Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

LinkedIn Learning

Node.js: Security

via LinkedIn Learning

Go to class Write review
Coursera Ad

Coursera Plus Annual Nearly 45% Off

Learn More → Boot.dev Ad

The Most Addictive Python and SQL Courses

Learn More →

Overview

Coursera Flash Sale
40% Off Coursera Plus for 3 Months!
Grab it
Learn best practices that can help Node.js developers secure their apps at all levels, from packages to the server level.

Syllabus

Introduction
  • Securing your Node.js projects
  • What you should know
1. Security Overview
  • Introduction to OWASP and other sources
  • OWASP top 10 in Node.js
  • Overview of cross-site scripting
  • Overview of denial of service
  • Overview of server-side injection
2. Best Practices: Packages
  • Hands-on base template overview
  • Maintain package dependencies
  • Add two-factor and read-only tokens with npm
3. Best Practices: Data
  • Data handling with type and validation
  • Use prepared statements for SQL/NoSQL
  • Set proper HTTP headers with Helmet
  • Encrypt user data and session management
4. Best Practices: Server Level
  • Use secure HTTPS protocol
  • Rate limiting against DoS attacks
  • Use csurf to prevent CSRF attacks
  • Use cookie attributes
5. Tools for Testing
  • Introduction to OWASP dependency check
  • Find vulnerabilities with Snyk
  • Penetration testing with Burp
Conclusion
  • Next steps

Taught by

Emmanuel Henri

Reviews

4.4 rating at LinkedIn Learning based on 194 ratings

Start your review of Node.js: Security

Go to class

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Sign up for free
Someone learning on their laptop while sitting on the floor.