Final Thoughts

We’ll meet up with our friend the wizard again at the end of the book to see what he’s learned to make his magic fruit orchard a safer place. Of course, we know that the wizard is wise enough not to test out his new spells on anyone’s trees except his own. This goes for you too. Virtually all of the attack techniques we’ll be describing are illegal for you to test against any web site, unless you own that site yourself or have explicit permission from the owner.

We’ve Covered

Misplaced priorities and the need for a new focus

image Seventy percent of attacks come in through a site’s web applications.

Spending money on network firewalls ...

Get Web Application Security, A Beginner's Guide now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.