Chapter 14

Websites and Applications

In This Chapter

arrow Testing websites and web applications

arrow Hacking with Google

arrow Protecting against SQL injection and cross-site scripting

arrow Preventing login weaknesses

arrow Countering web abuse

arrow Analyzing the source code

Websites and web applications are common targets for attack because they’re everywhere and often open for anyone to poke and prod. Basic websites used for marketing, contact information, document downloads, and so on are especially easy for the bad guys to play around with. However, for criminal hackers, websites that provide a front end to complex applications and databases that store valuable information, such as credit card and Social Security numbers, are especially attractive. This is where the money is, both literally and figuratively.

Why are websites and applications so vulnerable? The consensus is that they’re vulnerable because of ...

Get Hacking For Dummies, 4th Edition now with the O’Reilly learning platform.

O’Reilly members experience live online training, plus books, videos, and digital content from nearly 200 publishers.