February 2006
Intermediate to advanced
240 pages
5h 47m
English
book
How to Break Web Software: Functional and Security Testing of Web Applications and Web Services
by James A. Whittaker, Mike Andrews
Content preview from How to Break Web Software: Functional and Security Testing of Web Applications and Web Services
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
Start your free trial
Index
Symbols
; (semicolon), 105
/ (HTTP), 91
= (equal sign), 117
403 errors, 122
A
access control lists (ACLs), 82
access restrictions, 120
account.php, 176
ACLs (Access Control Lists), 82
ActiveX controls, 146
Address Resolution Protocol (ARP), 2
America Online (AOL), 114
anonymity, 115
Apache
forcing weak cryptography, 133
restricted users, 106
application comments, 16
ARP (Address Resolution Protocol), 2-3
ASCII characters, 91
attacks
authentication
breaking authentication. See breaking authentication
cross-site tracing. See cross-site tracing
fake cryptography. See fake cryptography
forcing weak cryptography. See forcing weak cryptography
form-based authentication, 122
HTTP authentication, 120
buffer overflow attacks, 157
bypass client-side ...