From the course: Complete Guide to Enterprise Cyber Defense
Join today to access over 25,300 courses taught by industry experts.
Web servers and OWASP
From the course: Complete Guide to Enterprise Cyber Defense
Web servers and OWASP
- [Instructor] Web servers are often the first thing attackers target. This is because they're commonly exposed to the internet. To help us understand the most serious risks, we can review the OWASP Top 10 list. OWASP stands for the Open Worldwide Application Security Project. They study real-world attacks and update their lists of them. Each item on the list is a common weakness in a web application, things that can be exploited to steal data, break in, or take control. Let's quickly go through the list. First is broken access control. This means users can access things they shouldn't, like admin panels or someone else's data. Next we have cryptographic failures. This happens when passwords or data are not properly protected. It could be weak encryption, no encryption, or using outdated methods. At number three is injection. This is when users' inputs get run as a command or code. It includes SQL injection…
Practice while you learn with exercise files
Download the files the instructor uses to teach the course. Follow along and learn by watching, listening and practicing.
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.