- Paperback: 768 pages
- Publisher: John Wiley & Sons (19 Oct 2007)
- Language English
- ISBN-10: 0470170778
- ISBN-13: 978-0470170779
- Product Dimensions: 18.8 x 4 x 23.6 cm
- Average Customer Review: 4.8 out of 5 stars See all reviews (5 customer reviews)
-
Amazon Bestsellers Rank:
83,415 in Books (See Top 100 in Books)
- #4 in Books > Computers & Internet > Computer Science > Networking & Security > Security > Web Security
- #20 in Books > Computers & Internet > Computer Science > Networking & Security > Security > Network Security
- #71 in Books > Reference > Consumer Guides > Computer & Internet
- See Complete Table of Contents
The Web Application Hacker's Handbook
and over one million other books are available for Amazon Kindle .
Learn more
| |||||||||||||||
 Trade In this Item for up to £2.10
Get an extra £5 when you trade in books worth £10 or more until June 30, 2012. Trade in The Web Application Hacker's Handbook: Discovering and Exploiting Security Flaws for an Amazon.co.uk gift card of up to £2.10, which you can then spend on millions of items across the site. Trade-in values may vary (terms apply). Find more products eligible for trade-in.
|
|
There is a newer edition of this item:
|
Product details |
More About the Authors
Discover books, learn about writers, and more.
Product Description
Review
"If you have an interest in web application security, I would highly recommend picking up a copy of this book, especially if you’re interested in being able to audit applications for vulnerabilities".
—Robert Wesley McGrew, McGrew Security
—Robert Wesley McGrew, McGrew Security
Product Description
This book is a practical guide to discovering and exploiting security flaws in web applications. The authors explain each category of vulnerability using real–world examples, screen shots and code extracts. The book is extremely practical in focus, and describes in detail the steps involved in detecting and exploiting each kind of security weakness found within a variety of applications such as online banking, e–commerce and other web applications.
The topics covered include bypassing login mechanisms, injecting code, exploiting logic flaws and compromising other users. Because every web application is different, attacking them entails bringing to bear various general principles, techniques and experience in an imaginative way. The most successful hackers go beyond this, and find ways to automate their bespoke attacks. This handbook describes a proven methodology that combines the virtues of human intelligence and computerized brute force, often with devastating results.
The authors are professional penetration testers who have been involved in web application security for nearly a decade. They have presented training courses at the Black Hat security conferences throughout the world. Under the alias "PortSwigger", Dafydd developed the popular Burp Suite of web application hack tools.
Inside This Book
(Learn More)
Tags Customers Associate with This Product(What's this?)Click on a tag to find related items, discussions, and people.
|
What Other Items Do Customers Buy After Viewing This Item?
Customer Reviews
Most Helpful Customer Reviews
5 of 5 people found the following review helpful
Format:Paperback
This book is quite thick but it covers just about any aspect of web application security that one could possibly imagine. It provides a very readable content without diving into too much technical detail. Rather than focusing on a single technology, it covers various web frameworks and their specific vulnerabilities. Perhaps the most valuable part of the book is the final chapter in which an excellent methodology checklist is provided which allows one to verify security of a given web application step by step. After having finished this book I came to realize how valuable awareness of security issues is to the long term success of a give web application which must not only perform well but remain robust and stable to any and all security attacks.
2 of 2 people found the following review helpful
Format:Paperback
If you have already purchased this book then you are in a very good way to find out truths and lies on Web Application penetration testing. This book touches almost all topics that regard Web Application security and attack vectors/methods (my only objection is the lack of Web Services security).
Since there is no book that does-it-all, following the provided references is mandatory to successfully digest the entire information. Along with Andreu's, this is one of the books that will stay for long as an asset in your arsenal and operate as an day-to-day reference on Web Application pentesting.
Since there is no book that does-it-all, following the provided references is mandatory to successfully digest the entire information. Along with Andreu's, this is one of the books that will stay for long as an asset in your arsenal and operate as an day-to-day reference on Web Application pentesting.
6 of 7 people found the following review helpful
Format:Paperback
The Web Application Hackers Handbook continues the tradition of the other books in the "Hackers Handbook" series in being specifically written for people who are serious about testing and protecting the security of their network and applications.
As a full time Application tester most of the books I've read have been of little use, typically providing page filler examples of vulnerabilities and techniques that have been and gone or have offered little in the way of new information. This book however is bang up to date and teaches assessment techniques that will still be current for a long time to come.
If you're hoping to pursue a career in security, need the best reference available, or are trying to get to grips with the threats posed to your web application, you should buy this book.
At our organisation all of our technical staff have a copy and have all found it useful.
As a full time Application tester most of the books I've read have been of little use, typically providing page filler examples of vulnerabilities and techniques that have been and gone or have offered little in the way of new information. This book however is bang up to date and teaches assessment techniques that will still be current for a long time to come.
If you're hoping to pursue a career in security, need the best reference available, or are trying to get to grips with the threats posed to your web application, you should buy this book.
At our organisation all of our technical staff have a copy and have all found it useful.
Would you like to see more reviews about this item?
Were these reviews helpful?
Let us know
Most Recent Customer Reviews
A must have book for web app security testers
I don't think there is another book that comes close to the Web Application Hackers Handbook at the moment. Read more
Published 8 months ago by Sam Hartley
Very Good
Perhaps not as much detail as I was looking for, but a good starting point for those with little experience in the area.
Published on 6 Dec 2009 by M. Payne
Listmania!
|
|
Look for similar items by category
- Books > Computing & Internet > Digital Lifestyle > Online Shopping > Amazon
- Books > Computing & Internet > Networking & Security > Security > Network Security
- Books > Computing & Internet > Networking & Security > Security > Web Security
- Books > Computing & Internet > Web Development > Web Design > Website Design
- Books > Reference > Consumer Guides > Computer & Internet
Look for similar items by subject
Feedback
- Would you like to update product info or give feedback on images?
- I am the Author, and I want to comment on my book.
- I am the Publisher, and I want to comment on this book.
