Home Security & Privacy WebSocket Security

WebSocket Security Cheat Sheet

WSS, origin checks, and auth

Last Updated: November 21, 2025

Layers

Layer Control
Transport wss
Auth token
Message size limit bytes

Commands

wss://example.com
Use TLS
check origin header
Ensure allowed
rate limit
Thwart floods

Rules

Authenticate once, use tokens, and monitor connections.

Related Cheat Sheets

Vault Secrets Engines

Enable engines, generate dynamic credentials, and renew leases

Incident Response

Declare incidents, contain, communicate, and learn

Node.js Security

Audit dependencies, configure CSP, and lock env variables

Passwordless Authentication

Deploy magic links, WebAuthn passkeys, and OTP flows

💡 Pro Tip: Use wss, validate origins, and limit message size.

Related Cheat Sheets

Browse all Security & Privacy →

← Back to Security & Privacy | Browse all categories | View all cheat sheets