Grokking Web Application Security
by: Malcolm McDonald (Author)
Publisher:Manning Publications
Edition:1st
Publication Date: 7 May 2024
Language:English
Print Length:388 pages
ISBN-10:1633438260
ISBN-13:9781633438262
Book Description
When you launch an application on the web, every hacker in the world has access to it. Are you sure your web apps can stand up to the most sophisticated attacks?Grokking Web Application Security is a brilliantly illustrated and clearly written guide that delivers detailed coverage on:How the browser security model works, including sandboxing, the same-origin policy, and methods of securing cookiesSecuring web servers with input validation, escaping of output, and defense in depthA development process that prevents security bugsProtecting yourself from browser vulnerabilities such as cross-site scripting, cross-site request forgery, and clickjackingNetwork vulnerabilities like man-in-the-middle attacks, SSL-stripping, and DNS poisoningPreventing authentication vulnerabilities that allow brute forcing of credentials by using single sign-on or multi-factor authenticationAuthorization vulnerabilities like broken access control and session jackingHow to use encryption in web applicationsInjection attacks, command execution attacks, and remote code execution attacksMalicious payloads that can be used to attack XML parsers, and file upload functions
About the Author
From the Back Cover
From the Back Cover:Grokking Web Application Security teaches you everything you need to know to secure your web applications in the browser, on the server, and even at the code level. The book is perfect for both junior and experienced learners. It's written to be language-agnostic, with advice and vulnerability insights that will work with any stack.You'll begin with the foundations of web security and then dive into dozens of practical security recommendations for both common and not-so-common vulnerabilities: everything from SQL injection to cross-site scripting inclusion attacks. Explore growing modern threats like supply-chain attacks and attacks on APIs, learn about cryptography and how it applies to the web, and discover how to pick up the pieces after a hacker has successfully gotten inside your app.About the reader:For junior web developers who know the basics of web programming, or more experienced developers looking for concrete advice on solving vulnerabilities.
About the Author Malcolm McDonald is the creator of hacksplaining.com, a comprehensive and interactive security training solution that helps working web developers brush up on their security knowledge. He is a security engineer with 20 years of experience across investment banking, start-ups, and PayPal. He has personally trained thousands of developers in web security over his career.
未经允许不得转载:电子书百科大全 » Grokking Web Application Security
评论前必须登录!
登陆 注册