Node.js: Security

Offered By: LinkedIn Learning

Tags

Node.Js Courses Encryption Courses Data Security Courses Rate Limiting Courses Vulnerability Testing Courses Server Security Courses

Course Description

Overview

Learn best practices that can help Node.js developers secure their apps at all levels, from packages to the server level.

Syllabus

Introduction

Securing your Node.js projects
What you should know

1. Security Overview

Introduction to OWASP and other sources
OWASP top 10 in Node.js
Overview of cross-site scripting
Overview of denial of service
Overview of server-side injection

2. Best Practices: Packages

Hands-on base template overview
Maintain package dependencies
Add two-factor and read-only tokens with npm

3. Best Practices: Data

Data handling with type and validation
Use prepared statements for SQL/NoSQL
Set proper HTTP headers with Helmet
Encrypt user data and session management

4. Best Practices: Server Level

Use secure HTTPS protocol
Rate limiting against DoS attacks
Use csurf to prevent CSRF attacks
Use cookie attributes

5. Tools for Testing

Introduction to OWASP dependency check
Find vulnerabilities with Snyk
Penetration testing with Burp

Conclusion

Next steps

Taught by

Emmanuel Henri

Related Courses

MongoDB for Node.js Developers
MongoDB University Introduction to Office 365 Development and APIs
Microsoft via edX Server-side Development with NodeJS
The Hong Kong University of Science and Technology via Coursera Front-End Web UI Frameworks and Tools
The Hong Kong University of Science and Technology via Coursera Introduction to MongoDB using the MEAN Stack
MongoDB via edX