- Paperback: 528 pages
- Publisher: Addison Wesley; 1 edition (8 Aug 2002)
- Language English
- ISBN-10: 0201761769
- ISBN-13: 978-0201761764
- Product Dimensions: 18.7 x 3.1 x 23.5 cm
- Average Customer Review: 1.5 out of 5 stars See all reviews (8 customer reviews)
- Amazon Bestsellers Rank: 1,153,855 in Books (See Top 100 in Books)
- See Complete Table of Contents
| ||||||||||||
Did you know you can trade in your old books for an Amazon.co.uk Gift Card to spend on the things you want? Plus, get an extra £5 Gift Certificate when you trade in books worth £10 or more before June 30, 2012. Visit the Books Trade-In Store for more details. |
Product details |
More About the Author
Product Description
Product Description
In the evolution of hacking, firewalls are a mere speed bump. Hacking continues to develop, becoming ever more sophisticated, adapting and growing in ingenuity as well as in the damage that results. Web attacks running over web ports strike with enormous impact. Stuart McClure's new book focuses on Web hacking, an area where organizations are particularly vulnerable. The material covers the web commerce "playground', describing web languages and protocols, web and database servers, and payment systems. The authors bring unparalleled insight to both well- known and lesser known web vulnerabilities. They show the dangerous range of the many different attacks web hackers harbor in their bag of tricks -- including buffer overflows, the most wicked of attacks, plus other advanced attacks. The book features complete methodologies, including techniques and attacks, countermeasures, tools, plus case studies and web attack scenarios showing how different attacks work and why they work.
From the Back Cover
"Both novice and seasoned readers will come away with an increased understanding of how Web hacking occurs and enhanced skill at developing defenses against such Web attacks. Technologies covered include Web languages and protocols, Web and database servers, payment systems and shopping carts, and critical vulnerabilities associated with URLs. This book is a virtual battle plan that will help you identify and eliminate threats that could take your Web site off line..."
--From the Foreword by William C. Boni, Chief Information Security Officer, Motorola"Just because you have a firewall and IDS sensor does not mean you aresecure; this book shows you why."
--Lance Spitzner, Founder, The Honeynet ProjectWhether it's petty defacing or full-scale cyber robbery, hackers are moving to the Web along with everyone else. Organizations using Web-based business applications are increasingly at risk. Web Hacking: Attacks and Defense is a powerful guide to the latest information on Web attacks and defense. Security experts Stuart McClure (lead author of Hacking Exposed), Saumil Shah, and Shreeraj Shah present a broad range of Web attacks and defense.
0201761769B07192002
--From the Foreword by William C. Boni, Chief Information Security Officer, Motorola"Just because you have a firewall and IDS sensor does not mean you aresecure; this book shows you why."
--Lance Spitzner, Founder, The Honeynet ProjectWhether it's petty defacing or full-scale cyber robbery, hackers are moving to the Web along with everyone else. Organizations using Web-based business applications are increasingly at risk. Web Hacking: Attacks and Defense is a powerful guide to the latest information on Web attacks and defense. Security experts Stuart McClure (lead author of Hacking Exposed), Saumil Shah, and Shreeraj Shah present a broad range of Web attacks and defense.
Features include:
- Overview of the Web and what hackers go after
- Complete Web application security methodologies
- Detailed analysis of hack techniques
- Countermeasures
- What to do at development time to eliminate vulnerabilities
- New case studies and eye-opening attack scenarios
- Advanced Web hacking concepts, methodologies, and tools
"How Do They Do It?" sections show how and why different attacks succeed, including:
- Cyber graffiti and Web site defacements
- e-Shoplifting
- Database access and Web applications
- Java™ application servers; how to harden your Java™ Web Server
- Impersonation and session hijacking
- Buffer overflows, the most wicked of attacks
- Automated attack tools and worms
Appendices include a listing of Web and database ports, cheat sheets for remote command execution, and source code disclosure techniques.
Web Hacking informs from the trenches. Experts show you how to connect the dots--how to put the stages of a Web hack together so you can best defend against them. Written for maximum brain absorption with unparalleled technical content and battle-tested analysis, Web Hacking will help you combat potentially costly security threats and attacks.
0201761769B07192002
Tag this product(What's this?)Think of a tag as a keyword or label you consider is strongly related to this product.
Tags will help all customers organise and find favourite items. |
Sell a Digital Version of This Book in the Kindle Store
If you are a publisher or author and hold the digital rights to a book, you can sell a digital version of it in our Kindle Store.
