Assignment

Week two

Learning About OWASP

 Visit the OWASP website. 

 Using WORD, write an ORIGINAL brief essay of 300 words or more describing the history

and background of OWASP. 

 See the Vulnerabilities tab. Choose one of the vulnerabilities on the linked page and describe

briefly.

Week three

Do a bit of research on CWE, Common Weakness Enumeration.

 Write a brief overview of their scoring system.

 Pick one of common weaknesses identified on their site and describe it.

Week six

Do a bit of research on JSON and AJAX.

How do they relate to the the Same-Origin policy?

Week eight

You are the web master of a college website. You share a server with other school departments such as accounting and HR.

Based on this chapter, create at least five security-related rules for staff members who are adding web pages being added to your site. Include a justification and explanation for each rule. Rules should relate to college, staff and student, and system information security.

Week nine

Do a bit  if research into File Inclusion Vulnerability.

· What is it?

· Why is is dangerous?

· What is the difference of low and remote inclusion?

· What methods can me employed to prevent a security breach?

· What programming languages are vulnerable to this type of attack.

Week ten

You are the web master for the Republican Party National Committee. Prepare a risk assessment analysis for your website. Some questions to consider:

· Who is likely to attack your site?

· When are attacks likely to occur?

· What sort of attacks might take place?

· How can you best minimize attacks and protect the integrity of your site?

Week 11

Do a bit of research on penetration testing techniques. Investigate and document the following

· Five network penetration testing techniques

· Advantages and disadvantages of each

· One notable social engineering test

· Possible negative implications of penetration tesing