Hacking Exposed Web Applications - Softcover

Scambray, Joel; Shema, Mike; Sima, Caleb; Bhalla, Nishchal

 
9780072262995: Hacking Exposed Web Applications
Softcover
ISBN 10: 0072262990 ISBN 13: 9780072262995
Verlag: McGraw-Hill Professional, 2006

Inhaltsangabe

Implement bulletproof e-business security the proven Hacking Exposed way

Defend against the latest Web-based attacks by looking at your Web applications through the eyes of a malicious intruder. Fully revised and updated to cover the latest Web exploitation techniques, Hacking Exposed Web Applications, Second Edition shows you, step-by-step, how cyber-criminals target vulnerable sites, gain access, steal critical data, and execute devastating attacks. All of the cutting-edge threats and vulnerabilities are covered in full detail alongside real-world examples, case studies, and battle-tested countermeasures from the authors' experiences as gray hat security professionals.

Die Inhaltsangabe kann sich auf eine andere Ausgabe dieses Titels beziehen.

Über die Autorin bzw. den Autor

Joel Scambray, CISSP is a senior director in Microsoft’s MSN Security group.

Mike Shema is the chief security officer of NT OBJECTtives and is regarded as one of the world’s top Web application security experts.

Caleb Sima is the cofounder and CTO of SPI Dynamics, a Web application security products company. He has been featured by the Associated Press.

Von der hinteren Coverseite

Implement bulletproof e-business security the proven Hacking Exposed way

Defend against the latest Web-based attacks by looking at your Web applications through the eyes of a malicious intruder. Fully revised and updated to cover the latest Web exploitation techniques, Hacking Exposed Web Applications, Second Edition shows you, step-by-step, how cyber-criminals target vulnerable sites, gain access, steal critical data, and execute devastating attacks. All of the cutting-edge threats and vulnerabilities are covered in full detail alongside real-world examples, case studies, and battle-tested countermeasures from the authors' experiences as gray hat security professionals.

  • Find out how hackers use infrastructure and application profiling to perform reconnaissance and enter vulnerable systems
  • Get details on exploits, evasion techniques, and countermeasures for the most popular Web platforms, including IIS, Apache, PHP, and ASP.NET
  • Learn the strengths and weaknesses of common Web authentication mechanisms, including password-based, multifactor, and single sign-on mechanisms like Passport
  • See how to excise the heart of any Web application's access controls through advanced session analysis, hijacking, and fixation techniques
  • Find and fix input validation flaws, including cross-site scripting (XSS), SQL injection, HTTP response splitting, encoding, and special character abuse
  • Get an in-depth presentation of the newest SQL injection techniques, including blind attacks, advanced exploitation through subqueries, Oracle exploits, and improved countermeasures
  • Learn about the latest XML Web Services hacks, Web management attacks, and DDoS attacks, including click fraud
  • Tour Firefox and IE exploits, as well as the newest socially-driven client attacks like phishing and adware

„Über diesen Titel“ kann sich auf eine andere Ausgabe dieses Titels beziehen.

Verlag
McGraw-Hill Professional
Erscheinungsdatum
2006
Sprache
Englisch
ISBN 10 
0072262990
ISBN 13 
9780072262995
Einband
Taschenbuch
Auflage
2
Anzahl der Seiten
520
Kontakt zum Hersteller
Nicht verfügbar
Verantwortliche Person
Nicht verfügbar