Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

LinkedIn Learning

Node.js: Security

via LinkedIn Learning

Write review
Noble Desktop Ad

Live Online Classes in Design, Coding & AI — Small Classes, Free Retakes

Learn More → OpenLearning Ad

Future-Proof Your Career: AI Manager Masterclass

Learn More →

Overview

Build a Learning Habit
Download Class Central's free printable study calendar
Download for Free
Learn best practices that can help Node.js developers secure their apps at all levels, from packages to the server level.

Syllabus

Introduction
  • Securing your Node.js projects
  • What you should know
1. Security Overview
  • Introduction to OWASP and other sources
  • OWASP top 10 in Node.js
  • Overview of cross-site scripting
  • Overview of denial of service
  • Overview of server-side injection
2. Best Practices: Packages
  • Hands-on base template overview
  • Maintain package dependencies
  • Add two-factor and read-only tokens with npm
3. Best Practices: Data
  • Data handling with type and validation
  • Use prepared statements for SQL/NoSQL
  • Set proper HTTP headers with Helmet
  • Encrypt user data and session management
4. Best Practices: Server Level
  • Use secure HTTPS protocol
  • Rate limiting against DoS attacks
  • Use csurf to prevent CSRF attacks
  • Use cookie attributes
5. Tools for Testing
  • Introduction to OWASP dependency check
  • Find vulnerabilities with Snyk
  • Penetration testing with Burp
Conclusion
  • Next steps

Taught by

Emmanuel Henri

Reviews

4.4 rating at LinkedIn Learning based on 194 ratings

Start your review of Node.js: Security

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Sign up for free
Someone learning on their laptop while sitting on the floor.