Test Your Application Security Thoroughly
Now that youâve thoroughly analyzed and secured the application and all its dependencies, itâs time to give your application an end-to-end test to see if youâve accounted for all well-known attack vectors.
For this you should start by looking up a security checklist provided by web security organizations like OWASP. I personally find the OWASP ASVS (Application Security Verification Standard)[88] to be an excellent guide to checking an applicationâs security implementations. Take the security checklist in hand and go over each bullet point relevant for your application. Have you implemented each of the required measures?
The checklist will help you verify that youâve addressed specific pain ...
Get Secure Your Node.js Web Application now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.