Learn more
Customer Reviews
Most Helpful Customer Reviews
3 of 3 people found the following review helpful
Format:Paperback
With this book the first three pages were good. Then it turned into a load of rubbish. Confusing - and i'm a computer technician and have studied with a university networks and mainframe weaknesses. It doesn't even do any of the stuff it says it would tell you and to be honest after reading it you probably wouldn't be able to hack and deface your own mate's website.
3 of 4 people found the following review helpful
Format:Paperback
This is the worst book i have ever read in my life. In actual fact i just skimmed through the whole book and realised it is full of Bullsh*t. I only bought it because that famous bloke (Stuart Mclure) renowned for his HACKING EXPOSED co-wrote this
book. Like everyone else says it doesn't teach any of the stuff it says it would. It is full of big pictures which buffs out the book. It is totally useless and shouldn't have been written. My little brother could write a better book about hacking than this.
And like everyone else says if you really really do want to have a read of this book then e-mail me and i would give it to you free of charge.
book. Like everyone else says it doesn't teach any of the stuff it says it would. It is full of big pictures which buffs out the book. It is totally useless and shouldn't have been written. My little brother could write a better book about hacking than this.
And like everyone else says if you really really do want to have a read of this book then e-mail me and i would give it to you free of charge.
Format:Paperback
I should say that it is not fair to give this book less than 5 stars, and if there was 6 or 7 or 10, then I would give it!
This sounds opposite to what most other reviewers have said about it, doesn't it?
Don't get confused. I said in the title of this review that "It is just perfect for Real Hackers!". The reason is that, with all respect to other's opinions, most of people who are interested in Hacking are looking for a straight book that tells them: Take this tool, install it from the CD, type the targeted Web Site's URL or the targeted Commputer's hostname or IP address and your hacking will succeed! Come one. Get a life!
I am a PhD researcher in Computer Science in a centre called: "e-Government Security Studies", at a respectful University in UK, and doing my research on studting all about How Hackers Think When Then Hack. I have been looking for any book that gives a clear idea about Hackers' strategies and tactics, and this book is just the One that I have found after a long long long time of search in Amazon and other book-stores in the UK and US.
It is more than perfect for Academic fields as well as for those who want to study Web Security from Hackers' point of view. Also, dear Mr reader who want to be a REAL Hacker or a REAL Security Expert, take this piece of advice: If you think that you can be a real hacker or security expert, you must grasp all the concepts that are written in this particular book.
Good Luck To All.
Asaad
This sounds opposite to what most other reviewers have said about it, doesn't it?
Don't get confused. I said in the title of this review that "It is just perfect for Real Hackers!". The reason is that, with all respect to other's opinions, most of people who are interested in Hacking are looking for a straight book that tells them: Take this tool, install it from the CD, type the targeted Web Site's URL or the targeted Commputer's hostname or IP address and your hacking will succeed! Come one. Get a life!
I am a PhD researcher in Computer Science in a centre called: "e-Government Security Studies", at a respectful University in UK, and doing my research on studting all about How Hackers Think When Then Hack. I have been looking for any book that gives a clear idea about Hackers' strategies and tactics, and this book is just the One that I have found after a long long long time of search in Amazon and other book-stores in the UK and US.
It is more than perfect for Academic fields as well as for those who want to study Web Security from Hackers' point of view. Also, dear Mr reader who want to be a REAL Hacker or a REAL Security Expert, take this piece of advice: If you think that you can be a real hacker or security expert, you must grasp all the concepts that are written in this particular book.
Good Luck To All.
Asaad
Would you like to see more reviews about this item?
Were these reviews helpful?
Let us know
Most Recent Customer Reviews
This book talks a load of gibberish
This book lacks in every area you can think of. It doesn't explain or tell you in detail how the attacks & defence are executed. Read more
Published on 25 May 2004
Not worth a penny or even a star - it should be 0 stars
I think my title says it all really. This doesn't teach you how to hack or defend your website and find its weaknesses. Read more
Published on 30 Mar 2004
Not even worth a star, a complete waste of time!
Amazon won't let me give it a 0 star. So, rather grudgingly, I've had to give it 1.
This is the worst book i've ever read - and that is not an over-staded exageration. Read more
This is the worst book i've ever read - and that is not an over-staded exageration. Read more
Published on 29 Nov 2003
A book for real beginners
The large size of font and big illustrations warn you that they are really struggling to pad out this book. Read more
Published on 21 July 2003
Trully deceptive and useless
I must confess that I order this book in order to learn something that could help me to enter on a passworded site (no , it wasn't a porn site !!). Read more
Published on 4 Jun 2003 by vasco rodrigo m vaz
Listmania!
Look for similar items by category
Look for similar items by subject
Feedback
- Would you like to update product info or give feedback on images?
- I am the Author, and I want to comment on my book.
- I am the Publisher, and I want to comment on this book.
|
