LAB 233 - Defending Node.js Applications Against XSS


Course Overview

This lab simulates a cross-site scripting vulnerability that can be found in an online banking application built using Node.js which fails to validate input and encode output. Using Visual Studio Code participants will determine whether the data is correctly encoded for the context in which it will appear in web application output. The objective of this lab is to find the cross-site scripting (XSS) vulnerability found in this TECHNOLOGY web application and fix the issue.

Upon completion of this lab participants will:

  • Apply strategic principles to keep web applications safe
  • Demonstrate the skills needed to discover and exploit cross-site scripting attacks
  • Fix a cross-site scripting vulnerability in Node.js

Looking To Learn More?

Request more information on our courses and labs.

Course Details

Course Number: LAB 233

Course Duration: 15 minutes

Course CPE Credits: 0.25

Platform

Standard

Technology

Type

Foreign Languages Available:

  • English