Book description
Web applications are used every day by millions of users, which is why they are one of the most popular vectors for attackers. Obfuscation of code has allowed hackers to take one attack and create hundreds-if not millions-of variants that can evade your security measures. Web Application Obfuscation takes a look at common Web infrastructure and security controls from an attacker's perspective, allowing the reader to understand the shortcomings of their security systems. Find out how an attacker would bypass different types of security controls, how these very security controls introduce new types of vulnerabilities, and how to avoid common pitfalls in order to strengthen your defenses.
- Named a 2011 Best Hacking and Pen Testing Book by InfoSec Reviews
- Looks at security tools like IDS/IPS that are often the only defense in protecting sensitive data and assets
- Evaluates Web application vulnerabilties from the attacker's perspective and explains how these very systems introduce new types of vulnerabilities
- Teaches how to secure your data, including info on browser quirks, new attacks and syntax tricks to add to your defenses against XSS, SQL injection, and more
Table of contents
- Cover Image
- Table of Contents
- Front matter
- Copyright
- Acknowledgments
- About the Authors
- About the Technical Editor
- Chapter 1. Introduction
- Chapter 2. HTML
- Chapter 3. JavaScript and VBScript
- Chapter 4. Nonalphanumeric JavaScript
- Chapter 5. CSS
- Chapter 6. PHP
- Chapter 7. SQL
- Chapter 8. Web application firewalls and client-side filters
- Chapter 9. Mitigating bypasses and attacks
- Chapter 10. Future developments
- Index
Product information
- Title: Web Application Obfuscation
- Author(s):
- Release date: January 2011
- Publisher(s): Syngress
- ISBN: 9781597496056
You might also like
book
Ethical Hacking and Penetration Testing Guide
Requiring no prior hacking experience, Ethical Hacking and Penetration Testing Guide supplies a complete introduction to …
book
Real-World Bug Hunting
Real-World Bug Hunting is a field guide to finding software bugs. Ethical hacker Peter Yaworski breaks …
book
Mastering Reverse Engineering
Implement reverse engineering techniques to analyze software, exploit software targets, and defend against security threats like …
book
The Web Application Hacker's Handbook, 2nd Edition
The highly successful security book returns with a new edition, completely updated Web applications are the …