Getting Started with Node.js Security with Express and Angular
Pluralsight
Course Summary
This course will teach you how to apply common security mitigation techniques to a web application built with Angular, Express.js, and Node.js.
-
+
Course Description
Node.js is a server-side JavaScript platform that's rapidly being adopted by many individuals and large companies. This course, Getting Started with Node.js Security with Express and Angular, shows you how to apply secure application development practices to Node.js with Express and Angular by learning some of the security risks that are of concern in this area. You'll see the execution of exploits associated with these risks and follow through with the implementation steps for mitigating each one. First, you'll learn about protecting data from extraction, as well as how to mitigate this risk. Next, you'll learn about how to ensure legitimacy of requests. Finally, you'll learn about blocking content-hijacking and what you can do to prevent it in the first place. By the end of this course, you'll have learned about many of the risks, vulnerabilities, and mitigation techniques, why they are so important, and you'll be more equipped to use secure application development practices.
-
+
Course Syllabus
Course Introduction- 9m 3s
—Introduction 0m 44s
—Application Security & Risk 1m 22s
—The Role of Application Developers in Security 1m 35s
—Prerequisites 0m 56s
—The Vulnerable & Attacker Sample Applications 1m 42s
—Running & Exploring the Vulnerable Application 2m 9s
—Course Overview 0m 31sProtecting Data from Extraction- 26m 13s
—Introduction 0m 56s
—Attack Reconnaissance 1m 30s
—Attack Execution 2m 5s
—Cross-site Scripting 0m 35s
—Attack Prevention 1m 11s
—Prevention with Input Handling 1m 8s
—Input Handling Examples 1m 58s
—Prevention with a Content Security Policy 1m 29s
—Correcting in-line Styles 0m 33s
—Correcting in-line Scripts 0m 42s
—Content Security Policy Example 1m 9s
—Content Security Policy Browser Support 0m 46s
—Defense with Input Handling in Angular 2m 38s
—Defense with Input Handling in Node.js 3m 20s
—Defense with a Content Security Policy 4m 25s
—Content Security Policy in Action 1m 13s
—Summary 0m 28sHide Network Traffic from Snooping- 12m 55sEnsure Legitimacy of Requests- 23m 20sBlock Content Hijacking- 15m 13sSummary- 6m 58s
