Web application security : exploitation and countermeasures for modern web applications /

While many resources for network and IT security are available, detailed knowledge regarding modern web application security has been lacking-until now. This practical guide provides both offensive and defensive security concepts that software engineers can easily learn and apply. Andrew Hoffman, a...

Descripción completa

Detalles Bibliográficos
Clasificación:Libro Electrónico
Autor principal: Hoffman, Andrew (Autor)
Formato: Electrónico eBook
Idioma:Inglés
Publicado: [Place of publication not identified] : O'Reilly Media, Inc, 2020.
Temas:
Computer networks > Security measures.
World Wide Web > Security measures.
Application software.
Réseaux d'ordinateurs > Sécurité > Mesures.
Web > Sécurité > Mesures.
Logiciels d'application.
Application software
Computer networks > Security measures
World Wide Web > Security measures
Acceso en línea:Texto completo (Requiere registro previo con correo institucional)
Tabla de Contenidos:
  • The history of software security
  • Part I. Recon. Introduction to web application reconnaissance
  • The structure of a modern web application
  • Finding subdomains
  • API analysis
  • Identifying third-party dependencies
  • Identifying weak points in application architecture
  • Part II. Offense. Introduction to hacking web applications
  • Cross-site scripting (XSS)
  • Cross-site request forgery (CSRF)
  • XML external entity (XXE)
  • Injection
  • Denial of service (DoS)
  • Exploiting third-party dependencies
  • Part III. Defense. Securing modern web applications
  • Secure application architecture
  • Reviewing code for security
  • Vulnerability discovery
  • vulnerability management
  • Defending against XSS attacks
  • Defending against CSRF attacks
  • Defending against XXE
  • Defending against injection
  • Defending against DoS
  • Securing third-party dependencies.

Ejemplares similares