Welcome to CyberBank, a highly secure, modern, and fully responsive banking portal built with a defense-in-depth approach. This project was engineered from the ground up to demonstrate enterprise-grade security protocols, robust authentication mechanisms, and an impenetrable web architecture.
🚀 Live Deployment: Hosted via Vercel.
CyberBank implements an exhaustive list of security measures to protect user data, prevent exploitation, and ensure secure banking transactions.
- Multi-Factor Authentication (OTP): Implements robust OTP verification for critical actions.
- OTP Hashing (Seed/ID): OTPs are never stored in plain text. They are hashed and tied to unique Seeds/IDs to prevent interception and replay attacks.
- Role-Based Access Control (RBAC): Strict authorization checks separating standard users from administrators.
- Account Lockout (Anti-Brute Force): The system automatically blocks an account/IP after 3 consecutive failed login attempts to prevent brute-force and credential stuffing attacks.
- Secure Session Tokens: Cryptographically secure, time-bound session tokens are issued upon successful authentication.
- Anti-CSRF Tokens: Cross-Site Request Forgery (CSRF) tokens are embedded in all state-changing requests, ensuring actions are intentionally initiated by the authenticated user.
- Multi-Tab Prevention: Advanced state management to prevent multi-tab concurrency vulnerabilities, ensuring session integrity remains intact across browsing instances.
- CORS Restrictions: Strict Cross-Origin Resource Sharing (CORS) policies are enforced so that APIs only respond to whitelisted domains, eliminating cross-origin attacks.
- HashMap Memory Storage: Utilizes ultra-fast HashMaps for O(1) time complexity lookups for active session validation and temporary OTP tracking, ensuring rapid authentication without database bottlenecks.
- SQL Injection Prevention: Prepared statements and parameterized queries are rigorously used across the database layer, making SQL injection (SQLi) impossible.
- Client-Side Inspect Prevention: Advanced client-side scripts to disable developer tools, F12, right-click, and specific key combinations to deter casual tampering and code inspection.
- XSS Mitigation: Strict sanitization and encoding of all user inputs before rendering them on the frontend.
- Responsive Design: The UI is beautifully crafted to be 100% responsive, delivering a seamless experience across desktops, tablets, and mobile devices.
- Real-Time Processing: Designed for instantaneous transaction processing and real-time state updates on the frontend.
- Modern Tooling: Built utilizing modern frontend technologies (Vite/JavaScript) and deployed seamlessly via Vercel.
If you want to run this project locally:
- Clone the Repository
git clone https://github.com/Weirdo-001/CyberBank.git
- Install Dependencies
npm install
- Run the Development Server
npm run dev
- Build for Production
npm run build
This project was developed for educational and demonstration purposes to showcase modern cybersecurity principles in web development. The security features implemented reflect industry best practices for securing financial and sensitive web applications.