Description
Image

Frontend Masters - Web Security
HDRips | M4V/AVC, ~3176 kb/s | 1920x1080 | Duration: 04:43:45 | English: AAC, 128 kb/s (2 ch)
Size: 6.59 GB | Genre: Development, Security

Code: Select all
Security is an increasingly important part of building modern web applications, but it often falls victim to the pressure of tight deadlines. As attacks become more sophisticated, protecting our users becomes not just an ethical responsibility, but part of preserving a company's reputation and trust.



Code: Select all
Security is an increasingly important part of building modern web applications, but it often falls victim to the pressure of tight deadlines. As attacks become more sophisticated, protecting our users becomes not just an ethical responsibility, but part of preserving a company's reputation and trust.

In an effort to understand what we as developers are up against, we'll get hands-on experience staging some attacks, and in doing so learn how we can fend off those who would do our users harm.
We'll begin with a series of attacks that relate to a web application client, starting with Cross-Site Scripting (XSS) and malicious image/pdf attachments. We'll get authenticated users to perform unwanted actions using a Cross-Site Request Forgery (CSRF) attack, and learn about defense strategies like CSRF tokens. We'll even learn how to stage a Clickjacking attack and use hidden iframes to trick users into interacting with one application while they think they're using another.
Next, we'll turn our focus onto our web application's back end. We'll use a SQL injection attack to expose private information from a database and learn how to sanitize user input properly to protect against this kind of thing. We'll also attack the app's authentication system its self, to try and determine which usernames correspond to registered accounts.
Finally, we'll look at the network connection between our user and the web application back-end, and explore how a man-in-the-middle attack is staged. We'll get some hands-on experience with modern browser security features like HSTS headers and Subresource Integrity - technologies that can protect users on a compromised WiFi network.







screenshot



Image



Image


Image





Please Say Thanks Keep Topic Live | Help Me Share Topic to Social network
Code: Select all






Alfafile
http://alfafile.net/file/mb4r/38cwh.part1.rar
http://alfafile.net/file/mb3v/38cwh.part2.rar
http://alfafile.net/file/mbFB/38cwh.part3.rar
http://alfafile.net/file/mjgy/38cwh.part4.rar