HACKING EXPOSED WEB APPLICATIONS 3/E

Have a Promotion Code?

Please enter it here:

Great deals and more!

Sign up for special offers, exclusive discounts, and new product announcements from McGraw-Hill Professional.

SIGN UP TODAY


Date

October 1, 2010

Format

Electronic book text, 464 pages

ISBN

0071740422 / 9780071740425

Adobe Digital Editions® is required to view your downloaded eBooks.
Click here to get Adobe Digital Editions
To learn more about eBooks please see our eBook FAQ.


If you're having problems installing due to firewall issues please go here:
http://kb2.adobe.com/cps/403/kb403051.html

$

Your Price

50.00



Overview


Main description

This fully updated bestseller covers the latest web application exploitation techniques and their proven countermeasures

Hacking Exposed: Web Applications, Third Edition shows you how to meet the challenges of online security with the two-pronged "attack-countermeasure" approach. The Third Edition provides leading-edge updates to exploitation techniques, as well as new chapters covering industry-wide threats and countermeasures, such as web application hacking, phishing, and preventative website development practices.

This definitive guide is organized according to the internationally bestselling Hacking Exposed methodology, progressing from reconnaissance of the target through exploitation of common misconfigurations and software flaws. Anecdotes and personal experiences are interspersed throughout to reinforce the relevance and severity of specific vulnerabilities. Based on the author’s many years as a security professional hired to break into the world’s largest IT infrastructures, the techniques presented in this book will improve the security of online business.

Hacking Exposed: Web Applications, Third Edition

  • Covers new web application and phishing techniques as well as best practices in preventing web attacks
  • Includes new case studies and examples based on author’s expertise working with global clients
  • Offers seasoned insight into the core security issues that plague online business platforms of all sizes
  • Provides proven strategies to prevent, detect, and remediate common weaknesses and maintain rock-solid security for the long term

All-inclusive coverage:
Hacking Web Apps 101; Profiling; Hacking Web Platforms; Attacking Web Authentication; Attacking Session Management; Input Injection Attacks; Attacking XML Web Services; Attacking Web Application Development; Hacking Web Client; Full-Knowledge Analysis; Web Application Security Scanners; Web Site Security Checklist

Review of Previous Edition
“A great addition to an arsenal to find, exploit, and overcome Web security issues. Suitable for developers and analysts alike, it will unveil the myriad of techniques your adversaries may employ.” -- Heather Adkins, Google Security


Table of contents

Chapter 1 Hacking Web Apps 101
Chapter 2 Profiling
Chapter 3 Hacking Web Platforms
Chapter 4 Attacking Web Authentication
Chapter 5 Attacking Web Authorization
Chapter 6 Input Validation Attacks
Chapter 7 Attacking XML Web Services
Chapter 8 Attacking Web Application Management
Chapter 9 Hacking Web Clients
Chapter 10 Full-Knowledge Analysis
Chapter 11 Web Application Security Scanners
Appendix A Web Application Security Checklist
Appendix B Web Hacking Tools and Techniques Cribsheet


Author comments

Author Profile
Joel Scambray, CISSP, is co-founder and CEO of Consciere, provider of strategic security advisory services. He has assisted companies ranging from newly minted startups to members of the Fortune 50 address information security challenges and opportunities for over a dozen years. Joel's background includes roles as an executive, technical consultant, and entrepreneur. He has been a Senior Director at Microsoft Corporation, where he led Microsoft's online services security efforts for three years before joining the Windows platform and services division to focus on security technology architecture. Joel also co-founded security software and services startup Foundstone Inc. and helped lead it to acquisition by McAfee for $86M. In 2007, he helped lead US-based Leviathan Security from start-up to well-recognized boutique security consultancy. He previously held positions as a Manager for Ernst & Young, security columnist for Microsoft TechNet, Editor at Large for InfoWorld Magazine, and Director of IT for a major commercial real estate firm. Joel is widely recognized as co-author of Hacking Exposed: Network Security Secrets & Solutions, the international best-selling computer security book that first appeared in 1999. He is also lead author of the Hacking Exposed: Windows and Hacking Exposed: Web Applications series. Joel brings deep experience in technology, IT operations security, and consulting to clients ranging from small startups to the world’s largest enterprises. He has spoken widely on information security at forums including Black Hat, I-4, and The Asia Europe Meeting (ASEM), as well as organizations including IANS, CERT, The Computer Security Institute (CSI), ISSA, ISACA, SANS, private corporations, and government agencies such as the Korean Information Security Agency (KISA), FBI, and the RCMP. Joel holds a BS from the University of California at Davis, a MA from UCLA, and he is a Certified Information Systems Security Professional (CISSP).





Copyright 2014 McGraw-Hill Global Education Holdings, LLC

WELCOME!

Before you can enjoy free downloads from McGraw-Hill Professional, we ask that you please provide your email address and country.



Yes, I want to receive other special offer.