illustration for Web Security Essentials: MITM, CSRF, and XSS

Web Security Essentials: MITM, CSRF, and XSS

Instructor

Mike Sherov
55m closed-captioning
Star icon$$$
Star icon$$$
Star icon$$$
Star icon$$$
Star icon$$$
4.6
417
people completed
Bookmark
Download
RSS
Start Watching

As developers, we have a responsibility to protect the data our users trust us with. No one wants to wake up to the news that their site was hacked and all of the user accounts stolen.

Security is important, yet it is often overlooked and forgotten.

Part of the reason for this is that security seems hard to get right. This results in developers crossing their fingers and hoping for the best.

In this course, you'll learn how to protect your application by learning how to attack it.

Start your journey into web security today!

Check out these community notes for this course on Github.

Listen to Mike Sherov tell you about this course:

What you'll learn

  • Session hijacking (and how to prevent it)
  • Using Charles proxy to simulate various attacks
  • Securely configuring cookies and protecting the data inside them
  • Security rules of thumb such as 'defense in depth' and 'principle of least power'

Prerequisites

Learner Reviews

  • Praney Behl
    4 years ago
    Star icon$$$
    Star icon$$$
    Star icon$$$
    Star icon$$$
    Star icon$$$
    What did you like about this course?

    Excellent course, learned a lot! Thank you 😊

  • Tirth
    4 years ago
    Star icon$$$
    Star icon$$$
    Star icon$$$
    Star icon$$$
    Star icon$$$
    What did you like about this course?

    A must watch for all developers. These are the very basics for any development

  • Greco Rubio
    4 years ago
    Star icon$$$
    Star icon$$$
    Star icon$$$
    Star icon$$$
    Star icon$$$
    What did you like about this course?

    Very complete and concise, thanks!

  • yerlanyr
    4 years ago
    Star icon$$$
    Star icon$$$
    Star icon$$$
    Star icon$$$
    Star icon$$$
    What did you like about this course?

    love topic of security wish there was more

  • nenostra
    4 years ago
    Star icon$$$
    Star icon$$$
    Star icon$$$
    Star icon$$$
    Star icon$$$
    How will you use what you learned from this course?

    Course and information was good, but the examples seemed extremely unrealistic. I understood how the attacks work, but not sure how would someone get someone else to paste a script tag into an input. Maybe including examples of how actual hackers trick people into making these kind of things would be useful.

  • Victor Hazbun
    4 years ago
    Star icon$$$
    Star icon$$$
    Star icon$$$
    Star icon$$$
    Star icon$$$
    What did you like about this course?

    Amazing intro to web security, I liked how he hacked and then patched each security issue. Hope to see more advanced topics on security.

Course Content

55m ‱ 17 lessons

    You might also like these resources:

    illustration for Introduction to Cloudflare Workers

    Introduction to Cloudflare Workers

    Kristian Freeman・36m・Course

    Become familiar with the Workers CLI wrangler that we will use to bootstrap our Worker project. From there you'll understand how a Worker receives and returns requests/Responses. We will also build this serverless function locally for development and deploy it to a custom domain.

    illustration for Create an eCommerce Store with Next.js and Stripe Checkout

    Create an eCommerce Store with Next.js and Stripe Checkout

    Colby Fayock・1h 4m・Course

    This is a practical project based look at building a working e-commerce store using modern tools and APIs. Excellent for a weekend side-project for your developer project portfolio

    illustration for Practical Git for Everyday Professional Use

    Practical Git for Everyday Professional Use

    Trevor Miller・1h・Course

    git is a critical component in the modern web developers tool box. This course is a solid introduction and goes beyond the basics with some more advanced git commands you are sure to find useful.