Website Security Foundations
Website Security Foundations, available at $59.99, has an average rating of 4.45, with 63 lectures, 17 quizzes, based on 45 reviews, and has 313 subscribers.
You will learn about Website security basics – concepts and types of attacks How to protect files on the server Securing front-end and back-end code Validating incoming data Dealing with passwords Mitigating SQL Injection Mitigating Cross-Site Scripting Mitigating Cross-Site Request Forgery Mitigating Brute Force Mitigating Path Traversal Dealing with file uploads Securing WordPress-powered sites This course is ideal for individuals who are Web developers who want to improve their skills and build more secure sites or Amateur web developers who are concerned about their sites' security It is particularly useful for Web developers who want to improve their skills and build more secure sites or Amateur web developers who are concerned about their sites' security.
Enroll now: Website Security Foundations
Summary
Title: Website Security Foundations
Price: $59.99
Average Rating: 4.45
Number of Lectures: 63
Number of Quizzes: 17
Number of Published Lectures: 63
Number of Published Quizzes: 17
Number of Curriculum Items: 80
Number of Published Curriculum Objects: 80
Original Price: $129.99
Quality Status: approved
Status: Live
What You Will Learn
- Website security basics – concepts and types of attacks
- How to protect files on the server
- Securing front-end and back-end code
- Validating incoming data
- Dealing with passwords
- Mitigating SQL Injection
- Mitigating Cross-Site Scripting
- Mitigating Cross-Site Request Forgery
- Mitigating Brute Force
- Mitigating Path Traversal
- Dealing with file uploads
- Securing WordPress-powered sites
Who Should Attend
- Web developers who want to improve their skills and build more secure sites
- Amateur web developers who are concerned about their sites' security
Target Audiences
- Web developers who want to improve their skills and build more secure sites
- Amateur web developers who are concerned about their sites' security
There’s no single day recently, without reports of a data leakage, a new software vulnerability or a new phishing campaign.
It’s enormously worrying, given the fact that increasingly large part of our lives are now lived digitally and online. We use computers and smartphones every day, we totally rely on online services and in effect we store much of our privacy in a digital form. Which is often not even on our devices. That’s why security has already become a huge and superimportant branch of IT industry. And it will only become more and more important.
There are hundreds, if not thousands of types of online attacks, aimed to:
-
steal money or data
-
support spam
-
blackmail or damage reputation of people or organizations
-
or simply to annoy people.
Even seemingly simple site can become an attack target, that’s why I believe that everyweb developer must know at least basicsof web security, and of course use all security measures they know in their everyday work.
So this course is for all web developers: beginners, intermediates and self-taught amateurs, who want to build much more secure websites and become better web developers. I assume you have at least basic knowledge of HTML, CSS, JavaScript and PHP, and already some experience in web development.
For the back-end code examples I will use PHP just because it’s a starting point for many web developers, but I will explain how its native functions work, and you will be able to easily translate most of the code snippets to other languages.
Many of you will probably work on more advanced projects than static or WordPress-based websites: interactive sites, web or intranet applications, ecommerce platforms etc. The more complex and more popular software you’re going to work on, the more potential vulnerabilities and attack vectors, and the more reputational risk is at stake.
That’s why there will be quite a lot of information in this course: some that seem very basic, and some that may seem as a complicated and pretty advanced stuff. But I still consider all of this as absolutely necessary.
So, what’s in this course?
-
Analysis and mitigation methods for common attacks: SQL Injection, Cross-Site Scripting, Cross-Site Request Forgery, Clickjacking, Brute Force, Path Traversal, Local File Inclusion, Remote File Inclusion
-
Protecting files and folders on the server
-
Server configuration and HTTP Headers improving security
-
Writing secure front-end and back-end code
-
Dealing with users’ passwords and sessions
-
Encryption and hashing
-
Validation and sanitization of incoming data
-
WordPress security
We will really talk about fundamental stuff. And I hope this course will encourage you to discover more about the IT security, as preparing it encouraged me to dig deeper in certain areas.
