Node.js Security: Pentesting and Exploitation – NJS


Node.js® is a platform built on Chrome’s JavaScript runtime for easily building fast, scalable network applications. Like any platform, Node.js has it’s on set of features that developers blindly use without much thought on security. The heart of Node is JavaScript, so it inherits most of the issues that are found at client side JavaScript. However on the server side, it executes on V8 JavaScript engine which gives node the capabilities similar to that of any other server side scripting languages.

Modules