SEC 509 - Homeworks & Laboratory Works
This directory contains all the homework assignments and laboratory works completed as part of the SEC 509: Secure Coding & Software Security course.
Laboratory Works Overview
The coursework is structured into several laboratory sessions, each focusing on different aspects of software security and secure coding practices.
Lab 1: Threat Modeling
- Topic: System analysis and threat identification.
- Description: Performed a comprehensive threat model for the OrcunCorp Document Sharing Tool using the STRIDE methodology and Microsoft Threat Modeling Tool.
Lab 2: Cybersecurity Awareness
- Topic: Cyber hygiene and professional security certifications.
- Description: Earned several certifications from the EU-funded CYRUS Project, covering DevSecOps, password policies, and human behavior in cybersecurity.
Lab 3: Elasticsearch Honeypots
- Topic: Honeypot deployment and custom development.
- Description: Deployed multiple Elasticsearch honeypots and developed a custom PHP-based honeypot (HoneyPHP) to capture and analyze malicious traffic.
Lab 4: Web Application Vulnerability Analysis
- Topic: Vulnerability identification and exploitation.
- Description: Performed a security assessment of a target application, identifying vulnerabilities like IDOR, information disclosure, and broken authentication.