CHAPTER 11

Performing a Web Site Vulnerability and Security Assessment

SECURITY TESTING is an absolute requirement for Web servers and Web applications. When you are performing Web application security assessments, there are multiple components to consider to adequately identify and remedy risks. There are also many tools, both freeware and commercial, available to perform security and vulnerability testing. The most accurate method will involve using multiple programs and manual techniques. In addition to selecting and using the right tools, it’s equally important to plan the security assessment properly.

Some of the techniques and utilities mentioned in this chapter may be interpreted by systems administrators or security monitoring systems ...

Get Internet Security: How to Defend Against Attackers on the Web, 2nd Edition now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.