Prevent Website Attacks

Session Hijacking

This project is part of the liveProject series Develop Secure Java Applications to Prevent Website Attacks.

prerequisites: beginner Java
skills learned: securely handle untrusted form data • evaluate uploaded files • safely handle sending cookies, headers, and redirects

Philip Kulp

1 week · 6-8 hours per week · BEGINNER

placing your order...

Don't refresh or navigate away from the page.

liveProject

$19.99

try it! first milestone FREE

liveProject liveProjects give you the opportunity to learn new skills by completing real-world challenges in your local development environment. These self-paced projects also come with full liveBook access to select books for 90 days plus permanent access to other select Manning products. $19.99 $29.99 you save: $10 (33%) self-paced learning

FREE domestic shipping on orders of three or more print books

Session Hijacking (liveProject) added to cart

continue shopping go to cart

continue shopping

go to cart

customers also bought these items

add to cart

Look inside

In this liveProject, you’ll write secure Java code for handling potentially untrusted data in web applications. You’ll build systems that can protect against data from web app forms; safely handle cookies, headers and redirects; and set up secure authentication mechanisms. Finally, you’ll manage your third-party libraries and identify potential vulnerabilities using Software Composition Analysis (SCA). Insecure third-party libraries can add vulnerabilities to your otherwise secure application and have been used in several recent real-world compromises.

This project is designed for learning purposes and is not a complete, production-ready application or solution.

book resources

When you start your liveProject, you get full access to the following books for 90 days.

project author

Philip Kulp

Dr. Philip Kulp has been consulting in cybersecurity for over 20 years, and working in IT for over 25 years. He currently works as a cybersecurity architect and incident responder, developing realistic approaches to securing enterprise. He also serves as a secure code reviewer, independent assessor, web application tester, and as an adjunct professor at Drexel University. He is an author and conference speaker on various cyber topics such as medical drone delivery, identifying malicious websites based on linking, and more.

prerequisites

This liveProject is designed to be accessible to Java programmers of all skill levels. To begin this liveProject you will need to be familiar with:

TOOLS

Experience with either Eclipse IDE or IntelliJ IDEA

TECHNIQUES

RegEx for search and replace
Working with Java servlets

you will learn

In this liveProject, you’ll learn secure coding techniques that you can apply to future code you write or review.

Securely handle untrusted form data
Evaluate uploaded files
Safely handle cookies, headers, and redirects
Avoid Cross Site Request Forgery (CSRF) attacks
Protect authentication mechanisms
Create secure JSON Web Tokens (JWT)

features

Self-paced: You choose the schedule and decide how much time to invest as you build your project.
Project roadmap: Each project is divided into several achievable steps.
Get Help: While within the liveProject platform, get help from other participants and our expert mentors.
Compare with others: For each step, compare your deliverable to the solutions by the author and other participants.
book resources: Get full access to select books for 90 days. Permanent access to excerpts from Manning products are also included, as well as references to other resources.