¿Qué tan seguro es tu sitio?

How secure is your website?

Hello! When we talk about internet security, it is crucial to be aware of the risks we are exposed to. A study by Simantech, a company specializing in Internet security, revealed in 2018 that more than seven billion identities had been exposed in the last eight years. This begs the question: is our site really secure? Through this content, we will explore security concepts applied in web development, particularly using Next JS and OWASP principles, a key reference for improving security in our projects.

What will you learn in this course?

Welcome to a fascinating journey through web security with Next JS. I am Jonathan Alvarez, your teacher and guide, a senior software engineer with more than six years of experience. Our focus in this course will be to strengthen your security knowledge using OWASP; but first, let's review previous projects and their evolution.

• Plantpedia Project: We will start with a solid foundation known as Plantpedia, a precursor project that we have worked on to transform it into a static site. With Plantpedia, you will learn about:

  • Internationalization
  • Localization
  • Authentication

• OWASP implementation: The Open Web Application Security Project (OWASP) is a non-profit foundation focused on improving software security. It is not only a guide, but an indispensable reference for securing development environments. We will focus on:

  • OWASP Top 10: A key listing highlighting the ten most common vulnerabilities in web applications. We will learn how to recognize and mitigate some of these vulnerabilities in Plantpedia.

Why is OWASP important for your project?

The OWASP Top 10 is not only a compendium of common vulnerabilities, but a practical tool that allows you to understand the most dangerous mistakes made in software development. Applying OWASP principles will not only protect your application, but also strengthen your knowledge as a developer.

Some vulnerabilities that could be explored:

1. Injection: Include or modify unauthorized requests through user input.
2. Authentication: Ensure that authentication processes are secure to prevent unauthorized access.
3. Sensitive Data Exposure: Protect sensitive and personal user information through encryption and good data management practices.

Motivation to continue learning

As you progress through this course, you will receive essential tools to take your project to the next level of security. Each lesson will bring you closer to developing robust and secure applications. So get ready, your adventure in web security with Next JS and OWASP is about to begin, I'll see you in the next class!