Grokking Web Application Security
Published on 24. June 2024
Book
Hardback
336 pages
978-1-63343-826-2 (ISBN)
Description
When you launch an application on the web, every hacker in the world has access to it. Are you sure your web apps can stand up to the most sophisticated attacks?
Grokking Web Application Security is a brilliantly illustrated and clearly written guide that delivers detailed coverage on:
How the browser security model works, including sandboxing, the same-origin policy, and methods of securing cookies
Securing web servers with input validation, escaping of output, and defense in depth
A development process that prevents security bugs
Protecting yourself from browser vulnerabilities such as cross-site scripting, cross-site request forgery, and clickjacking
Network vulnerabilities like man-in-the-middle attacks, SSL-stripping, and DNS poisoning
Preventing authentication vulnerabilities that allow brute forcing of credentials by using single sign-on or multi-factor authentication
Authorization vulnerabilities like broken access control and session jacking
How to use encryption in web applications
Injection attacks, command execution attacks, and remote code execution attacks
Malicious payloads that can be used to attack XML parsers, and file upload functions
Grokking Web Application Security is a brilliantly illustrated and clearly written guide that delivers detailed coverage on:
How the browser security model works, including sandboxing, the same-origin policy, and methods of securing cookies
Securing web servers with input validation, escaping of output, and defense in depth
A development process that prevents security bugs
Protecting yourself from browser vulnerabilities such as cross-site scripting, cross-site request forgery, and clickjacking
Network vulnerabilities like man-in-the-middle attacks, SSL-stripping, and DNS poisoning
Preventing authentication vulnerabilities that allow brute forcing of credentials by using single sign-on or multi-factor authentication
Authorization vulnerabilities like broken access control and session jacking
How to use encryption in web applications
Injection attacks, command execution attacks, and remote code execution attacks
Malicious payloads that can be used to attack XML parsers, and file upload functions
More details
Language
English
Place of publication
New York
United States
Target group
Professional and scholarly
Dimensions
Height: 234 mm
Width: 185 mm
Thickness: 18 mm
Weight
582 gr
ISBN-13
978-1-63343-826-2 (9781633438262)
Copyright in bibliographic data and cover images is held by Nielsen Book Services Limited or by the publishers or by their respective licensors: all rights reserved.
Schweitzer Classification
Other editions
Additional editions
Malcolm McDonald
Grokking Web Application Security
E-Book
07/2024
1st Edition
Simon + Schuster LLC
€49.44
Available for download
Person
Malcolm McDonald is the creator of hacksplaining.com, a comprehensive and interactive security training solution that helps working web developers brush up on their security knowledge. He is a security engineer with 20 years of experience across investment banking, start-ups, and PayPal. He has personally trained thousands of developers in web security over his career.