests if you feel we have made a mistake.
Your Gradescope login is your Dominican University email, and your password can be changed at https://gradescope.com/reset_password. The same link can be used if you need to set your password for the first time.
Level up your web security and hacking skills by participating in up to 100 Capture the Flag Challenges. To get started, read the ACS 3230 CTF Setup Guide. Students must complete AT LEAST 33 challenges to pass the course.
Every assignment is introduced in class. The description of each assignment is below:
| Name |
|---|
| Social Engineering for Good |
| Historic Hacks Presentation |
| Jinja SSTI Exploits |
| Steganography |
To pass this course you must meet the following requirements:
- Complete AT LEAST 33 Juice Shop Challenges.
- The challenges to complete are described here.
- Any participation outside the described Rules of Engagement will result in a failing grade for the course.
- Complete and pass all in class assignments on Gradescope.
- Attend and pass a final Course Reflection interview with the instructor.
- Actively participate in class and abide by the attendance policy.
- Make up all classwork from all absences.