Web Application Security



Download free course Web Application Security, pdf file on 331 pages by Andrew Hoffman.
While many resources for network and IT security are available, detailed knowledge regarding modern web application security has been lacking - until now. This practical guide provides both offensive and defensive security concepts that software engineers can easily learn and apply.

Andrew Hoffman, a senior security engineer at Salesforce, introduces three pillars of web application security: recon, offense, and defense. You'll learn methods for effectively researching and analyzing modern web applications - including those you don't have direct access to. You'll also learn how to break into web applications using the latest hacking techniques. Finally, you'll learn how to develop mitigations for use in your own web applications to protect against hackers.

- Explore common vulnerabilities plaguing today's web applications;
- Learn essential hacking techniques attackers use to exploit applications;
- Map and document web applications for which you don't have direct access;
- Develop and deploy customized exploits that can bypass common defenses;
- Develop and deploy mitigations to protect your applications against hackers;
- Integrate secure coding best practices into your development lifecycle;
- Get practical tips to help you improve the overall security of your web applications.

Table of contents

  • The History of Software Security
  • Introduction to Web Application Reconnaissance
  • The Structure of a Modern Web Application
  • Finding Subdomains
  • API Analysis
  • Identifying Third-Party Dependencies
  • Identifying Weak Points in Application Architecture
  • Part I Summary
  • Introduction to Hacking Web Applications
  • Cross-Site Scripting (XSS)
  • Cross-Site Request Forgery (CSRF)
  • XML External Entity (XXE)
  • Injection
  • Denial of Service (DoS)
  • Exploiting Third-Party Dependencies
  • Part II Summary
  • Securing Modern Web Applications
  • Secure Application Architecture
  • Reviewing Code for Security
  • Vulnerability Discovery
  • Vulnerability Management
  • Defending Against XSS Attacks
  • Defending Against CSRF Attacks
  • Defending Against XXE
  • Defending Against Injection
  • Defending Against DoS
  • Securing Third-Party Dependencies
  • Part III Summary
  • Conclusion
Pages : 331
Size : 5.2 MB
File type : PDF
Downloads: 224
Created: 2022-02-03
License: Open Publication License
Author(s): Andrew Hoffman
Web Application Security

Others web Tutorials

RESTful Web Services

RESTful Web Services Quick Guide

How To Build a Website With CSS and HTML

Lisp Web Tales

Web Application Security Guide

Others related eBooks about Web Application Security

Tutorial AngularJS in PDF

This course provides an overview of AngularJS framework, a good PDF tutorial on 26 pages intended to intermediate level-users....

Responsive Web Design Tutorial

Download free Responsive Web Design With fluid grids for desktop, tablet, and mobile, with example and exercises, course material, tutorial training, a PDF file under 30 pages by Tim Davison....

Developing Backbone.js Applications

Backbone.js is a JavaScript library with a RESTful JSON interface, and is loosely based on the model-view-controller (MVC) application design paradigm. Backbone.js is known for being lightweight, as its only dependency is on one JavaScript library, Underscore.js. It is designed for developing sing...

Go for Javascript Developers

This book compares between two programming languages, Golang (or Go) and ECMAScript (or Javascript / JS). The merits of this pairing is the popularity of these languages. That's it. They are not similar, in fact, they are quite different. Javascript is an event driven, dynamically typed and interpre...

Learning JQuery

This is a jQuery tutorial for beginners, it provides in-depth knowledge of jQuery technology. This jQuery tutorial will help you learn jQuery basics, examples, selectors, events, effects, CSS, and attributes....

Document Object Model Tutorial

Download free eBook about DOM, (Document Object Model), learn how to navigate an XML structure....

Cascading style sheets (CSS) free pdf tutorial

Download free Cascading style sheets (CSS) course material and training (PDF file 34 pages) designated to beginners....

How To Build a Website With CSS and HTML

This project-based eBook will introduce you to Cascading Style Sheets (CSS), a stylesheet ..., download free CSS tutorial in PDF (172 pages) created by Erin Glass ....

Download free PHP course

With this PDF tutorial you will learn the basics of PHP ,understand the working model of PHP to begin coding your own projects and scripts.Free courses under 95 pages designated to beginners....

Get started with HTML5

This tutorial aim to provide a gentle introduction to these amazing new web technologies, and to show you some cool ways of incorporating them into your websites....