CIS283 — Web Application Hacking
CIS 283 - Web Application Hacking CIS 283 - Web Application Hacking 3 Credits Provides in-depth view of current and future mainstream risks to web applications, and web application servers. Students will learn how to use common web based application tools that will identify programmatic errors in coding that can allow a computer hacker to access information from a web based application. Students will learn the fundamentals of web site hacking, and mitigation standards to ensure that web based applications are coded and secured correctly. Fees CF Quarters Typically Designed to Serve This course is designed to serve students in the CIS program, web developer program, industry professionals, programmers, web designers, and others who are creating or have responsibility for securing web-based applications. Active Date 2012-05-24 Grading Basis Decimal Grade Class Limit 28 Lecture 22 Lab 22 Field Studies 0 Clinical 0 Independent Studies 0 Total Degree Distributions: ProfTech Course Yes Restricted Elective Yes Course Outline I. Basics of Scanning Tools, SQLMap and Havij A. Havij B. SQLMap II. Cross Site Scripting A. How code is injected and used to propagate malware B. XSS C. Cross Domain Trust a. how to abuse cross domain trust to inject malware III. Host/Network Security IV. Programming Standards A. What are the signatures of the tools B. How do you find them? C. How do you reverse engineer them? Student Learning