English | MP4 | AVC 1280×720 | AAC 48KHz 2ch | 0h 32m | 91 MB
Web applications combine complexity and exposure to networks. JavaScript and the web offer great power, but also many opportunities to leave doors open to hackers. Ethical hacking lets you find those open doors before they can be exploited, and ensure that your sites and applications stay safe. This course was designed to equip JavaScript developers with ethical hacking techniques and tools that can help them boost the security of their JavaScript code. Instructor Emmanuel Henri shows how to put together an attack strategy and do some reconnaissance work using key tools, including Snyk, which automates finding and fixing vulnerabilities in projects. He also dives into some of the most common security threats out there, explaining what they are and how to spot them.
Topics include:
- What is ethical hacking?
- Planning an attack strategy
- Doing reconnaissance work in an app
- Setting up and using Synk, Retire.js, and AppSensor
- Preventing injection threats, broken authentication, and security misconfigurations
- Protecting components with known vulnerabilities
- Preventing insufficient logging and monitoring
Table of Contents
Welcome
1 Ethical JavaScript hacking
2 What you should know
Introduction and Setup
3 What is ethical hacking
4 Overview of the cyber kill chain
5 Plan an attack strategy
6 Base project setup
Reconnaissance
7 Reconnaissance introduction
8 Introduction and setup for Snyk
9 Introduction and setup for Retire.js
10 Introduction to AppSensor
11 Review of the plan
Top Security Threats
12 Injection threat
13 Broken authentication
14 Sensitive data
15 XML external entities
16 Security misconfiguration
17 Insecure deserialization
18 Components with known vulnerabilities
19 Insufficient logging and monitoring
Conclusion
20 Next steps
Resolve the captcha to access the links!