Skip to content

Madhuri-Mady/HorizonTechX_SecureCodingReview

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

1 Commit
 
 
 
 
 
 
 
 
 
 

Repository files navigation

Secure Coding Review

Overview

This project was developed as part of the Horizon TechX Cyber Security Internship Program.

The objective of this project is to identify security vulnerabilities in a simple login application, analyze the associated risks, and implement secure coding practices to mitigate those vulnerabilities.

The project contains two versions of a login system:

  • Vulnerable Login Application
  • Secure Login Application

Technologies Used

  • Python 3
  • getpass Library

Project Structure

HorizonTechX_SecureCodingReview/

├── vulnerable_app.py

├── secure_app.py

├── Security_Review_Report.docx

├── screenshots/

└── README.md


Vulnerable Application

The vulnerable application contains several security weaknesses:

  • Hardcoded credentials
  • Plain text password storage
  • Password visible during input
  • Unlimited login attempts
  • Lack of security controls

Example:

admin_username = "admin"
admin_password = "admin123"

Identified Vulnerabilities

1. Hardcoded Credentials

Risk: Credentials stored directly in source code can be exposed if the code is leaked.

Severity: High


2. Plain Text Password Storage

Risk: Passwords are stored in readable format and can be viewed by anyone with access to the source code.

Severity: High


3. Visible Password Entry

Risk: Passwords can be observed during typing.

Severity: Medium


4. Unlimited Login Attempts

Risk: Attackers can perform brute-force attacks without restrictions.

Severity: High


Secure Application Improvements

The secure version introduces:

  • Hidden password input using getpass
  • Login attempt limitation
  • Improved program structure
  • Better authentication handling

Example:

password = getpass.getpass("Enter Password: ")

Learning Outcomes

Through this project, I learned:

  • Secure coding principles
  • Common authentication vulnerabilities
  • Risk assessment techniques
  • Security remediation practices
  • Python security improvements

Conclusion

Secure coding practices play a critical role in protecting applications from cyber threats. This project demonstrates how common vulnerabilities can be identified and mitigated through proper security controls and coding standards.


Developed By

Madhuri

Horizon TechX Cyber Security Internship

About

Python-based secure coding review project demonstrating vulnerability identification and remediation techniques.

Topics

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

 
 
 

Contributors

Languages