How to Break Web Software and over 900,000 other books are available for Amazon Kindle . Learn more


or
Sign in to turn on 1-Click ordering.
or
Amazon Prime free trial required. Sign up when you check out. Learn more
More Buying Choices
Have one to sell? Sell yours here
or
Get a £9.05 Amazon.co.uk Gift Card
How to Break Web Software: Functional and Security Testing of Web Applications and Web Services
 
 
Share your own customer images
Search inside this book
Start reading How to Break Web Software on your Kindle in under a minute.

Don't have a Kindle? Get your Kindle here, or download a FREE Kindle Reading App.

How to Break Web Software: Functional and Security Testing of Web Applications and Web Services [Paperback]

Mike Andrews (Author), James A. Whittaker (Author)
4.7 out of 5 stars  See all reviews (3 customer reviews)
RRP: £30.99
Price: £21.99 & this item Delivered FREE in the UK with Super Saver Delivery. See details and conditions
You Save: £9.00 (29%)
o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o o
In stock.
Dispatched from and sold by Amazon.co.uk. Gift-wrap available.
Only 4 left in stock--order soon (more on the way).
Want guaranteed delivery by Saturday, February 11? Choose Express delivery at checkout. See Details

Formats

 Amazon Price New from Used from
Kindle Edition £16.43   -- --
Paperback £21.99   -- --
Video Games Trade-In
Amazon.co.uk Trade-In Store
Did you know you can trade in your old books for an Amazon.co.uk Gift Card to spend on the things you want? Visit the Amazon.co.uk Trade-In Store for more details.

Frequently Bought Together

Customers buy this book with The Web Application Hacker's Handbook: Discovering and Exploiting Security Flaws by Dafydd Stuttard Paperback £21.75

How to Break Web Software: Functional and Security Testing of Web Applications and Web Services + The Web Application Hacker's Handbook: Discovering and Exploiting Security Flaws
Price For Both: £43.74

Show availability and delivery details

Customers Who Bought This Item Also Bought

Product details

  • Paperback: 240 pages
  • Publisher: Addison Wesley; 1 edition (2 Feb 2006)
  • Language English
  • ISBN-10: 0321369440
  • ISBN-13: 978-0321369444
  • Product Dimensions: 23.8 x 17.4 x 1.6 cm
  • Average Customer Review: 4.7 out of 5 stars  See all reviews (3 customer reviews)
  • Amazon Bestsellers Rank: 334,392 in Books (See Top 100 in Books)

    •  Would you like to update product info or give feedback on images?

  • See Complete Table of Contents

More About the Author

Mike Andrews
Discover books, learn about writers, and more.

Visit Amazon's Mike Andrews Page

Product Description

Product Description

Since its early days as an information exchange tool limited to academe, researchers, and the military, the web has grown into a commerce engine that is now omnipresent in all facets of our lifes. More websites are created daily and more applications are developed to allow users to learn, research, and purchase online. As a result, web development is often rushed, which increases the risk of attacks from hackers. Furthermore, the need for secure applications has to be balanced with the need for usability, performance, and reliability. In this book, Whittaker and Andrews demonstrate how rigorous web testing can help prevent and prepare for such attacks. They point out that methodical testing must include identifying threats and attack vectors to establish and then implement the appropriate testing techniques, manual or automated.

From the Back Cover

"The techniques in this book are not an option for testers–they are mandatory and these are the guys to tell you how to apply them!"
–HarryRobinson, Google.

 

Rigorously test and improve the security of all your Web software!

 

It’s as certain as death and taxes: hackers will mercilessly attack your Web sites, applications, and services. If you’re vulnerable, you’d better discover these attacks yourself, before the black hats do. Now, there’s a definitive, hands-on guide to security-testing any Web-based software: How to Break Web Software.

