Being lightweight, fast, and scalable, Node.js is becoming a widely adopted platform for developing web applications. This project provides an environment to learn how OWASP Top 10 security risks apply to web applications developed using Node.js and how to effectively address them.
- Install Node.js - NodeGoat requires Node v0.10.*
- Git command line tools - follow the setup instructions on GitHub or download here
- Install MongoDB
Open a command prompt / terminal window and run the command below from the parent directory inside which you would like the NodeGoat code copied.
git clone https://github.com/bertonjulian/NodeGoat.git
- Install node modules
cd NodeGoat
npm install
-
Create and populate local DB
-
Run
grunt populate
to populate the database with dummy data -
Start server
grunt run
This starts the NodeGoat application at url http://localhost:4000/
Contributions from community are key to make NodeGoat a high quality comprehensive resource. Lets make NodeGoat awesome together!
New to git? You may find these resources helpful:
Contact me at julian [dot] berton [at] owasp [dot] org
Code licensed under the Apache License v2.0.