Web Security Essentials: MITM, CSRF, and XSS

55m
Star icon$$$
Star icon$$$
Star icon$$$
Star icon$$$
Star icon$$$
4.6
417
people completed
Bookmark
Download
RSS

As developers, we have a responsibility to protect the data our users trust us with. No one wants to wake up to the news that their site was hacked and all of the user accounts stolen.

Security is important, yet it is often overlooked and forgotten.

Part of the reason for this is that security seems hard to get right. This results in developers crossing their fingers and hoping for the best.

In this course, you'll learn how to protect your application by learning how to attack it.

Start your journey into web security today!

Check out these community notes for this course on Github.

Instructor

Mike Sherov

Writing JS, CSS, and HTML professionally since 2004. Open source contributor to projects like jQuery, jQueryUI, ESLint, Webpack, npm, JSCS, Esprima and more. I’ve also served on the CSSWG on the CSSOM spec and on the jQuery Foundation Board of Directors (now the OpenJS Foundation). I enjoy developer tooling, performance optimization, and software craftsmanship. When I’m not programming or teaching, I enjoy spending time with my wife and twin sons, playing video games, and obsessing over boutique salt varieties.

What you'll learn

  • Session hijacking (and how to prevent it)
  • Using Charles proxy to simulate various attacks
  • Securely configuring cookies and protecting the data inside them
  • Security rules of thumb such as 'defense in depth' and 'principle of least power'

Course content (17 lessons)

    illustration for Web Security Essentials: MITM, CSRF, and XSS