gogogo
Syndetics cover image
Image from Syndetics

Seven deadliest web application attacks [electronic book] / Mike Shema.

By: Contributor(s): Material type: TextTextSeries: Syngress seven deadliest attacks seriesPublication details: Amsterdam ; Boston : Syngress/Elsevier Science, c2010.Description: xvi, 146 p. : ill. ; 24 cmISBN:
  • 1597495433
  • 9781597495431
Subject(s): Genre/Form: Additional physical formats: No titleOnline resources:
Contents:
Introduction -- Chapter 1: Cross-Site Scripting (XSS) -- Chapter 2: Cross-Site Request Forgery (CSRF) -- Chapter 3: SQL Injection -- Chapter 4: Server Misconfiguration and Predictable Pages -- Chapter 5: Breaking Authentication Schemes -- Chapter 6: Logic Attacks -- Chapter 7: Web of Distrust --  .
Summary: Do you need to keep up with the latest hacks, attacks, and exploits effecting web applications? Then you need Seven Deadliest Web Application Attacks. This book pinpoints the most dangerous hacks and exploits specific to web applications, laying out the anatomy of these attacks including how to make your system more secure. You will discover the best ways to defend against these vicious hacks with step-by-step instruction and learn techniques to make your computer and network impenetrable. Attacks detailed in this book include: Cross-Site Scripting (XSS) Cross-Site Request Forgery (CSRF) SQL Injection Server Misconfiguration and Predictable Pages Breaking Authentication Schemes Logic Attacks Malware and Browser Attacks Knowledge is power, find out about the most dominant attacks currently waging war on computers and networks globally Discover the best ways to defend against these vicious attacks; step-by-step instruction shows you how Institute countermeasures, don't be caught defenseless again, learn techniques to make your computer and network impenetrable.
No physical items for this record

Enhanced descriptions from Syndetics:

Seven Deadliest Web Application Attacks highlights the vagaries of web security by discussing the seven deadliest vulnerabilities exploited by attackers. This book pinpoints the most dangerous hacks and exploits specific to web applications, laying out the anatomy of these attacks including how to make your system more secure. You will discover the best ways to defend against these vicious hacks with step-by-step instruction and learn techniques to make your computer and network impenetrable.

Each chapter presents examples of different attacks conducted against web sites. The methodology behind the attack is explored, showing its potential impact. The chapter then moves on to address possible countermeasures for different aspects of the attack. The book consists of seven chapters that cover the following: the most pervasive and easily exploited vulnerabilities in web sites and web browsers; Structured Query Language (SQL) injection attacks; mistakes of server administrators that expose the web site to attack; brute force attacks; and logic attacks. The ways in which malicious software malware has been growing as a threat on the Web are also considered.

This book is intended for information security professionals of all levels, as well as web application developers and recreational hackers.

Includes bibliographical references and index.

Introduction -- Chapter 1: Cross-Site Scripting (XSS) -- Chapter 2: Cross-Site Request Forgery (CSRF) -- Chapter 3: SQL Injection -- Chapter 4: Server Misconfiguration and Predictable Pages -- Chapter 5: Breaking Authentication Schemes -- Chapter 6: Logic Attacks -- Chapter 7: Web of Distrust --  .

Do you need to keep up with the latest hacks, attacks, and exploits effecting web applications? Then you need Seven Deadliest Web Application Attacks. This book pinpoints the most dangerous hacks and exploits specific to web applications, laying out the anatomy of these attacks including how to make your system more secure. You will discover the best ways to defend against these vicious hacks with step-by-step instruction and learn techniques to make your computer and network impenetrable. Attacks detailed in this book include: Cross-Site Scripting (XSS) Cross-Site Request Forgery (CSRF) SQL Injection Server Misconfiguration and Predictable Pages Breaking Authentication Schemes Logic Attacks Malware and Browser Attacks Knowledge is power, find out about the most dominant attacks currently waging war on computers and networks globally Discover the best ways to defend against these vicious attacks; step-by-step instruction shows you how Institute countermeasures, don't be caught defenseless again, learn techniques to make your computer and network impenetrable.

Electronic reproduction. Amsterdam : Elsevier Science & Technology, 2010. Mode of access: World Wide Web. System requirements: Web browser. Title from title screen (viewed on Apr. 28, 2010). Access may be restricted to users at subscribing institutions.

Table of contents provided by Syndetics

  • Introduction
  • Chapter 1 Cross-Site Scripting (XSS)
  • Chapter 2 Cross-Site Request Forgery (CSRF)
  • Chapter 3 SQL Injection
  • Chapter 4 Server Misconfiguration and Predictable Pages
  • Chapter 5 Breaking Authentication Schemes
  • Chapter 6 Logic Attacks
  • Chapter 7 Web of Distrust

Author notes provided by Syndetics

Mike Shema develops web application security solutions at Qualys, Inc. His current work is focused on an automated web assessment service. Mike previously worked as a security consultant and trainer for Foundstone where he conducted information security assessments across a range of industries and technologies. His security background ranges from network penetration testing, wireless security, code review, and web security. He is the co-author of Hacking Exposed: Web Applications, The Anti-Hacker Toolkit and the author of Hack Notes: Web Application Security. In addition to writing, Mike has presented at security conferences in the U.S., Europe, and Asia.

Powered by Koha