JavaScript Vulnerabilities - The State of the Web

preview_player
Показать описание
In this episode of The State of the Web, Rick and Tim talk about how insecure much of the Web really is. They talk about the various vulnerabilities in Web Security that can leave you open to attack, as well as the challenge of making your organization aware of these risks and how they could be exploited.

  1. Chrome for Developers
  2. web security
  3. web security state of the web
  4. JavaScript Vulnerabilities
  5. JavaScript Vulnerabilities state of the web
  6. web vulnerabilities
Рекомендации по теме
JavaScript Vulnerabilities - 0:12:47

JavaScript Vulnerabilities - The State of the Web

JavaScript Security Vulnerabilities 0:25:05

JavaScript Security Vulnerabilities Tutorial – With Code Examples

10 security vulnerabilities 0:04:06

10 security vulnerabilities every JavaScript developer should know

The State of 0:09:02

The State of Open Source Security Vulnerabilities

10 Security Vulnerabilities 0:40:38

10 Security Vulnerabilities Every JavaScript Developer Should Know

Watch This Russian 0:02:56

Watch This Russian Hacker Break Into Our Computer In Minutes | CNBC

Session vs Token 0:02:18

Session vs Token Authentication in 100 Seconds

10 security vulnerabilities 0:40:38

10 security vulnerabilities every JavaScript developer should know

Cross-Site Request Forgery 0:06:31

Cross-Site Request Forgery (CSRF) Explained And Demonstrated By A Pro Hacker!

How Hackers can 0:29:06

How Hackers can use Vulnerabilities to Exploit Your Website - JS Monthly - May 2019

NDSS 2019 Semantics-Aware 0:20:55

NDSS 2019 Semantics-Aware Code Generation to Find Vulnerabilities in JavaScript Engines

StrangerDanger: Finding Security 0:23:46

StrangerDanger: Finding Security Vulnerabilities Before They Find You! by Liran Tal | JSConf BP 2019

What is a 0:02:09

What is a Race Condition (Computer Programming)?

Watch these hackers 0:05:42

Watch these hackers crack an ATM in seconds

Finding security vulnerabilities 1:30:55

Finding security vulnerabilities in JavaScript with CodeQL - GitHub Satellite 2020

Security Vulnerabilities Decomposition 0:56:08

Security Vulnerabilities Decomposition

Web App Vulnerabilities 1:28:49

Web App Vulnerabilities - DevSecOps Course for Beginners

Regular Expressions - 0:17:19

Regular Expressions - Computerphile

Scaling JavaScript Abstract 0:14:32

Scaling JavaScript Abstract Interpretation to Detect and Exploit Node.js Taint-style Vulnerability

My Jobs Before 0:00:15

My Jobs Before I was a Project Manager

Javascript engine vulnerability 1:00:36

Javascript engine vulnerability research: state of the art

Nathanial Lattimer - 0:52:47

Nathanial Lattimer - You're Just Not My Type(state): Turning Vulnerabilities into Compilation E...

how hackers hack 0:09:06

how hackers hack any website in 9 minutes 6 seconds?!

7 Security Risks 0:09:00

7 Security Risks and Hacking Stories for Web Developers

Комментарии
Автор

4:44 The fact that Chrome developers use Firefox as their main browser tells us a lot about Chrome security.

mubelotix
Автор

The face you make when you detect a vulnerability 2:54 lol

IPTVJamaica
Автор

after your code works
after your code performs
we should focus on security
but sadly, if we are working for someone else, it is unlikely to happen

dandan
Автор

I'm not denying that dependencies bring vulnerabilities to your code, but I'd also argue that most of these vulnerabilities would never have been fixed if they had been written by yourself.
Like 90% of all NPM vulnerabilities that I see are Regex DoS and I don't know many people who touch a Regex after it has been deemed "working". At least with 3th-party packages these bugs get eventually (or occasionally?) found

vinno
Автор

0:24 "There's so much to say about Web Security and people usually think about "Little Bobby Drop Tables" " 😂😂 he's referencing that XKDC about SQL injections, my professor showed me that, it's hilarious

orionx
Автор

Fuzz every function in a sandbox and check whether it stays within expected parameters.

CTimmerman
Автор

I have the feeling that I only know the basics about security. How could I level up and learn what I should look out for?

Thytos
Автор

having so many great javascript apis today
how feasible do you guys think it is to go back to vanilla js where the experienced devs rely mostly on the language features instead of "that specific framework"?

dandan
Автор

Honesttly i would prefer to receive precise info about how to secure my code instead of a whole video talking state of the security on the web.

adammorait
Автор

is this talking about server side or client side?

pizza
Автор

Does it make sense to install addons like noscript ?

KarlAlfredRoemer
Автор

snyk always catches a ridiculous amount of development dependency vulnerabillities, which basically have no risk.

swwqlhw
Автор

Expecting some live video for vulnerability attacks please do

Ramesh
Автор

Thanks... It's really scarry know this value. What is the web page where I can see it?

equiman
Автор

The title is misleading, these are *WEB* vulnerabilities, unrelated to JS, I was expecting to hear about JS and was disappointed

AssemblyWizard