Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

Stanford University

CS 253 Web Security

Stanford University via YouTube


This course is a comprehensive overview of web security. The goal is to build an understanding of the most common web attacks and their countermeasures. Given the pervasive insecurity of the modern web landscape, there is a pressing need for programmers and system designers to improve their understanding of web security issues. We'll be covering the fundamentals as well as the state-of-the-art in web security.

Topics include: Principles of web security, attacks and countermeasures, the browser security model, web app vulnerabilities, injection, denial-of-service, TLS attacks, privacy, fingerprinting, same-origin policy, cross site scripting, authentication, JavaScript security, emerging threats, defense-in-depth, and techniques for writing secure code. Course projects include writing security exploits, defending insecure web apps, and implementing emerging web standards. Instructor: Feross Aboukhadijeh (


Web Security - Lecture 01 - What is Web Security? HTML & JavaScript Review.
Web Security - Lecture 02 - HTTP, Cookies, Sessions.
Web Security - Lecture 03 - Session Attacks.
Web Security - Lecture 04 - Cross-Site Request Forgery, Same Origin Policy.
Web Security - Lecture 05 - Exceptions to the Same Origin Policy.
Web Security - Lecture 06 - Cross-Site Scripting (XSS).
Web Security - Lecture 07 - Cross-Site Scripting Defenses.
Web Security - Lecture 08 - Fingerprinting and Privacy on the Web - Pete Snyder.
Web Security - Lecture 09 - Denial-of-service, Phishing, Side Channels.
Web Security - Lecture 10 - Code Injection.
Web Security - Lecture 11 - Transport Layer Security.
Web Security - Lecture 12 - HTTPS in the Real World - Emily Stark & Chris Palmer.
Web Security - Lecture 13 - Authentication.
Web Security - Lecture 14 - WebAuthn - The future of user authentication - Lucas Garron.
Web Security - Lecture 16 - Managing security concerns in a large Open Source project - Myles Borins.
Web Security - Lecture 17 - Server security: Safe coding practices.
Web Security - Lecture 18 - Local HTTP server security.
Web Security - Lecture 19 - DNS rebinding attacks.
Web Security - Lecture 20 - Browser architecture, Writing secure code.

Taught by



4.7 rating, based on 7 Class Central reviews

Start your review of CS 253 Web Security

  • Wow Meticulous in keeping the workplace clean and tidy. Charlotte makes a habit of keeping own area clean and hazard-free and also assists and encourages others to do the same. Reacts quickly and decisively in an emergency, keeping a cool head and effectively leading others. Applies professional experience and/or knowledge of people expertly to forecast outcomes with at least 90% accuracy. Others trust his judgement because the choices have usually been good. Late on fewer than 3 occasions in 6 months.
  • I'm writing this review for the students who are new to Cyber Security. This course is beginner to a very good level. You will understand the basic concepts the words which are very common in cyber security. Must watch.
  • Profile image for I_SRIMANTH
    Course is very much understandable and easy . Web security is need more attention for user privacy and cookies are carries the information that we are uses which are accessible to thirdparty websites which are harmful
  • Profile image for Subhadeep Karmakar
    Subhadeep Karmakar
    Very Helpful and detailed explanation. I loved it. Very Good explanation and easy understanding. Good lectures. Awesome teaching. Friendly Language. Good Selective topics.
  • Saba Perveen
    Helpful for students. Also a very interesting topic.

    Anyone can understand this course with basic cyber security knowledge
  • Profile image for Alicia Costa
    Alicia Costa
    Very good I learned a lot, highly recommend to beginners like me, that want to know more about this amazing world of cybersecurity
  • Amazing it is one of the most comprehensive courses I've ever found. Really good for beginners who just starting out on the web, but note that you really need to explore more about the web cause there is much more to come.

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.