Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/wahengchang/nodejs-security-must-know

It is a note about security on nodejs
https://github.com/wahengchang/nodejs-security-must-know

command injection node nodejs security

Last synced: 3 months ago
JSON representation

It is a note about security on nodejs

Awesome Lists containing this project

README 

        
# Nodejs security must know

This is a note about Node.js security, by reading the amazing book __*Securing Node Applications*__ by @ChetanKarade, which explains couple of common vulnerabilities in very simple way, and provides relevant npm modules as solutions to protect Node.js Web Apps.



The rate of security incidents is on the rise, based on the analysis of 64,199 security incidents and 2,260 breaches in 2015, the Verizon Data Breach Investigations Report published that the top 10 vulnerabilities accounted for 85 percent of these successful exploits. 



## Content

 - Command Injection : [more](https://github.com/wahengchang/nodejs-security-must-know/tree/master/command_injection)

 - Broken Authentication : [more](https://github.com/wahengchang/nodejs-security-must-know/tree/master/broken_authentication)

 - Cross-Site Scripting [more](https://github.com/wahengchang/nodejs-security-must-know/tree/master/cross_site_scriptingg)

 - Insecure Direct Object References[more](https://github.com/wahengchang/nodejs-security-must-know/tree/master/direct_object_reference)



## Remark

 - hijack

 - exploit

 - vulnerable



# Reference:

[OWASP](https://www.owasp.org/index.php/Main_Page)