{"product_id":"the-web-application-hackers-handbook-isbn-9781118026472","title":"The Web Application Hacker's Handbook","description":"\u003cb\u003eThe highly successful security book returns with a new edition, completely updated\u003c\/b\u003e \u003cp\u003eWeb applications are the front door to most organizations, exposing them to attacks that may disclose personal information, execute fraudulent transactions, or compromise ordinary users. This practical book has been completely updated and revised to discuss the latest step-by-step techniques for attacking and defending the range of ever-evolving web applications. You'll explore the various new technologies employed in web applications that have appeared since the first edition and review the new attack techniques that have been developed, particularly in relation to the client side.\u003c\/p\u003e \u003cul\u003e \u003cli\u003eReveals how to overcome the new technologies and techniques aimed at defending web applications against attacks that have appeared since the previous edition\u003c\/li\u003e \u003cli\u003eDiscusses new remoting frameworks, HTML5, cross-domain integration techniques, UI redress, framebusting, HTTP parameter pollution, hybrid file attacks, and more\u003c\/li\u003e \u003cli\u003eFeatures a companion web site hosted by the authors that allows readers to try out the attacks described, gives answers to the questions that are posed at the end of each chapter, and provides a summarized methodology and checklist of tasks\u003c\/li\u003e \u003c\/ul\u003e \u003cp\u003eFocusing on the areas of web application security where things have changed in recent years, this book is the most current resource on the critical topic of discovering, exploiting, and preventing web application security flaws.\u003cbr\u003e\u003cbr\u003e\u003cbr\u003e\u003c\/p\u003e \u003cp\u003eIntroduction xxiii\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 1 Web Application (In)security 1\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eThe Evolution of Web Applications 2\u003c\/p\u003e \u003cp\u003eWeb Application Security 6\u003c\/p\u003e \u003cp\u003eSummary 15\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 2 Core Defense Mechanisms 17\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eHandling User Access 18\u003c\/p\u003e \u003cp\u003eHandling User Input 21\u003c\/p\u003e \u003cp\u003eHandling Attackers 30\u003c\/p\u003e \u003cp\u003eManaging the Application 35\u003c\/p\u003e \u003cp\u003eSummary 36\u003c\/p\u003e \u003cp\u003eQuestions 36\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 3 Web Application Technologies 39\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eThe HTTP Protocol 39\u003c\/p\u003e \u003cp\u003eWeb Functionality 51\u003c\/p\u003e \u003cp\u003eEncoding Schemes 66\u003c\/p\u003e \u003cp\u003eNext Steps 70\u003c\/p\u003e \u003cp\u003eQuestions 71\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 4 Mapping the Application 73\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eEnumerating Content and Functionality 74\u003c\/p\u003e \u003cp\u003eAnalyzing the Application 97\u003c\/p\u003e \u003cp\u003eSummary 114\u003c\/p\u003e \u003cp\u003eQuestions 114\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 5 Bypassing Client-Side Controls 117\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eTransmitting Data Via the Client 118\u003c\/p\u003e \u003cp\u003eCapturing User Data: HTML Forms 127\u003c\/p\u003e \u003cp\u003eCapturing User Data: Browser Extensions 133\u003c\/p\u003e \u003cp\u003eHandling Client-Side Data Securely 154\u003c\/p\u003e \u003cp\u003eSummary 156\u003c\/p\u003e \u003cp\u003eQuestions 157\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 6 Attacking Authentication 