Book description
The latest Web app attacks and countermeasures from world-renowned practitioners
Protect your Web applications from malicious attacks by mastering the weapons and thought processes of today's hacker. Written by recognized security practitioners and thought leaders, Hacking Exposed Web Applications, Third Edition is fully updated to cover new infiltration methods and countermeasures. Find out how to reinforce authentication and authorization, plug holes in Firefox and IE, reinforce against injection attacks, and secure Web 2.0 features. Integrating security into the Web development lifecycle (SDL) and into the broader enterprise information security program is also covered in this comprehensive resource.
- Get full details on the hacker's footprinting, scanning, and profiling tools, including SHODAN, Maltego, and OWASP DirBuster
- See new exploits of popular platforms like Sun Java System Web Server and Oracle WebLogic in operation
- Understand how attackers defeat commonly used Web authentication technologies
- See how real-world session attacks leak sensitive data and how to fortify your applications
- Learn the most devastating methods used in today's hacks, including SQL injection, XSS, XSRF, phishing, and XML injection techniques
- Find and fix vulnerabilities in ASP.NET, PHP, and J2EE execution environments
- Safety deploy XML, social networking, cloud computing, and Web 2.0 services
- Defend against RIA, Ajax, UGC, and browser-based, client-side exploits
- Implement scalable threat modeling, code review, application scanning, fuzzing, and security testing procedures
Table of contents
- Cover Page
- Hacking Exposed™ Web Applications: Web Application Security Secrets and Solutions
- Copyright Page
- Dedication
- About the Authors
- AT A GLANCE
- Contents
- Foreword
- Acknowledgments
- Introduction
- 1 Hacking Web Apps 101
- 2 Profiling
- 3 Hacking Web Platforms
- 4 Attacking Web Authentication
- 5 Attacking Web Authorization
- 6 Input Injection Attacks
- 7 Attacking XML Web Services
- 8 Attacking Web Application Management
- 9 Hacking Web Clients
- 10 The Enterprise Web Application Security Program
- A Web Application Security Checklist
- B Web Hacking Tools and Techniques Cribsheet
- Index
Product information
- Title: Hacking Exposed Web Applications, Third Edition, 3rd Edition
- Author(s):
- Release date: October 2010
- Publisher(s): McGraw-Hill
- ISBN: 9780071740425
You might also like
book
The Basics of Web Hacking
The Basics of Web Hacking introduces you to a tool-driven process to identify the most widespread …
book
The Browser Hacker's Handbook
Hackers exploit browser vulnerabilities to attack deep within networks The Browser Hacker's Handbook gives a practical …
book
Hacking Exposed 7, 7th Edition
The latest tactics for thwarting digital attacks “Our new reality is zero-day, APT, and state-sponsored attacks. …
book
Hacking Exposed Wireless, Third Edition, 3rd Edition
Exploit and defend against the latest wireless network attacks Learn to exploit weaknesses in wireless network …