Welcome to hackme, an information security exercise for COS342 (Information Security) at Taylor University in Fall 2015.

For this project, I was given some dangerously bad code and instructed to fix it as well as do a writeup on what types of attacks would be possible with this code.

You can see how the system initially looked in the very first commit. A comparison between the first commit and the last can be found here.

Please be warned that this is not production code and should only be used as an exercise in securing a web application. I may have missed stuff, and there are certainly some code style things I would like to fix (if I had time.)

You can read the writeup in project-essay.md and project-essay-part-2.md.

(Note: some of the specific examples are hosted on the local Taylor University network, so they cannot be viewed)