7 Network vulnerabilities

In this chapter

How monster-in-the-middle attacks can be used to snoop on unencrypted traffic
How your users can be misdirected by DNS poisoning attacks and doppelganger domains
How your certificates and encryption keys could be compromised—and what to do if they are

In chapter 6, we looked at vulnerabilities that occur in the browser. In chapter 8, we will start to look at how web servers exhibit vulnerabilities. Between the two, however, are a lot of internet and a large class of vulnerabilities that occur as traffic passes back and forth.

Securing traffic passing over the internet is theoretically a solved problem: a modern browser supports strong encryption, and obtaining a certificate for your web application ...

Get Grokking Web Application Security now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Grokking Web Application Security by Malcolm McDonald

7 Network vulnerabilities

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly