Home   FAQs   New Arrivals   Specials   Pricing & Shipping   Location   Corporate Services   Why Choose Bookware?  
 Search:   
Call our store: 9922 6266 (from within Sydney) or 1800 734 567 (from outside Sydney)
 View Cart   Check Out   
 
Browse by Subject
 Nepean TAFE 2012
I.T
 .NET
 Windows 7
 Adobe CS5
 Cisco
 CCNA 2012
 CCNP 2012
 Java
 VB
 ASP
 Web Design
 E-Commerce
 Project Management
 ITIL
 Macintosh
 Linux
 Windows Server 2008
 SAP
 Sharepoint 2010
Certification
 MCITP
 MCTS
Economics and Business
 Accounting
 Business Information Systems
 Economics
 Finance
 Management
 Marketing
 TAX
 Human Resources
Academic
 Law
 Nursing
 Medical

How to Break Web Software: Functional and Security Testing of Web Applications and Web Services


Customers who bought this, also bought:
Testing Applications on the Web: Test Planning for Mobile and Internet-Based Systems, 2nd Edition
Applied Software Project Management
PHP 5 Unleashed
Improving Microsoft .NET Application Performance and Scalability
MCTS Self-Paced Training Kit (Exam 70-536): Microsoft .NET Framework- Application Development Foundation, 2nd Edition
The Web Testing Companion: The Insider's Guide to Efficient and Effective Tests
Essential PHP Security
PHP 5 Power Programming
Inside Microsoft® SQL Server 2005: T-SQL Programming
Foundation ActionScript Animation

by: Andrews & Whittaker

Notify me when in stock

On-line Price: $35.95 (includes GST)

Paperback package 240

20%Off Retail Price

You save: $9.00

Usually ships within 3-5 business days. We will advise you if a delay or price change is expected.

Retail Price: $44.95

Publisher: ADDISON-WESLEY,18/11/2005

Category: Level:

ISBN: 0321369440
ISBN13: 9780321369444
Add to Shopping Cart

'The techniques in this book are not an option for testers-they are mandatory and these are the guys to tell you how to apply them!'
-Harry Robinson, Google.

Rigorously test and improve the security of all your Web software!

It's as certain as death and taxes: hackers will mercilessly attack your Web sites, applications, and services. If you're vulnerable, you'd better discover these attacks yourself, before the black hats do. Now, there's a definitive, hands-on guide to security-testing any Web-based software: How to Break Web Software.

In this book, two renowned experts address every category of Web software exploit: attacks on clients, servers, state, user inputs, and more. You'll master powerful attack tools and techniques as you uncover dozens of crucial, widely exploited flaws in Web architecture and coding. The authors reveal where to look for potential threats and attack vectors, how to rigorously test for each of them, and how to mitigate the problems you find. Coverage includes

·


Client vulnerabilities, including attacks on client-side validation

·


State-based attacks: hidden fields, CGI parameters, cookie poisoning, URL jumping, and session hijacking

·


Attacks on user-supplied inputs: cross-site scripting, SQL injection, and directory traversal

·


Language- and technology-based attacks: buffer overflows, canonicalization, and NULL string attacks

·


Server attacks: SQL Injection with stored procedures, command injection, and server fingerprinting

·


Cryptography, privacy, and attacks on Web services

Your Web software is mission-critical-it can't be compromised. Whether you're a developer, tester, QA specialist, or IT manager, this book will help you protect that software-systematically.

Companion CD contains full source code for one testing tool you can modify and extend, free Web security testing tools, and complete code from a flawed Web site designed to give you hands-on practice in identifying security holes.