{"product_id":"attack-and-defend-computer-security-set-isbn-9781118906736","title":"Attack and Defend Computer Security Set","description":"\u003cb\u003eDefend your networks and data from attack with this unique two-book security set\u003c\/b\u003e  \u003cp\u003eThe \u003ci\u003eAttack and Defend Computer Security Set\u003c\/i\u003e is a two-book set comprised of the bestselling second edition of \u003ci\u003eWeb Application Hacker’s Handbook\u003c\/i\u003e and \u003ci\u003eMalware Analyst’s Cookbook\u003c\/i\u003e. This special security bundle combines coverage of the two most crucial tactics used to defend networks, applications, and data from attack while giving security professionals insight into the underlying details of these attacks themselves.\u003c\/p\u003e \u003cp\u003eThe \u003ci\u003eWeb Application Hacker's Handbook\u003c\/i\u003e takes a broad look at web application security and exposes the steps a hacker can take to attack an application, while providing information on how the application can defend itself. Fully updated for the latest security trends and threats, this guide covers remoting frameworks, HTML5, and cross-domain integration techniques along with clickjacking, framebusting, HTTP parameter pollution, XML external entity injection, hybrid file attacks, and more.\u003c\/p\u003e \u003cp\u003eThe \u003ci\u003eMalware Analyst's Cookbook\u003c\/i\u003e includes a book and DVD and is designed to enhance the analytical capabilities of anyone who works with malware. Whether you’re tracking a Trojan across networks, performing an in-depth binary analysis, or inspecting a machine for potential infections, the recipes in this book will help you go beyond the basic tools for tackling security challenges to cover how to extend your favorite tools or build your own from scratch using C, Python, and Perl source code. The companion DVD features all the files needed to work through the recipes in the book and to complete reverse-engineering challenges along the way.\u003c\/p\u003e \u003cp\u003eThe \u003ci\u003eAttack and Defend Computer Security Set\u003c\/i\u003e gives your organization the security tools needed to sound the alarm and stand your ground against malicious threats lurking online.\u003c\/p\u003e \u003cb\u003eWEB APPLICATION HACKER’S HANDBOOK 2E\u003c\/b\u003e \u003cp\u003eChapter 1: Web Application (In)security 1\u003c\/p\u003e \u003cp\u003eChapter 2: Core Defense Mechanisms 17\u003c\/p\u003e \u003cp\u003eChapter 3: Web Application Technologies 39\u003c\/p\u003e \u003cp\u003eChapter 4: Mapping the Application 73\u003c\/p\u003e \u003cp\u003eChapter 5: Bypassing Client-Side Controls 117\u003c\/p\u003e \u003cp\u003eChapter 6: Attacking Authentication 159\u003c\/p\u003e \u003cp\u003eChapter 7: Attacking Session Management 205\u003c\/p\u003e \u003cp\u003eChapter 8: Attacking Access Controls 257\u003c\/p\u003e \u003cp\u003eChapter 9: Attacking Data Stores 287\u003c\/p\u003e \u003cp\u003eChapter 10: Attacking Back-End Components 357\u003c\/p\u003e \u003cp\u003eChapter 11: Attacking Application Logic 405\u003c\/p\u003e \u003cp\u003eChapter 12: Attacking Users: Cross-Site Scripting 431\u003c\/p\u003e \u003cp\u003eChapter 13: Attacking Users: Other Techniques 501\u003c\/p\u003e \u003cp\u003eChapter 14: Automating Customized Attacks 571\u003c\/p\u003e \u003cp\u003eChapter 15: Exploiting Information Disclosure 615\u003c\/p\u003e \u003cp\u003eChapter 16: Attacking Native Compiled Applications 633\u003c\/p\u003e \u003cp\u003eChapter 17: Attacking Application Architecture 647\u003c\/p\u003e \u003cp\u003eChapter 18: Attacking the Application Server 669\u003c\/p\u003e \u003cp\u003eChapter 19: Finding