Thinking like a Defender
The goal of this book is to help you prevent the logic flaws that lead to web application vulnerabilities, and we’ll do this in two ways. First, we’ll examine the code and configuration problems underlying specific web application vulnerabilities like cross-site scripting and SQL injection. It’s crucial to be properly educated in defense techniques for these vulnerabilities, because you will need to put them to the test.
A lot of people think that they’re safe from attack because their company is too small to be noticed by attackers. Hackers only go after the big guys like Google and Microsoft, right? Think again: ...