Web-Security

Explore how to protect website from insecurities

• Folder Flask-Login includes
  • files that simulate requests to use netcat
  • Webs folder that has 2 versions of a website:
    • flask-login requires user to be logged in to view /protected/usename
    • simple-login does not. Anyone can view /home/name
• Folder Flask-Template-Injection re-produces insecurities in Injecting Flask
• Folder Blog consists of a minimal blog that have a harmful link that posts on behalf of the user who clicks the link

CS295 Independent study Fall 2016 Website