In this protuberance episode of the Exploring Information Security podcast, <a target="_blank" href="http://Lockmedown.com">Max McCarty</a> joins me to discuss how to secure NodeJS.Max (<a target="_blank" href="https://twitter.com/maxrmccarty">@maxrmccarty</a>) has a great course called <a target="_blank" href="https://www.pluralsight.com/courses/securing-node-js-web-app">Securing Your Node.Js Web App</a> available on Pluralsight. The course is five and a half-hours long, walking through the basics on security. Security for NodeJS is not unlike security for other languages and technologies. If you can secure other web apps you can secure NodeJS.In this episode we discuss:<ul><li>What is NodeJS</li><li>How Max got started in NodeJS</li><li>Why it's important to secure NodeJS</li><li>How to secure NodeJS</li></ul>More resources:<ul><li><a target="_blank" href="https://www.owasp.org/index.php/Main_Page">OWASP</a></li><li><a target="_blank" href="https://www.hanselman.com/blog/HowToEnableHTTPStrictTransportSecurityHSTSInIIS7.aspx">How to enable HTTP Strict Transport Security (HSTS) in IIS7+</a></li></ul>













 [<a target="_blank" href="http://www.timothydeblock.com/eis?format=rss">RSS Feed</a>] [<a target="_blank" href="https://itunes.apple.com/us/podcast/eis-podcast-timothy-de-block/id1026428940">iTunes</a>]

What is the Orange Team?

The Exploring Information Security podcast interviews a different professional each week exploring topics, ideas, and disciplines within information security. Prepare to learn, explore, and grow your security mindset.