Cookie Security: HTTP Only
Rangeforce

Did you know Cybrary has FREE video training? Join more than 2,500,000 IT and cyber security professionals, students, career changers, and more, growing their careers on Cybrary.

Time
15 minutes
Difficulty
Beginner

Rangeforce's Secure Coding Labs - Web Application Security Essentials - OWASP Top 10 - Cookie Security: HTTP Only

Did you know Cybrary has FREE video training? Join more than 2,500,000 IT and cyber security professionals, students, career changers, and more, growing their careers on Cybrary.

Overview

Rangeforce's Secure Coding Lab “Cookie Security: HTTP Only” - OWASP Top 10 is a premium lab aimed to prepare you to effectively secure cookies and protect your organization from outside attacks. Cookies are essential and used everywhere when dealing with personal information and sensitive data in web browsers. Criminal hackers are after cookie data making the cookie security skill set a priority for organizations worldwide. In this beginner lab, you will learn Cookie Security as apart of OWASP Top 10.

Rangeforce's Secure Coding Lab “Cookie Security: HTTP Only” - OWASP Top 10 dives into Cookie Security. Cookies are a vital part of web application security and understanding how to set flags with cookies can help protect your network and machines. Rangeforce's Secure Coding Lab “Cookie Security” - OWASP Top 10 will give you hands-on experience in working with and setting HttpOnly cookies.

HttpOnly is a special flag that is added to cookies that tell a browser not to display the cookie through client-side scripts (document.cookie and others).

When a cookie is set with the HttpOnly flag, it tells the browser that this cookie should be strictly accessed by the server only. Any attempt to access the cookie from a client-side script is prohibited. This can help protect against session hijacking attacks.