Believe it or not, your Next.js or web application is probably highly vulnerable to hackers. Let’s be honest, security is something nobody likes to talk about or implement. But don’t worry! In this video, I’ll show you the most common security issues your application might have and, more importantly, how to fix them.
🚀 Get started with Arcjet for free: https://launch.arcjet.com/hIZ0QxX
🔒 My Favorite Authentication Service: https://dub.sh/xeU8r3v
📅 Checkout Cal for Free: https://dub.sh/FAuffAy
📸 Screen Recording Software: https://dub.sh/eDa47SO
👨💻 Git Repo: https://github.com/ski043/next-security
🌍 My Website: https://janmarshal.com/
✅ Follow me on X: https://x.com/janmarshaldev
📧 Business ONLY: jan@alenix.de
Timestamps:
00:00 intro
01:00 Introduction to codebase
02:30 #1 Public Endpoints
05:00 #2 Data is not sanitized
08:00 #3 Fake Email Submission
13:40 #4 Leaking Server Data
17:40 #5 Ddos attacks / Rate limit
21:00 Dynamic Rate Limit
23:11 #6 Bots Scraping our Website
24:50 #7 Trivial Packages
28:00 #8 XSS Attacks
30:00 #9 OWASP Top 10