How to Attack and Defend Your Website
Published on 18. December 2014
Book
Paperback/Softback
76 pages
978-0-12-802732-5 (ISBN)
Description
How to Attack and Defend Your Website is a concise introduction to web security that includes hands-on web hacking tutorials. The book has three primary objectives: to help readers develop a deep understanding of what is happening behind the scenes in a web application, with a focus on the HTTP protocol and other underlying web technologies; to teach readers how to use the industry standard in free web application vulnerability discovery and exploitation tools - most notably Burp Suite, a fully featured web application testing tool; and finally, to gain knowledge of finding and exploiting the most common web security vulnerabilities.
This book is for information security professionals and those looking to learn general penetration testing methodology and how to use the various phases of penetration testing to identify and exploit common web protocols.
How to Attack and Defend Your Website is be the first book to combine the methodology behind using penetration testing tools such as Burp Suite and Damn Vulnerable Web Application (DVWA), with practical exercises that show readers how to (and therefore, how to prevent) pwning with SQLMap and using stored XSS to deface web pages.
This book is for information security professionals and those looking to learn general penetration testing methodology and how to use the various phases of penetration testing to identify and exploit common web protocols.
How to Attack and Defend Your Website is be the first book to combine the methodology behind using penetration testing tools such as Burp Suite and Damn Vulnerable Web Application (DVWA), with practical exercises that show readers how to (and therefore, how to prevent) pwning with SQLMap and using stored XSS to deface web pages.
Reviews / Votes
"...does a reasonable job of opening your eyes to the kinds of vulnerabilities from which your site might suffer. You can then use that understanding to fix or prevent them...if you care about your site's security, this will get you started." --Network SecurityMore details
Language
English
Place of publication
Rockland, MA
United States
Target group
Professional and scholarly
Product notice
Paperback (trade)
Unsewn / adhesive bound
Dimensions
Height: 228 mm
Width: 151 mm
Thickness: 12 mm
Weight
166 gr
ISBN-13
978-0-12-802732-5 (9780128027325)
Copyright in bibliographic data and cover images is held by Nielsen Book Services Limited or by the publishers or by their respective licensors: all rights reserved.
Schweitzer Classification
Other editions
Additional editions
Henry Dalziel | Alejandro Caceres
How to Attack and Defend Your Website
E-Book
12/2014
Syngress
€31.95
Available for download
Persons
Henry Dalziel is a serial education entrepreneur, founder of Concise Ac Ltd, online cybersecurity blogger and e-book author. He writes for the Concise-Courses.com blog and has developed numerous cybersecurity continuing education courses and books. Concise Ac Ltd develops and distributes continuing education content [books and courses] for cybersecurity professionals seeking skill enhancement and career advancement. The company was recently accepted onto the UK Trade & Investment's (UKTI) Global Entrepreneur Programme (GEP). Alejandro Caceres is the founder of Hyperion Gray, LLC, a web security and big data R&D company. He is also the creator of the PunkSPIDER project, an open-source web app vulnerability scanner and repository of vulnerabilities found on the open web. Alejandro has spoken at several major security conferences (DEF CON, ShmooCon, AppSec) and enjoys making web app hacking principles more accessible to web developers so that they can design and build more secure applications.
Content
Chapter 1: Web Technologies
Chapter 2: Exploitation
Chapter 3: Finding Vulnerabilities
Chapter 2: Exploitation
Chapter 3: Finding Vulnerabilities