Beginning Security
Keeping yourself, your users, and your data safe is important no matter what language or technology you use. Understanding what kinds of attacks exist and how to mitigate or prevent them will give you more control and peace of mind.
In this Track we'll explore how to first keep yourself safe with some basic security literacy, then review some common vulnerabilities and things to protect regarding data, users, and applications.
We'll start out with some basics on how the Internet works, and explore some common threats and how to protect ourselves against them. We'll also learn about encryption and how Internet traffic works.
Next, you'll take our Introduction to Data Security course, which covers basic hashing, encryption, storing passwords, and more.
In the next part of the Track, we'll cover the importance of protecting your web apps and how to implement TLS for your apps. We'll also cover how and when to patch vulnerabilities in your apps, who to trust when implementing new 3rd-party integrations, how to use automatic tools to secure your site, and what kinds of data storage precautions you might have to be aware of for your given industry.
The final course in this Track is our OWASP Top 10 Vulnerabilities course. The OWASP Top 10 is a trusted knowledge framework covering the top 10 major web security vulnerabilities, as well as providing information on how to mitigate them. We'll explore each vulnerability in general and in the scope of how they occur in JavaScript and Node.js.
Ready to establish a foundation in the exciting field of online security? Let's go!
Ready to start learning?
Treehouse offers a 7 day free trial for new students. Get access to 1000s of hours of content. Learn to code, land your dream job.
Start Your Free Trial-
- 1
- 2
- 3
Security Literacy
The internet is an invaluable resource for information and entertainment, but it doesnβt always protect your privacy and identity. This course offers an overview on how to stay safe and secure when using your browser and beyond. Weβll introduce foundational concepts about how online activity translates to internet traffic. Weβll then explore some common ways that attackers can view and manipulate this traffic for their uses and how to protect against them. And finally, weβll establish some industry-recommended habits to keep you and your data secure.
-
- 1
- 2
Introduction to Data Security
Keeping data and communications secure is one of the most important topics in development today. In this course, we'll look at common methods of protecting both of these areas.
-
- 1
- 2
- 3
Introduction to Application Security
Welcome to the realm of web security, where millions of dollars and peopleβs lives are on the line. Well, not in all cases, but some! From protecting static web sites to the most complex of web services and APIs, every web developer should be aware of and adept at writing secure code and building systems that can stand up to the strongest of malicious users. In this course, we will lay the groundwork for what you need to know to get started exploring the vast field of web security, and along the way you will begin to realize that security isnβt about checking boxes, but rather about embedding the thought process and principles of rock-solid security into every line of code you write. First, we will discuss why security matters to you as a web developer, then we will look at data security at an implementation level, then finally we will examine the art of maintaining your websites, apps, and services on a daily basis.
-
1 minInstruction
Practice Hashing Passwords
Hashing is a one-way process of securing data with a strong algorithm, and you should always hash users' passwords. Practice hashing passwords using the popular and safe bcrypt algorithm....(continue reading)
Viewed -
- 1
- 2
- 3
- 4
OWASP Top 10 Vulnerabilities
Welcome again to the realm of web security, where millions of dollars and peopleβs lives are on the line. Not every web application has that much on the line, but many do, and itβs your job as the developer or manager to keep your users safe! From protecting static web sites to the most complex of web services and APIs, every web developer should be aware of, and adept at writing secure code and building systems that can stand up to the strongest of malicious users. In this course, we will build on earlier courses in basic web security by diving into the OWASP Top 10 for Node.js and JavaScript. The OWASP Top 10 is a trusted knowledge framework covering the top 10 major web security vulnerabilities, as well as providing information on how to mitigate them. Throughout this course, we will explore each vulnerability in general and in the scope of how they occur in JavaScript (as the frontend) and Node.js (as the backend).
-
Track Completion
This course includes:
- Security Literacy 83 min
- Introduction to Data Security 48 min
- Introduction to Application Security 72 min
- Practice Hashing Passwords 1 min
- OWASP Top 10 Vulnerabilities 111 min