Kursuse eesmärgiks on sissejuhataval baastasemel tutvustus veebirakenduste turvalisusest. Kursus annab ülevaate levinuimast rünnetest veebirakenduste vastu, selgitab nende rünnetemehhanisme ja meetodeid ning kaitse loomise üldpõhimõtteid

This course is an introduction to web application security. Course gives an overview of common attacks against web applications, explains mechanisms and methods of attacks and how to create defences.

- Üliõpilane on kursis levinuimate veebirakenduste ründemeetoditega ja neid puudutavate põhimõistetega
- Üliõpilane on kursis veebirakenduste levinuimate kaitsevõimalustega
- Üliõpilane oskab kasutada veebirakenduste levinuimaid kaitsevõimalusi praktikas veebiteenuste juures

After finishing the course a student:
- is able to explain common attack methods and concepts behind them.
- can explain defenses and apply them in practice against common attacks against web-applications.

Sissejuhatus. Teabeallikad, CVE. Klient-server side, HTTP-protokoll. HTTP-meetodid, GET versus POST. HTTP versus HTTPS. Sisendandmed. HTML-i ja HTML-i süstimisründed. JavaScript ja JavaScripti sissetungiründed. URL ja URL-i manipuleerimisründed. Brauseri turvapoliitika. Küpsised ja küpsistega manipuleerimine. Seansid ja seansi kaaperdusründed.
ja fikseerimise rünnakud.
OSRF/CSRF ründed. Redress-tüüpi ründed (sh ClickJacking ja CursorJacking). Paroolide turvalisus veebirakendustes. Autentimine ja autentimisega seotud ründed. Autoriseerimine ja ründed autoriseerimise vastu. Google'i häkkimine. Koodi ja käskude süstimisründed. Ründekoodi üleslaadimine, konfiguratsioon. Failide käitlemine (faililaiendid, avalikud kaustad, täitmine, loendamine jms). Failipõhised ründed - LFI, RFI, RCE, NULL-Byte jms. Logifailise põhised ründed. SQLi süstimisründed

Introduction. Information sources, responsible disclosure, CVE. Client-Server communication, HTTP protocol. HTTP methods, GET vs POST
HTTP vs HTTPS. Input data. HTML and HTML injection attacks. JavaScript and JavaScript injection attacks. URL and URL manipulation attacks. Browser security policies. Cookies and cookie manipulation. Sessions and session hijacking and fixation attacks.
OSRF/CSRF (On-Site and Cross-Site Request Forgery). UI Redress Attacks (inc ClickJacking, CursorJacking). Password security in Web Application Context. Authentication and attacks against authentication. Authorization and attacks against authorization, Direct Object Reference mistakes. Business logic implementation errors
Google hacking. Code and Command injection
Source code and structure defence. Attack code upload, configuration. File handling (file extensions, public folder, execution, enumeration and guessing). File inclusion (LFI, RFI, RCE, NULL-Byte). File upload. Other file insertion vectors (log files). SQL injection

-

-

-

-

- Dafydd Stuttard, Marcus Pinto. The Web Application Hacker's Handbook: Finding and Exploiting Security Flaws, 2nd Edition. Wiley, 2011
- Bryan Sullivan, Vincent Liu. Web Application Security, A Beginner's Guide, 1st Edition. McGraw-Hill, 2011
- Nitesh Dhanjani, Billy Rios, Brett Hardin. Hacking: The Next Generation. O'Reilly, 2009

-