Yashar Shahinzadeh, a security expert and web penetration testing specialist, Bug Hunter, provides online training in the field of bug hunting and web application penetration testing. In the owasp zero course, a prerequisite is taught in designing a website with NodeJS. This repository is a simple website with NodeJS that was taught in the prerequisites section of the owasp zero course.
All source codes are personalized by me and written and designed in the face of various challenges. The following are some of the features of this website:
- Registration ability
- User login ability
- User profile
- Admin panel
- Posting
- View all posts
- Edit profile
- Using a mysql database
Warning
The codes in this repository are designed and written in NodeJS. This source code has various vulnerabilities including xss, injections, open redirect and other vulnerabilities. So do not test and execute it in a real environment.
The user of this repository is to understand how a blog/website works with the NodeJS language.
NodeJS functions in this repository are described in a simple and understandable way so that users can study the source codes and understand how they work. You can run the codes by cloning the repository and the NodeJS launcher.
git clone https://github.com/mahyarkermani1/nodejs.git
cd nodejs
nodemon index.js
Important
The database folder contains parameters to set the database values (name, username and other parameters in the database). You need to edit and configure the database folder according to your requirements to be able to run this source code.
The purpose of providing this source code is that all the code in this section is designed and written in simple and understandable language, and users can understand how websites work with NodeJs by studying the files in each directory, changing and modeling them.