The objective of this course is two folded:

1) Through this course lecture, will understand the technical concepts related to: what and Why the Web is vulnerable. How can such vulnerability be exploited. And how can such vulnerability be mitigated.

2) Through practicing labs and assignments, you will get your hands-on the web security Best Practices (such HTTPs protocol, Encryption, Hashing, Authentication, Session Management, Access Control, etc.), as well as how to conduct a penetration testing against a web application.