Course Curriculum
Chapter 1: Introduction
Lecture 1: Introduction
Chapter 2: How Security Works
Lecture 1: Introduction
Lecture 2: Website Security Concepts
Lecture 3: Types of Attacks
Chapter 3: Protecting Files on the Server
Lecture 1: Protecting Files on the Server
Chapter 4: Third-party Components
Lecture 1: Using Third-party Components
Chapter 5: Server Configuration
Lecture 1: Basics
Lecture 2: HTTP Headers for Security
Lecture 3: Firewall
Chapter 6: SSL/TLS
Lecture 1: Basics
Lecture 2: Making the Site Work with Secure Connection
Lecture 3: Enforcing Secure Connection
Chapter 7: Front-End Security
Lecture 1: Basics
Lecture 2: External Resources and Links
Lecture 3: Using Frames
Lecture 4: CSS-Specific Issues
Lecture 5: JavaScript-Specific Issues
Chapter 8: Back-End Security
Lecture 1: Basics
Lecture 2: PHP Configuration
Lecture 3: Preventing Execution of Include Files
Lecture 4: Connecting to Database
Lecture 5: Storing Database Credentials
Lecture 6: Serialization and Superglobals
Lecture 7: Random Values
Chapter 9: Passwords
Lecture 1: Basics
Lecture 2: Salt and Pepper
Lecture 3: Migration to Password Hashing API
Lecture 4: Password Policies
Chapter 10: Sessions
Lecture 1: Basics
Lecture 2: Session's Expiration and Lifetime
Lecture 3: Changing and Destroying Sessions
Chapter 11: Validation
Lecture 1: Basics
Lecture 2: Data Validation
Lecture 3: Numbers
Lecture 4: Strings
Lecture 5: E-mails and URLs
Lecture 6: Arbitrary Strings and Structured Data
Chapter 12: SQL Injection
Lecture 1: SQL Injection
Chapter 13: Cross-Site Scripting
Lecture 1: Basics
Lecture 2: HTML Contexts
Lecture 3: JavaScript Contexts
Lecture 4: CSS Context
Lecture 5: URL Context
Lecture 6: Summary of Contexts
Lecture 7: SVG and HTML code
Lecture 8: Content Security Policy
Chapter 14: Cross-Site Request Forgery
Lecture 1: Basics
Lecture 2: Tokens
Lecture 3: Other (Good and Bad) Prevention Methods
Chapter 15: Path Traversal, Local and Remote File Inclusion
Lecture 1: Path Traversal, Local and Remote File Inclusion
Chapter 16: File Uploads
Lecture 1: Basics
Lecture 2: File Content Validation
Lecture 3: ZIP Packages and Multiple File Uploads
Lecture 4: Server Storage
Chapter 17: Brute Force
Lecture 1: Brute Force
Chapter 18: Cookies and WebStorage
Lecture 1: Cookies
Lecture 2: Cookies vs WebStorage
Chapter 19: WordPress Security
Lecture 1: Installation and configuration
Lecture 2: Advanced Security Features
Lecture 3: Coding Best Practices
Lecture 4: Managing Users
Lecture 5: Updates
Chapter 20: Course Summary
Lecture 1: Course Summary
Instructors
-
Mateusz Skrzypczak
Web Developer and now a Web Development Trainer!
Rating Distribution
- 1 stars: 1 votes
- 2 stars: 0 votes
- 3 stars: 5 votes
- 4 stars: 14 votes
- 5 stars: 25 votes
Frequently Asked Questions
How long do I have access to the course materials?
You can view and review the lecture materials indefinitely, like an on-demand channel.
Can I take my courses with me wherever I go?
Definitely! If you have an internet connection, courses on Udemy are available on any device at any time. If you don’t have an internet connection, some instructors also let their students download course lectures. That’s up to the instructor though, so make sure you get on their good side!
You may also like
- Top 10 Language Learning Courses to Learn in November 2024
- Top 10 Video Editing Courses to Learn in November 2024
- Top 10 Music Production Courses to Learn in November 2024
- Top 10 Animation Courses to Learn in November 2024
- Top 10 Digital Illustration Courses to Learn in November 2024
- Top 10 Renewable Energy Courses to Learn in November 2024
- Top 10 Sustainable Living Courses to Learn in November 2024
- Top 10 Ethical AI Courses to Learn in November 2024
- Top 10 Cybersecurity Fundamentals Courses to Learn in November 2024
- Top 10 Smart Home Technology Courses to Learn in November 2024
- Top 10 Holistic Health Courses to Learn in November 2024
- Top 10 Nutrition And Diet Planning Courses to Learn in November 2024
- Top 10 Yoga Instruction Courses to Learn in November 2024
- Top 10 Stress Management Courses to Learn in November 2024
- Top 10 Mindfulness Meditation Courses to Learn in November 2024
- Top 10 Life Coaching Courses to Learn in November 2024
- Top 10 Career Development Courses to Learn in November 2024
- Top 10 Relationship Building Courses to Learn in November 2024
- Top 10 Parenting Skills Courses to Learn in November 2024
- Top 10 Home Improvement Courses to Learn in November 2024