There are lots of great websites out there that can help you build upon your coding skills, and a great one I have come across recently is codebashing.
Codebashing helps you combat security flaws in your code, which I think is great as security isn’t a topic covered in a lot of online tutorials.
The site helps you learn about the current OWASP Top 10 application and security risks and how to help mitigate these, which it does through a game-like format.
It also covers code vulnerability, how your code can be exploited and steps you can take to defend against these.
For example, it will show you what vulnerable code looks like and then will take you through step by step how to improve it.
In the Node.js course there are 20 training modules, each lasting 8 minutes. I have found the injection courses really useful, as a lot of people talk about SQL Injection and I didn’t know until recently what it was* – but now I also know how to help mitigate it too!
A lot of us are very lucky when we are at work because the servers are (generally) already protected and all security has already been taken care of, or is controlled by a dedicated online security team.
However, with our own websites we don’t have this luxury, so it is extremely important that we know how to protect them against any security risks.
If that’s not enough just think about it as something you can add to your LinkedIn or CV – it will definitely help you somewhere down the line 😉
Codebashing currently cover training for the following languages:
- Ruby on Rails
- Python Django
It is a paid course, but there is a free trial which you can use which can get you started on security measures.
If it seems like it would be a lot help for you maybe speak to your workplace or university and see if they could get a license for it!
It’s always worth remembering that if you want to learn something, chances are someone else sat near you wants to learn it too!
* SQL Injection is injecting characters/strings interpreted by databases servers into inputs, such as username and password, ensuring a true value is returned