The web application hacker's handbook
discovering and exploiting security flaws
by Dafydd Stuttard and Dafydd Stuttard
- 1 Rating
- 78 Want to read
- 10 Currently reading
- 1 Have read
This book is a practical guide to discovering and exploiting security flaws in web applications. The authors explain each category of vulnerability using real-world examples, screen shots and code extracts. The book is extremely practical in focus, and describes in detail the steps involved in detecting and exploiting each kind of security weakness found within a variety of applications such as online banking, e-commerce and other web applications. The topics covered include bypassing login mechanisms, injecting code, exploiting logic flaws and compromising other users. Because every web application is different, attacking them entails bringing to bear various general principles, techniques and experience in an imaginative way. The most successful hackers go beyond this, and find ways to automate their bespoke attacks. This handbook describes a proven methodology that combines the virtues of human intelligence and computerized brute force, often with devastating results. The authors are professional penetration testers who have been involved in web application security for nearly a decade. They have presented training courses at the Black Hat security conferences throughout the world. Under the alias "PortSwigger", Dafydd developed the popular Burp Suite of web application hack tools.
Check nearby libraries
Buy this book
Previews available in: English
Subjects
Computer Technology, Nonfiction, Security measures, Computer security, Internet, Internet, security measures, Hackers, Application software, Handbooks, manuals, Internet--security measures, Tk5105.875.i57 s85 2008, Internet--säkerhetsaspekter, Datasäkerhet, Internet -- security measures. sears, Computer security. sears, Tk5105.875.i57 s852 2011, 005.8Showing 4 featured editions. View all 12 editions?
| Edition | Availability |
|---|---|
1
The web application hacker's handbook: finding and exploiting security flaws
2011, Wiley
electronic resource :
in English
- 2nd ed.
1118026470 9781118026472
|
zzzz
Libraries near you:
WorldCat
|
2
The Web Application Hacker's Handbook
2008, John Wiley & Sons, Ltd.
Electronic resource
in English
0470237988 9780470237984
|
zzzz
Libraries near you:
WorldCat
|
3
The web application hacker's handbook: discovering and exploiting security flaws
2008, Wiley Pub.
in English
0470170778 9780470170779
|
aaaa
Libraries near you:
WorldCat
|
4
The Web Application Hacker's Handbook: Discovering and Exploiting Security Flaws
October 22, 2007, Wiley
Paperback
in English
0470170778 9780470170779
|
zzzz
Libraries near you:
WorldCat
|
Book Details
Edition Notes
Includes index.
Classifications
The Physical Object
ID Numbers
Community Reviews (1)
Feedback?Lists
See All-
M.k
from Monster Gaming868
-
Web
from Yupsa
History
- Created July 21, 2009
- 13 revisions
Wikipedia citation
×CloseCopy and paste this code into your Wikipedia page. Need help?
| December 19, 2023 | Edited by ImportBot | import existing book |
| November 28, 2023 | Edited by MARC Bot | import existing book |
| July 30, 2023 | Edited by ImportBot | import existing book |
| March 8, 2023 | Edited by MARC Bot | import existing book |
| July 21, 2009 | Created by ImportBot | Imported from Library of Congress MARC record. |