Skip to content

wahengchang/nodejs-security-must-know

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

7 Commits

broken_authentication

broken_authentication

 
 

command_injection

command_injection

 
 

cross_site_scripting

cross_site_scripting

 
 

direct_object_reference

direct_object_reference

 
 

headers

headers

 
 

.gitignore

.gitignore

 
 

README.md

README.md

 
 

package.json

package.json

 
 

simpleServer.js

simpleServer.js

 
 

Repository files navigation

Nodejs security must know

This is a note about Node.js security, by reading the amazing book Securing Node Applications by @ChetanKarade, which explains couple of common vulnerabilities in very simple way, and provides relevant npm modules as solutions to protect Node.js Web Apps.

The rate of security incidents is on the rise, based on the analysis of 64,199 security incidents and 2,260 breaches in 2015, the Verizon Data Breach Investigations Report published that the top 10 vulnerabilities accounted for 85 percent of these successful exploits.

Content

  • Command Injection : more
  • Broken Authentication : more
  • Cross-Site Scripting more
  • Insecure Direct Object Referencesmore

Remark

  • hijack
  • exploit
  • vulnerable

Reference:

OWASP

About

It is a note about security on nodejs

Topics

nodejs security node command injection

Resources

Readme
Activity

Stars

46 stars

Watchers

6 watching

Forks

12 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages