CSY203 · Secure Software & Web Security

Learn OWASP Top 10, authentication, session management, and secure development practices. Understand how to build and break web applications securely.

13
Weeks
39
Hours
Year 2
Level
0%
Begin Course

Building on Prior Knowledge

This course builds on key concepts from Year 1:

  • CSY103: Programming fundamentals for understanding code-level vulnerabilities
  • CSY101 Week 13: Threat modeling (STRIDE, DFDs) for application security design
  • CSY101 Week 14: Security standards for secure design principles and controls
  • CSY104 Week 11: CVSS scoring for vulnerability prioritization and risk assessment

Course Curriculum

13 Weeks
Week 01

Web Application Architecture

 Week 02

Injection Attacks (SQL, Command)

 Week 03

Broken Authentication

 Week 04

Sensitive Data Exposure

 Week 05

XML External Entities (XXE)

 Week 06

Broken Access Control

 Week 07

Security Misconfiguration

 Week 08

Cross-Site Scripting (XSS)

 Week 09

Insecure Deserialization

 Week 10

Using Components with Known Vulnerabilities

 Week 11

Insufficient Logging & Monitoring

 Week 12

Capstone: Web App Assessment

 Week 13 🆕

Secure SDLC Integration & Security Testing

Assessment Hub

View your grades, review past quiz attempts, and track your progress towards course completion.

Open Assessment Hub