Web Security Essentials: MITM, CSRF, and XSS

Web Security Essentials: MITM, CSRF, and XSS

0
Language

Access

Free

Certificate

Free

Level

Beginner

Category:

Learn how to protect your web application and user data with our comprehensive web security course. Gain hands-on experience in identifying vulnerabilities and implementing effective security measures. Start your journey into web security today!

Add your review

As developers, we have a responsibility to protect the data our users trust us with. No one wants to wake up to the news that their site was hacked and all of the user accounts stolen.

Security is important, yet it is often overlooked and forgotten.

Part of the reason for this is that security seems hard to get right. This results in developers crossing their fingers and hoping for the best.

In this course, you’ll learn how to protect your application by learning how to attack it.

Start your journey into web security today!

Check out these

community notes for this course on Github

.

Course Content

Course Overview: Web Security Essentials

Simulate Man in the Middle Attacks and Inspect Network Traffic with Charles Proxy

Add https to a Localhost Express App to Prevent MITM Attacks

Redirect All HTTP Traffic to HTTPS in Express to Ensure All Responses are Secure

Set the Secure Cookie Flag to Ensure Cookies are Only Sent Over Secure Connections

Add HSTS Headers to Express Apps to Ensure All Requests are https Requests

Create a Proof of Concept Exploit of a CSRF Vulnerable Website

Mitigate CSRF Attacks by Setting the SameSite Cookie Flag in Express

Add CSRF Token Middleware to an Express Server to Mitigate CSRF

Make an XSS Payload to Read a Cookie from a Vulnerable Website

Set the httpOnly Cookie Flag in Express to Ensure Cookies are Inaccessible from JavaScript

Make an XSS Payload to Read document.body from a Vulnerable Website

Prevent Inline Script Execution by Implementing Script-Src CSP Headers in Express

Read Document Content from a Vulnerable Website via Script Tag Injection in an XSS Payload

Add a Nonce Based script-src Header in Express to Only Allow Scripts that Match the Nonce

Prompt Users for Credentials from a Vulnerable Website via iframe Injection

Add a default-src CSP Header in Express to Enforce an Allowlist and Mitigate XSS

User Reviews

0.0 out of 5
0
0
0
0
0
Write a review

There are no reviews yet.

Be the first to review “Web Security Essentials: MITM, CSRF, and XSS”

×

    Your Email (required)

    Report this page
    Web Security Essentials: MITM, CSRF, and XSS
    Web Security Essentials: MITM, CSRF, and XSS

    Visit Course

    Related Products

    Uncategorized

    Agile Project Management Course – Learn Agile Methodology

    futurelearn.com
    0
    Uncategorized

    Introduction to Critical Care Medicine

    futurelearn.com
    0
    Uncategorized

    Stylistics: An Introduction To This Branch of Linguistics – Online Course

    futurelearn.com
    0
    LiveTalent.org
    Logo
    LiveTalent.org
    Powered by  GDPR Cookie Compliance
    Privacy Overview

    This website uses cookies so that we can provide you with the best user experience possible. Cookie information is stored in your browser and performs functions such as recognising you when you return to our website and helping our team to understand which sections of the website you find most interesting and useful.