Vulnerabilities in Source Code 701\u003c\/p\u003e \u003cp\u003eChapter 20: A Web Application Hacker’s Toolkit 747\u003c\/p\u003e \u003cp\u003eChapter 21: A Web Application Hacker’s Methodology 791\u003c\/p\u003e \u003cp\u003e\u003cb\u003eMALWARE ANALYST’S COOKBOOK AND DVD\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eChapter 1: Anonymizing Your Activities 1\u003c\/p\u003e \u003cp\u003eChapter 2: Honeypots 27\u003c\/p\u003e \u003cp\u003eChapter 3: Malware Classifi cation 51\u003c\/p\u003e \u003cp\u003eChapter 4: Sandboxes and Multi-AV Scanners 89\u003c\/p\u003e \u003cp\u003eChapter 5: Researching Domains and IP Addresses 119\u003c\/p\u003e \u003cp\u003eChapter 6: Documents, Shellcode, and URLs 155\u003c\/p\u003e \u003cp\u003eChapter 7: Malware Labs 211\u003c\/p\u003e \u003cp\u003eChapter 8: Automation 239\u003c\/p\u003e \u003cp\u003eChapter 9: Dynamic Analysis 283\u003c\/p\u003e \u003cp\u003eChapter 10: Malware Forensics 337\u003c\/p\u003e \u003cp\u003eChapter 11: Debugging Malware 395\u003c\/p\u003e \u003cp\u003eChapter 12: De-Obfuscation 441\u003c\/p\u003e \u003cp\u003eChapter 13: Working with DLLs 487\u003c\/p\u003e \u003cp\u003eChapter 14: Kernel Debugging 511\u003c\/p\u003e \u003cp\u003eChapter 15: Memory Forensics with Volatility 571\u003c\/p\u003e \u003cp\u003eChapter 16: Memory Forensics: Code Injection and Extraction 601\u003c\/p\u003e \u003cp\u003eChapter 17: Memory Forensics: Rootkits 637\u003c\/p\u003e \u003cp\u003eChapter 18: Memory Forensics: Network and Registry 673\u003c\/p\u003e  \u003cp\u003e\u003cstrong\u003eDafydd Stuttard\u003c\/strong\u003e has more than 10 years' experience in the area of web application security. He is the lead author of \u003cem\u003eWeb Application Hacker's Handbook 1e and 2e\u003c\/em\u003e, has performed penetration testing training around the world. \u003c\/p\u003e\u003cp\u003e\u003cstrong\u003eMarcus Pinto\u003c\/strong\u003e is co-author of \u003cem\u003eWeb Application Hacker's Handbook\u003c\/em\u003e 1e and 2e and has over 10 years' experience within web application security. He has delivered a variety of training courses to technical audiences and speaks at security events around and outside of the UK. \u003c\/p\u003e\u003cp\u003e\u003cstrong\u003eMichael Hale Ligh\u003c\/strong\u003e is the lead author of \u003cem\u003eThe Malware Analyst's Cookbook\u003c\/em\u003e and Director of Malware Research of the The Volatility Project. Michael is a regular presenter at DefCon conferences. \u003c\/p\u003e\u003cp\u003e\u003cstrong\u003eMatt Richard\u003c\/strong\u003e is and is the Malicious Code Operations Lead at Raytheon Corporation and has written a number of testing tools. \u003cstrong\u003eSteven Adair\u003c\/strong\u003e is a security researcher with The Shadowserver Foundation and co-author of \u003cem\u003eThe Malware Analyst's Cookbook\u003c\/em\u003e and deals with cyber attacks of all kinds esp. those linked to cyber espionage. \u003c\/p\u003e\u003cp\u003e\u003cstrong\u003eBlake Hartstein\u003c\/strong\u003e conducts incident response and intrusion detection for Bloomberg and previously for VeriSign. The biggest and best companies worldwide depend on him for intelligence about attacks affecting their organization.\u003c\/p\u003e","brand":"Wiley","offers":[{"title":"Default Title","offer_id":47988775125221,"sku":"NP9781118906736","price":90.0,"currency_code":"USD","in_stock":false}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/1842\/7735\/files\/9781118906736.jpg?v=1761781542","url":"https:\/\/k12savings.com\/es\/products\/attack-and-defend-computer-security-set-isbn-9781118906736","provider":"K12savings","version":"1.0","type":"link"}