Five years after its debut, it seems that node.js has become the most popular cross platform runtime environment for server side applications written in JavaScript.
There is no argument about the power of node.js however as with any coding language or framework, security issues are just around the corner waiting to be picked up.
In this talk, we discuss new attack techniques against applications built on top of the Node.js language.
Attacks include: