Skip to content

Latest commit

 

History

History
56 lines (44 loc) · 1.03 KB

README.md

File metadata and controls

56 lines (44 loc) · 1.03 KB
Raw

Common Threat Vectors

Demo for CMSC 121: Web Programming

SQL Injection & XSS Attack Demo

Dependencies

Run the following command in cmd:

$pip install -r requirements.txt

Usage

  1. To use, create a .env file containing the key-value pair:
SECRET_KEY="<your_secret_key>"
  1. Initialize the database by running the following code in Python Shell:
$python
>>> from app import init
>>> init()
>>> exit()
  1. To run the web application, run the following command:
$python app.py

Usage (Using CS50 IDE)

  1. To use, create a .env file containing the key-value pair:
SECRET_KEY="<your_secret_key>"
  1. Initialize the database by running the following code in Python Shell:
$python
>>> from app import init
>>> init()
>>> exit()
  1. To run the web application, run the following command:
flask run

Performing SQL Injection Attack

SQL Injection Attack is demonstrated in this application.

Performing XSS Attack

Reflected and Stored XSS Attack is demonstrated in this application.