Defending Node Applications from SQL Injection, XSS, & CSRF Attacks
Why Learn to Prevent SQL Injection, XSS, & CSRF Attacks in Your Express Applications?
Web applications are constantly under threat. From malicious threat actors to curious teenagers, malicious code or hacking attempts are coming from every angle. Using the OWASP Top 10’s list of the most critical security risks to web applications as a guide, you can protect your users, and yourself, from threats to your Node.js applications.
Take-Away Skills
By completing this course, you will have learned how to start protecting your Node.js web application from SQL Injection, Cross-Site Scripting (XSS), and Cross-Site Request Forgery (CSRF) Attacks. You will also learn safer JavaScript coding practices as well as the basics of Remediation and Incident Response. After completing this course, you will know how to make your Node.js and Express applications safer from malicious actors.
Codecademy courses have been taken by employees at
- 1Begin learning the skills to defend your Node applications.
- 2Learn what CSRF attacks are and the primary techniques to mitigate them.
- 3Learn how to spot and prevent SQL injection attacks.
- 4Learn how Cross-Site Scripting attacks work and how to prevent them.
- 5Learn and practice some techniques for keeping code secure.
What you'll create
Portfolio projects that showcase your new skills
Codey's Confectionery: Preventing Cross-Site Request Forgery (CSRF) Attacks
This project will test your skills at preventing Cross-Site Request Forgery (CSRF) attacks in Node.js.
Codey's Confectionery: Preventing SQL Injection Attacks
Practice using prepared statements and form validation to prevent SQL injection attacks.
Restreview: Preventing Cross Site Scripting (XSS) Attacks
Secure an Express application from Cross-Site Scripting (XSS) Attacks!
How you'll master it
Stress-test your knowledge with quizzes that help commit syntax to memory

— Madelyn, Pinterest
I know from first-hand experience that you can go in knowing zero, nothing, and just get a grasp on everything as you go and start building right away.
Course Description
Protect Node.js Applications from SQL Injection, CSRF, & XSS Attacks.
Details
Earn a certificate of completion
8 hours to complete in total
Intermediate
1 informational
Learn what CSRF attacks are and the primary techniques to mitigate them.
1 article, 1 lesson, 1 quiz, 1 project
2 articles, 1 lesson, 1 quiz, 1 project
1 lesson, 1 quiz, 1 project
1 article, 1 quiz
1 article
1 informational