LogRocket

Helmet.js is a middleware-based technology that improves security in Node.js applications by safeguarding HTTP headers. It protects against common security threats like XSS attacks and click-jacking. Integrating Helmet into a Node.js Express app is simple and only requires a few lines of code.

Using Helmet in Node.js to secure your application

InfoSec Write-ups

This post explains the concept of JSON Web Tokens (JWT), specifically focusing on the explanation and exploitation of JWT header parameters such as JWK and JKU. It provides examples and discusses techniques for exploiting these parameters.

JWT [JSON WEB TOKENS] [EXPLANATION & EXPLOITATION] (0x02)

Dev Genius

Lessons learned from a client website getting hacked and steps to strengthen website security.

My Client Website Got Hacked: Lessons Learned and Steps to Strengthen Website Security

Web security refers to the practice of protecting web applications, websites, and web services from security threats, vulnerabilities, and attacks that compromise confidentiality, integrity, and availability of data and resources. It involves implementing security controls, best practices, and security mechanisms to mitigate risks, such as cross-site scripting (XSS), SQL injection, and session hijacking, and ensure secure development, deployment, and operation of web assets. Readers can explore web security principles, techniques, and tools for securing web applications, understanding common security threats and attack vectors, and implementing defense-in-depth strategies to safeguard against cybersecurity risks.

Best of Web Security — March 2023