Explore the basics of denial of service attacks and how they relate to Node.js.
- [Instructor] A Denial of Service attack…is basically an attack that renders your needed service,…such as client, server or application,…unavailable to your users.…An attacker can achieve this…by manipulating the network code,…or exploit vulnerabilities of your service.…In most cases, the hacker overwhelms the server…of requests, therefore shutting it down.…They often use techniques such as creating too much data…on your database, creating a loop mechanism,…lock customer accounts,…or failure to release specific resources,…all through code exploit.…
A good example for Node.js specifically…is the use of complicated regular expressions…to render the service unavailable for a while,…or hang indefinitely.…So to prevent this type of attack,…you want to make sure all your inputs…and forms are properly sanitized and validated,…and that you have mechanisms in place…to prevent looping instructions,…or the creation of multiple objects,…or data on your database.…Also, it is a good idea to avoid writing…your own regular expressions.…
- OWASP resources and security threats
- Cross-site scripting and denial of service attacks
- Managing packages in a Node.js app
- Adding two-factor and read-only tokens with npm
- Using prepared statements for SQL/NoSQL
- Encrypting user data and session management
- Adding HTTPS protocol to an application
- Using cookie attributes
- Tools for testing
Skill Level Intermediate
Node.js: Deploying Applicationswith Kirsten Hunter1h 24m Intermediate
Node.js: Debugging and Performance Tuningwith Jon Peck2h 44m Intermediate
1. Security Overview
OWASP top 10 in Node.js2m 22s
2. Best Practices: Packages
3. Best Practices: Data
4. Best Practices: Server Level
5. Tools for Testing
- Mark as unwatched
- Mark all as unwatched
Are you sure you want to mark all the videos in this course as unwatched?
This will not affect your course history, your reports, or your certificates of completion for this course.Cancel
Take notes with your new membership!
Type in the entry box, then click Enter to save your note.
1:30Press on any video thumbnail to jump immediately to the timecode shown.
Notes are saved with you account but can also be exported as plain text, MS Word, PDF, Google Doc, or Evernote.