Intro to Cybersecurity: Web Penetration Testing from First Principles- In this dynamic and engaging course designed especially for high school students, we will take students on an interactive adventure into the realm of web penetration testing, where they will learn to think and act like cybersecurity professionals. This course will open and expand on students’ knowledge from Web development-related courses. Students will engage in an interactive Capture the Flag (CTF) challenge focusing explicitly on web penetration testing. This game-based approach to learning makes the process more enjoyable and engaging for students. Using Web Emperor CTF, students will take on the role of ethical hackers tasked with exploiting a vulnerable web application. Students will be tasked with exploiting a web application with several vulnerabilities typical of real-world web applications. The objective is to discover and exploit vulnerabilities within the web application while following ethical hacking principles. Students will earn points for each successful discovery and exploitation of vulnerabilities.
Students will learn about the following:
- Web Application: Critical components like login pages, user profiles, and a simulated online web application.
- Vulnerabilities: Explore vulnerabilities like SQL injection, website cloning, OS command injection, and insecure authentication mechanisms (password cracking), among others.
- Linux Operating System: Students will learn several Linux tools and commands used for penetration testing, particularly using Kali Linux.
- Reporting: Students will make a presentation on the vulnerabilities they found, how they were exploited, and any recommended fixes to foster documentation and communication skills.
LUNCH: Students staying for full day or for both morning and afternoon sessions can bring or buy their lunch. All students will eat lunch on Campus in The Commons, a small food court.
