Applied Cybersecurity

The purpose of this course is to identify, analyse and experiment with the most common web application and web service vulnerabilities and different methods for avoiding them.

About the course

Course modules:

  1. Setting: introduction to web applications and services; typical application scenarios and associated security considerations and vulnerabilities.
  2. Analysis: in-depth analysis of the selected vulnerabilities and practical experimentation including identification and exploitation.
  3. Protection: review of different methods to protect against the vulnerabilities and practical application.

Learning outcomes

The student should after course completion:
  • be familiar with web applications and web services specifics,
  • understand the most common classes of vulnerabilities,
  • be able to identify and analyse potential vulnerabilities in applications, and
  • have both theoretical and practical knowledge on how to protect against the vulnerabilities.

Related industrial challenges addressed in the course

  • Protection against injection attacks.
  • Protection against attacks on authentication and session management.
  • Protection against sensitive data exposure.

Course Syllabus

For Course Syllabus use course code DVA446 in the search field


Daniel Hedin, Senior Lecturer
+46 21 10 70 52



The course is included in the Prompt project, which is partly funded by the Knowledge Foundation. You can find more information about Prompt here .