 

In this book, two renowned experts address every category of Web software exploit: attacks on clients, servers, state, user inputs, and more. You’ll master powerful attack tools and techniques as you uncover dozens of crucial, widely exploited flaws in Web architecture and coding. The authors reveal where to look for potential threats and attack vectors, how to rigorously test for each of them, and how to mitigate the problems you find. Coverage includes

 

·   Client vulnerabilities, including attacks on client-side validation

·   State-based attacks: hidden fields, CGI parameters, cookie poisoning, URL jumping, and session hijacking

·   Attacks on user-supplied inputs: cross-site scripting, SQL injection, and directory traversal

·   Language- and technology-based attacks: buffer overflows, canonicalization, and NULL string attacks

·   Server attacks: SQL Injection with stored procedures, command injection, and server fingerprinting

·   Cryptography, privacy, and attacks on Web services

 

Your Web software is mission-critical–it can’t be compromised. Whether you’re a developer, tester, QA specialist, or IT manager, this book will help you protect that software–systematically.

 

Companion CD contains full source code for one testing tool you can modify and extend, free Web security testing tools, and complete code from a flawed Web site designed to give you hands-on practice in identifying security holes.

See all Product Description
Inside This Book (Learn More)
Browse Sample Pages
Front Cover | Copyright | Table of Contents | Excerpt | Index | Back Cover
Search inside this book:

Suggested Tags from Similar Products

 (What's this?)
Be the first one to add a relevant tag (keyword that's strongly related to this product)
 
(6)
(2)
(2)
(2)
(1)
(1)
(1)
(1)
(1)
(1)

Your tags: Add your first tag
 
See most popular tags
 

Customer Reviews

3 Reviews
5 star:
 (2)
4 star:
 (1)
3 star:    (0)
2 star:    (0)
1 star:    (0)
 
 
 
 
 
Average Customer Review
4.7 out of 5 stars (3 customer reviews)
 
 
 
 
Share your thoughts with other customers:
Most Helpful Customer Reviews

2 of 2 people found the following review helpful:
5.0 out of 5 stars Buy it, 11 Jan 2007
By 
Kevin Barron "Basher" (Northampton, UK) - See all my reviews
(REAL NAME)   
This review is from: How to Break Web Software: Functional and Security Testing of Web Applications and Web Services (Paperback)
If you want to get to grips with this subject this book is a great little read. You can either just plough through it, as it is an easy read, or go and look at all the links and tools he is referencing to get extra detail and clarity. If you don't have any other books on this subject, get this first.

No, I don't know the author.
Help other customers find the most helpful reviews 
Was this review helpful to you? Yes No


1 of 1 people found the following review helpful:
4.0 out of 5 stars client side only, 23 Feb 2009
By 
M. Mohammed "doubleM" (Manchester, UK) - See all my reviews
(REAL NAME)   
This review is from: How to Break Web Software: Functional and Security Testing of Web Applications and Web Services (Paperback)
If you're looking for a comprehensive guide to web testing - this is not it as it only deals with client side testing. However, it still is a good read, with valuable insight and guidance ... and at this price, I would recommend it a definate buy!
Help other customers find the most helpful reviews 
Was this review helpful to you? Yes No


3 of 5 people found the following review helpful:
5.0 out of 5 stars A good overview of the tools and techniques available today!, 6 July 2006
By 
D. Ward (UK) - See all my reviews
(REAL NAME)   
This review is from: How to Break Web Software: Functional and Security Testing of Web Applications and Web Services (Paperback)
In keeping with the brevity of this excellent book, I'll keep this short. This book is readable, educational and covers the majority of tests that are required on web applications today. The tools included on the CD are also first rate, with good commentary on how to use them in the book, giving further reading where required.
Help other customers find the most helpful reviews 
Was this review helpful to you? Yes No

Share your thoughts with other customers: Create your own review
Would you like to see more reviews about this item?
 Go to Amazon.com to see all 15 reviews  4.4 out of 5 stars 
Were these reviews helpful?   Let us know
 
 
Only search this product's reviews


Customer Discussions

This product's forum
Discussion Replies Latest Post
No discussions yet

Ask questions, Share opinions, Gain insight
Start a new discussion
Topic:
First post:
Prompts for sign-in
 

Search Customer Discussions
Search all Amazon discussions
   

Listmania!

Create a Listmania! list

Look for similar items by category

Look for similar items by subject























i.e., each product must be in subject 1 AND subject 2 AND ...

Feedback


Amazon.co.uk Privacy Statement Amazon.co.uk Delivery Information Amazon.co.uk Returns & Exchanges