Software Security for Web Applications

Explore software security for web applications concepts without installing anything! This course is designed for intermediate learners, providing a solid foundation of common skills in software security. Learners will build an understanding of some of the most common software security techniques currently employed. The modules in this course cover front-end security, back-end security, as well as passwords and authentication. At the end of the course, learners will be able to directly implement security techniques they've learned to their own softwares. To allow for a truly hands-on, self-paced learning experience, this course is video-free. Assignments contain short explanations with images and suggested exploration examples, building a deeper understanding by doing. You'll benefit from instant feedback from a variety of assessment items along the way, gently progressing from quick understanding checks (multiple choice, fill in the blank, and un-scrambling answer blocks) to small, approachable exercises that take minutes instead of hours.

• Front-End Security
• Welcome to Week 1 of the Software Security for Web Applications course. These assignments cover common attacks in the browser like cross-site scripting, cross-site request forgery, and cookies. The module ends with graded exercises.
• Back-End Security
• Welcome to Week 2 of the Software Security for Web Applications course. These assignments cover common attack surfaces on the back end like SQL injection, out of date libraries, improperly validated data, and denial of service. The module ends with graded exercises.
• Passwords and Authentication
• Welcome to Week 3 of the Software Security for Web Applications course. These assignments cover authentication with passwords and Oauth as well as differentiating access. The module ends with graded exercises.