Thanks to visit codestin.com
Credit goes to www.scribd.com

Scribd
Upload
14 views5 pages

Web Security Lab Manual

The document is a lab manual for the Web Security Laboratory course (22CCP10) at NANDHA Engineering College for B.E Computer Science & Engineering (Cyber Security) students. It outlines the course objectives, expected outcomes, and a list of practical exercises related to web security, including vulnerability assessment and penetration testing. Additionally, it includes sections for student information, a bonafide certificate, and an index of experiments.

Uploaded by

Bharani Radha
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
14 views5 pages

Web Security Lab Manual

The document is a lab manual for the Web Security Laboratory course (22CCP10) at NANDHA Engineering College for B.E Computer Science & Engineering (Cyber Security) students. It outlines the course objectives, expected outcomes, and a list of practical exercises related to web security, including vulnerability assessment and penetration testing. Additionally, it includes sections for student information, a bonafide certificate, and an index of experiments.

Uploaded by

Bharani Radha
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 5

NANDHA ENGINEERING COLLEGE

(Autonomous Institution)
Erode-638 052

LAB MANUAL
22CCP10 – WEB SECURITY LABORATORY
V – Semester

B.E COMPUTER SCIENCE & ENGINEERING


(CYBER SECURITY)

NAME : ……………………………………………

REG.NO : …………………………………………...

BRANCH : …………………………………………...
NANDHA ENGINEERING COLLEGE
(Autonomous Institution)
Erode-638 052

LAB MANUAL
CUM
RECORD NOTE BOOK
22CCP10 – WEB SECURITY LABORATORY

V - Semester

Department of Computer Science &Engineering


(Cyber Security)

NANDHA ENGINEERING COLLEGE, ERODE-52


NANDHA ENGINEERING COLLEGE
(Autonomous Institution)
Erode-638 052

BONAFIDE CERTIFICATE
REGISTER NUMBER:

Certified that this is the Bonafide Record of work done


by………………………………………………of the V Semester B.E -
COMPUTER SCIENCE AND ENGINEERING (CYBER SECURITY)
branch during the Academic Year 2024 – 2025 in the 22CCP10 WEB
SECURITY LABORATORY.

……………………………….. .……….….……………………..
Staff-in-charge Head of the Department

Submitted for the End Semester Practical


Examination Held on ……………………………

………………………………. ……….….……………………..
Internal Examiner External Examiner
SYLLABUS

22CCP10 - WEB SECURITY LABORATORY

L T P C
0 0 4 2
PREREQUISITE:
• To focuses on hands-on, practical experience in understanding and
Course Objective: implementing web security practices

Course Outcomes Cognitive Level


The student will be able to

CO1 Apply the concept of web applications and analyses its needs. Ap

Analyses the process for secure development and deployment of web


CO2 applications An

CO3 Acquire the skill to design and develop Secure Web Applications that use Ap
Secure APIs
Ability to get the importance of carrying out vulnerability assessment and
CO4 penetration testing An

Acquire the skill to think like a hacker and to use hackers tool sets
CO5 C

List of Exercises (9)


1. Install wires hark and explore the various protocols
a. Analyses the difference between HTTP vs HTTPS
b. Analyses the various security mechanisms embedded with different protocols.
2. Identify the vulnerabilities using OWASP ZAP tool
3. Create simple REST A PIusing python for following operation
a. GET
b. PUSH
c. POST
d. DELETE
4. Install Burp Suite to do following vulnerabilities:
a. SQL injection
b. Cross-site scripting (XSS)
5. Attack the web site using Social Engineering method.
6. Study of different types of vulnerabilities for hacking a websites / Web Applications.
7. Study of the features of firewall in providing network security and to set Firewall Security in windows.
8. Analysis the Security Vulnerabilities of E-commerce services.
9. Analysis the security vulnerabilities of E-Mail Application
10. Case -Study

TOTAL:60PERIODS
INDEX

EX.No DATE NUMBER OF EXPERIMENTS P.NO MARKS SIGN

01 Wires hark

Vulnerabilities using OWASP ZAP


02
tool

03 REST API using python

04 Burp Suite

05 Attack the web site using Social


Engineering

Study of different types of


06 vulnerabilities for hacking a websites
/ Web Applications

Study of the features of firewall in


07
providing network security

08 Analysis the Security Vulnerabilities


of E-commerce services

Analysis the security vulnerabilities


09 of E-Mail Application

10 Case -Study

AVERAGE MARKS

You might also like