159\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eAuthentication Technologies 160\u003c\/p\u003e \u003cp\u003eDesign Flaws in Authentication Mechanisms 161\u003c\/p\u003e \u003cp\u003eImplementation Flaws in Authentication 185\u003c\/p\u003e \u003cp\u003eSecuring Authentication 191\u003c\/p\u003e \u003cp\u003eSummary 201\u003c\/p\u003e \u003cp\u003eQuestions 202\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 7 Attacking Session Management 205\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eThe Need for State 206\u003c\/p\u003e \u003cp\u003eWeaknesses in Token Generation 210\u003c\/p\u003e \u003cp\u003eWeaknesses in Session Token Handling 233\u003c\/p\u003e \u003cp\u003eSecuring Session Management 248\u003c\/p\u003e \u003cp\u003eSummary 254\u003c\/p\u003e \u003cp\u003eQuestions 255\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 8 Attacking Access Controls 257\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eCommon Vulnerabilities 258\u003c\/p\u003e \u003cp\u003eAttacking Access Controls 266\u003c\/p\u003e \u003cp\u003eSecuring Access Controls 278\u003c\/p\u003e \u003cp\u003eSummary 284\u003c\/p\u003e \u003cp\u003eQuestions 284\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 9 Attacking Data Stores 287\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eInjecting into Interpreted Contexts 288\u003c\/p\u003e \u003cp\u003eInjecting into SQL 291\u003c\/p\u003e \u003cp\u003eInjecting into NoSQL 342\u003c\/p\u003e \u003cp\u003eInjecting into XPath 344\u003c\/p\u003e \u003cp\u003eInjecting into LDAP 349\u003c\/p\u003e \u003cp\u003eSummary 354\u003c\/p\u003e \u003cp\u003eQuestions 354\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 10 Attacking Back-End Components 357\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eInjecting OS Commands 358\u003c\/p\u003e \u003cp\u003eManipulating File Paths 368\u003c\/p\u003e \u003cp\u003eInjecting into XML Interpreters 383\u003c\/p\u003e \u003cp\u003eInjecting into Back-end HTTP Requests 390\u003c\/p\u003e \u003cp\u003eInjecting into Mail Services 397\u003c\/p\u003e \u003cp\u003eSummary 402\u003c\/p\u003e \u003cp\u003eQuestions 403\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 11 Attacking Application Logic 405\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eThe Nature of Logic Flaws 406\u003c\/p\u003e \u003cp\u003eReal-World Logic Flaws 406\u003c\/p\u003e \u003cp\u003eAvoiding Logic Flaws 428\u003c\/p\u003e \u003cp\u003eSummary 429\u003c\/p\u003e \u003cp\u003eQuestions 430\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 12 Attacking Users: Cross-Site Scripting 431\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eVarieties of XSS 433\u003c\/p\u003e \u003cp\u003eXSS Attacks in Action 442\u003c\/p\u003e \u003cp\u003eFinding and Exploiting XSS Vulnerabilities 451\u003c\/p\u003e \u003cp\u003ePreventing XSS Attacks 492\u003c\/p\u003e \u003cp\u003eSummary 498\u003c\/p\u003e \u003cp\u003eQuestions 498\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 13 Attacking Users: Other Techniques 501\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eInducing User Actions 501\u003c\/p\u003e \u003cp\u003eCapturing Data Cross-Domain 515\u003c\/p\u003e \u003cp\u003eThe Same-Origin Policy Revisited 524\u003c\/p\u003e \u003cp\u003eOther Client-Side Injection Attacks 531\u003c\/p\u003e \u003cp\u003eLocal Privacy Attacks 550\u003c\/p\u003e \u003cp\u003eAttacking ActiveX Controls 555\u003c\/p\u003e \u003cp\u003eAttacking the Browser 559\u003c\/p\u003e \u003cp\u003eSummary 568\u003c\/p\u003e \u003cp\u003eQuestions 568\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 14 Automating Customized Attacks 571\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eUses for Customized Automation 572\u003c\/p\u003e \u003cp\u003eEnumerating Valid Identifiers 573\u003c\/p\u003e \u003cp\u003eHarvesting Useful Data 583\u003c\/p\u003e \u003cp\u003eFuzzing for Common Vulnerabilities 586\u003c\/p\u003e \u003cp\u003ePutting It All Together: Burp Intruder 590\u003c\/p\u003e \u003cp\u003eBarriers to Automation 602\u003c\/p\u003e \u003cp\u003eSummary 613\u003c\/p\u003e \u003cp\u003eQuestions 613\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 15 Exploiting Information Disclosure 615\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eExploiting Error Messages 615\u003c\/p\u003e \u003cp\u003eGathering Published Information 625\u003c\/p\u003e \u003cp\u003eUsing Inference 626\u003c\/p\u003e \u003cp\u003ePreventing Information Leakage 627\u003c\/p\u003e \u003cp\u003eSummary 629\u003c\/p\u003e \u003cp\u003eQuestions 630\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 16 Attacking Native Compiled Applications 633\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eBuffer Overflow Vulnerabilities 634         \u003c\/p\u003e \u003cp\u003eInteger Vulnerabilities 640\u003c\/p\u003e \u003cp\u003eFormat String Vulnerabilities 643\u003c\/p\u003e \u003cp\u003eSummary 645\u003c\/p\u003e \u003cp\u003eQuestions 645\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 17 Attacking Application Architecture 647\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eTiered Architectures 647\u003c\/p\u003e \u003cp\u003eShared Hosting and Application Service Providers 656\u003c\/p\u003e \u003cp\u003eSummary 667\u003c\/p\u003e \u003cp\u003eQuestions 667\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 18 Attacking the Application Server 669\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eVulnerable Server Configuration 670\u003c\/p\u003e \u003cp\u003eVulnerable Server Software 684\u003c\/p\u003e \u003cp\u003eWeb Application Firewalls 697\u003c\/p\u003e \u003cp\u003eSummary 699\u003c\/p\u003e \u003cp\u003eQuestions 699\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 19 Finding Vulnerabilities in Source Code 701\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eApproaches to Code Review 702\u003c\/p\u003e \u003cp\u003eSignatures of Common Vulnerabilities 704\u003c\/p\u003e \u003cp\u003eThe Java Platform 711\u003c\/p\u003e \u003cp\u003eASP.NET 718\u003c\/p\u003e \u003cp\u003ePHP 724\u003c\/p\u003e \u003cp\u003ePerl 735\u003c\/p\u003e \u003cp\u003eJavaScript 740\u003c\/p\u003e \u003cp\u003eDatabase Code Components 741\u003c\/p\u003e \u003cp\u003eTools for Code Browsing 743\u003c\/p\u003e \u003cp\u003eSummary 744\u003c\/p\u003e \u003cp\u003eQuestions 744\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 20 A Web Application Hacker’s Toolkit 747\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eWeb Browsers 748\u003c\/p\u003e \u003cp\u003eIntegrated Testing Suites 751\u003c\/p\u003e \u003cp\u003eStandalone Vulnerability Scanners 773\u003c\/p\u003e \u003cp\u003eOther Tools 785\u003c\/p\u003e \u003cp\u003eSummary 789\u003c\/p\u003e \u003cp\u003e\u003cb\u003eChapter 21 A Web Application Hacker’s Methodology 791\u003c\/b\u003e\u003c\/p\u003e \u003cp\u003eGeneral Guidelines 793\u003c\/p\u003e \u003cp\u003e1 Map the Application’s Content 795\u003c\/p\u003e \u003cp\u003e2 Analyze the Application 798\u003c\/p\u003e \u003cp\u003e3 Test Client-Side Controls 800\u003c\/p\u003e \u003cp\u003e4 Test the Authentication Mechanism 805\u003c\/p\u003e \u003cp\u003e5 Test the Session Management Mechanism 814\u003c\/p\u003e \u003cp\u003e6 Test Access Controls 821\u003c\/p\u003e \u003cp\u003e7 Test for Input-Based Vulnerabilities 824\u003c\/p\u003e \u003cp\u003e8 Test for Function-Specific Input Vulnerabilities 836\u003c\/p\u003e \u003cp\u003e9 Test for Logic Flaws 842\u003c\/p\u003e \u003cp\u003e10 Test for Shared Hosting Vulnerabilities 845\u003c\/p\u003e \u003cp\u003e11 Test for Application Server Vulnerabilities 846\u003c\/p\u003e \u003cp\u003e12 Miscellaneous Checks 849\u003c\/p\u003e \u003cp\u003e13 Follow Up Any Information Leakage 852\u003c\/p\u003e \u003cp\u003eIndex 853\u003c\/p\u003e  \u003cb\u003eDAFYDD STUTTARD\u003c\/b\u003e is an independent security consultant, author, and software developer specializing in penetration testing of web applications and compiled software. Under the alias PortSwigger, Dafydd created the popular Burp Suite of hacking tools.  \u003cp\u003e\u003cb\u003eMARCUS PINTO\u003c\/b\u003e delivers security consultancy and training on web application attack and defense to leading global organizations in the financial, government, telecom, gaming, and retail sectors.\u003cbr\u003e The authors cofounded MDSec, a consulting company that provides training in attack and defense-based security.\u003c\/p\u003e  \u003cb\u003eNew technologies. New attack techniques. Start hacking.\u003c\/b\u003e  \u003cp\u003eWeb applications are everywhere, and they're insecure. Banks, retailers, and others have deployed millions of applications that are full of holes, allowing attackers to steal personal data, carry out fraud, and compromise other systems. This book shows you how they do it.\u003c\/p\u003e \u003cp\u003eThis fully updated edition contains the very latest attack techniques and countermeasures, showing you how to break into today's complex and highly functional applications. Roll up your sleeves and dig in.\u003c\/p\u003e \u003cul\u003e \u003cli\u003e \u003cp\u003eDiscover how cloud architectures and social networking have added exploitable attack surfaces to applications\u003c\/p\u003e \u003c\/li\u003e \u003cli\u003e \u003cp\u003eLeverage the latest HTML features to deliver powerful cross-site scripting attacks\u003c\/p\u003e \u003c\/li\u003e \u003cli\u003e \u003cp\u003eDeliver new injection exploits, including XML external entity and HTTP parameter pollution attacks\u003c\/p\u003e \u003c\/li\u003e \u003cli\u003e \u003cp\u003eLearn how to break encrypted session tokens and other sensitive data found in cloud services\u003c\/p\u003e \u003c\/li\u003e \u003cli\u003e \u003cp\u003eDiscover how technologies like HTML5, REST, CSS and JSON can be exploited to attack applications and compromise users\u003c\/p\u003e \u003c\/li\u003e \u003cli\u003e \u003cp\u003eLearn new techniques for automating attacksand dealing with CAPTCHAs and cross-site request forgery tokens\u003c\/p\u003e \u003c\/li\u003e \u003cli\u003e \u003cp\u003eSteal sensitive data across domains using seemingly harmless application functions and new browser features\u003c\/p\u003e \u003c\/li\u003e \u003c\/ul\u003e \u003cp\u003eFind help and resources at http:\/\/mdsec.net\/wahh\u003c\/p\u003e \u003cul\u003e \u003cli\u003e \u003cp\u003eSource code for some of the scripts in the book\u003c\/p\u003e \u003c\/li\u003e \u003cli\u003e \u003cp\u003eLinks to tools and other resources\u003c\/p\u003e \u003c\/li\u003e \u003cli\u003e \u003cp\u003eA checklist of tasks involved in most attacks\u003c\/p\u003e \u003c\/li\u003e \u003cli\u003e \u003cp\u003eAnswers to the questions posed in each chapter\u003c\/p\u003e \u003c\/li\u003e \u003cli\u003e \u003cp\u003eHundreds of interactive vulnerability labs\u003c\/p\u003e \u003c\/li\u003e \u003c\/ul\u003e","brand":"Wiley","offers":[{"title":"Default Title","offer_id":47990365946085,"sku":"NP9781118026472","price":52.0,"currency_code":"USD","in_stock":false}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/1842\/7735\/files\/9781118026472.jpg?v=1761787533","url":"https:\/\/k12savings.com\/es\/products\/the-web-application-hackers-handbook-isbn-9781118026472","provider":"K12savings","version":"1.0","type":"link"}