- ホーム
- > 洋書
- > 英文書
- > Computer / General
Full Description
Publisher's Note: Products purchased from Third Party sellers are not guaranteed by the publisher for quality, authenticity, or access to any online entitlements included with the product.
The latest Web app attacks and countermeasures from world-renowned practitionersProtect your Web applications from malicious attacks by mastering the weapons and thought processes of today's hacker. Written by recognized security practitioners and thought leaders, Hacking Exposed Web Applications, Third Edition is fully updated to cover new infiltration methods and countermeasures. Find out how to reinforce authentication and authorization, plug holes in Firefox and IE, reinforce against injection attacks, and secure Web 2.0 features. Integrating security into the Web development lifecycle (SDL) and into the broader enterprise information security program is also covered in this comprehensive resource.
Get full details on the hacker's footprinting, scanning, and profiling tools, including SHODAN, Maltego, and OWASP DirBuster
See new exploits of popular platforms like Sun Java System Web Server and Oracle WebLogic in operation
Understand how attackers defeat commonly used Web authentication technologies
See how real-world session attacks leak sensitive data and how to fortify your applications
Learn the most devastating methods used in today's hacks, including SQL injection, XSS, XSRF, phishing, and XML injection techniques
Find and fix vulnerabilities in ASP.NET, PHP, and J2EE execution environments
Safety deploy XML, social networking, cloud computing, and Web 2.0 services
Defend against RIA, Ajax, UGC, and browser-based, client-side exploits
Implement scalable threat modeling, code review, application scanning, fuzzing, and security testing procedures
Contents
Chapter 1 Hacking Web Apps 101
Chapter 2 Profiling
Chapter 3 Hacking Web Platforms
Chapter 4 Attacking Web Authentication
Chapter 5 Attacking Web Authorization
Chapter 6 Input Injection Attacks
Chapter 7 Attacking XML Web Services
Chapter 8 Attacking Web Application Management
Chapter 9 Hacking Web Clients
Chapter 10 The Enterprise Web Application Security Program
Chapter 11 Web Application Security Scanners
Appendix A Web Application Security Checklist
Appendix B Web Hacking Tools and Techniques Cribsheet
Index
