Название: Node.js Secure Coding: Prevention and Exploitation of Path Traversal VulnerabilitiesАвтор: Liran Tal
Издательство: nodejs-security.com
Год: 12.09.2023 (Version v1.1)
Страниц: 153
Язык: английский
Формат: pdf (true)
Размер: 13.8 MB
Learn about secure coding practices with Node.js based on real-world CVE vulnerabilities in popular open-source npm packages.
This book takes an adventure-based approach to application security learning, where you will be playing a detective who unravels the mysteries of common security vulnerabilities. Through these exercises, you will learn about secure coding practices and how to avoid security pitfalls that software developers and open-source maintainers encounter. Senior software engineers often recite how one of the most critical skills you should have as an engineer is the ability to read code. The more you read, the easier it becomes for you to understand code and the more context you gain. This book focuses on that - reading vulnerable code so we can learn from it. This activity creates patterns that our brain learns to identify, and that later quickly turn into red flags that we detect and apply in our day-to-day programming and code review routines. Designed for jаvascript software developers building Node.js applications and security professionals interested in path traversal security vulnerabilities, this book provides a comprehensive understanding of the topic. It also demonstrates its impact and concerns on web application security. Through insecure coding practices found in vulnerable open-source npm packages, this book examines the security aspects affecting jаvascript and Node.js applications.
By completing this book, you gain: * A high level of security expertise on path traversal vulnerabilities. * An expert-level understanding of application security jargon and conventions associated with path traversal security vulnerabilities. * Insights into real-world software libraries on the npm registry found vulnerable and how vulnerabilities were fixed. * A security-first mindset to recognize insecure code patterns in Node.js server-side code. * Knowledge of secure coding best practices to avoid path traversal security vulnerabilities. * Proficiency in performing secure code reviews in the scope of path traversal security vulnerabilities.
Software developers who build web applications, specifically those who practice server-side jаvascript development on top of the Node.js runtime, will significantly benefit from the secure coding practices learned in this book.
Скачать Node.js Secure Coding: Prevention and Exploitation of Path Traversal Vulnerabilities