Home - savannahc502/SavC-TechJournal-SEC260 GitHub Wiki

SEC-260 Welcome

Welcome to the SavC-TechJournal-SEC260 wiki! This chronicles my labs and notes from Champlain College's SEC-260 class. Some material may be copied from my notes, textbooks, online sources, and Champlain College's materials. Copying from this or any of my wikis is discouraged due to your risk of committing plagiarism and copyright issues.

Class Notes Link (Private)

Week 1: Web Foundation

HTTP Review and Web Foundation

Simple Web Server and Page CentOS

Week 1 Reading: Overview of HTTP

Week 2: Web Resources

HTML Links and URL Lab

HTTPD-Change Port Lab

HTTP Headers Lab

Telnet, NC, CURL and HTTP Lab

Week 3: GET and POST + TLS Handshake

GET & POST Capture Lab

Quiz 1 Topics: HTTP Basics

TLS Capture and Decode Class Activity

TLS Handshake Diagram

Week 3 Reading: Secure HTTP

Week 4: Certificates

Certificate Authority Lab

Week 5: Hashes and Digital Certs

Configuring Apache for HTTPS Class Activity

Decrypting TLS in Wireshark

Week 6: MiTM

MiTM Proxy Class Activity

Apache - Virtual Host Class Activity

Client and Server Side Input Validation

Week 7: Hardening

Basic Apache Hardening Lab

Week 8-9: Mod Security

Reg Expressions Tutorial Game Notes

Apache Mod_Security Configuration Class Activity 1

Mod_Security Attack Protection - Class Activity 2

Apache Mod_Evasive Lab

Week 10: PHP Shell

Quiz 2 Study Guide: Terms

PHP Shell Lab

OWASP Top 10 Assignment

Week 11: XSS Activity

Reflective and Stored XSS Class Activity

Week 12: XSS, XSRF and Path Traversal

OWASP Class Lab 2 - Gruyere

Week 13: Internet Information Services (IIS)

IIS Install and Configuration

IIS Security Research and Implementation

Week 14: SQL Basics

Install MySQL on PHP Server

Create MySQL Database

MySQL and PHP Integration Lab

MySQL Prepared Statements Lab

Resources:

Other Resources: