SP: Lab 2

SECURE PROGRAMING LAB 2: INJECTION

Here are:

• Introduction slides
• Lab handout and Lab setup files
• Checkpoint questions
• SEED Lab VM Setup Guide

The main exercise is based on the SEED Lab SQL Injection Attack Lab You are welcome to try the SEED Lab Virtual Machine on your own laptop rather than use the workstation machines. For this lab you can alternatively use Docker on your own machine, but this may need some additional configuration (we can try to help but cannot support in general).

There is no need to submit a report to us, but keep answers to the checkpoint questions for your own use, to check your understanding and when revising the material for the lab.

Please do not post solutions on any forum. If solutions are distributed it will spoil the experience for other students using SEED labs around the world.

The main place to get help is during the lab session, but we can answer questions in Piazza for a limited time afterwards, for lingering questions or for those unable to attend because of timetable clashes or illness.  Please note that attendance at labs will be recorded.