Web Application Security
Andrew Hoffman, a senior security engineer at Salesforce, introduces three pillars of web application security: recon, offense, and defense. You'll learn methods for effectively researching and analyzing modern web applications - including those you don't have direct access to. You'll also learn how to break into web applications using the latest hacking techniques. Finally, you'll learn how to develop mitigations for use in your own web applications to protect against hackers.
- Explore common vulnerabilities plaguing today's web applications;
- Learn essential hacking techniques attackers use to exploit applications;
- Map and document web applications for which you don't have direct access;
- Develop and deploy customized exploits that can bypass common defenses;
- Develop and deploy mitigations to protect your applications against hackers;
- Integrate secure coding best practices into your development lifecycle;
- Get practical tips to help you improve the overall security of your web applications.
Table of contents
- The History of Software Security
- Introduction to Web Application Reconnaissance
- The Structure of a Modern Web Application
- Finding Subdomains
- API Analysis
- Identifying Third-Party Dependencies
- Identifying Weak Points in Application Architecture
- Part I Summary
- Introduction to Hacking Web Applications
- Cross-Site Scripting (XSS)
- Cross-Site Request Forgery (CSRF)
- XML External Entity (XXE)
- Injection
- Denial of Service (DoS)
- Exploiting Third-Party Dependencies
- Part II Summary
- Securing Modern Web Applications
- Secure Application Architecture
- Reviewing Code for Security
- Vulnerability Discovery
- Vulnerability Management
- Defending Against XSS Attacks
- Defending Against CSRF Attacks
- Defending Against XXE
- Defending Against Injection
- Defending Against DoS
- Securing Third-Party Dependencies
- Part III Summary
- Conclusion
| Pages : | 331 |
| Size : | 5.2 MB |
| File type : | |
| Downloads: | 262 |
| Created: | 2022-02-03 |
| License: | Open Publication License |
| Author(s): | Andrew Hoffman |
Warning: Trying to access array offset on false in /home/tutovnfz/public_html/article.php on line 233
Others web Tutorials
RESTfull Web Services Tutorial
Web Page Size, Speed, and Performance
Access Control and internet Filtering
Others related eBooks about Web Application Security
Reintroducing ReactIn this book, unlike any you may have come across before, I will deliver funny, unfeigned ..., download free React tutorial in PDF (257 pages) created by Ohans Emmanuel ....
Getting started with PrestaShopTraining support to learn how to use Prestashop, what is PrestaShop doing? Why choose PrestaShop compared to its competitors?...
Getting help with Django documentationIn this tutorial you will find everything you need to know about Django, complet and free training document under 1860 pages....
JavaScript tutorial for professionalsDownload free JavaScript tutorial course in PDF, training file in 106 chapters and 490 pages. Free unaffiliated ebook created from Stack OverFlow contributor....
Node.js programming by exampleDownload Free training document about Node.js under 16 pages intended to advanced level-users....
Responsive Web Design TutorialDownload free Responsive Web Design With fluid grids for desktop, tablet, and mobile, with example and exercises, course material, tutorial training, a PDF file under 30 pages by Tim Davison....
Getting started with LaravelDownload free Laravel tutorial course in PDF, training file in 65 chapters and 216 pages. Free unaffiliated ebook created from Stack OverFlow contributor....
You Don't Know JS Yet: Async & Performance - 2nd EditionNo matter how much experience you have with JavaScript, odds are you don't fully understand the language. As part of the "You Don't Know JS" series, this concise yet in-depth guide focuses on new asynchronous features and performance techniques - including Promises, generators, and Web Workers - t...
Web Page Size, Speed, and PerformanceDownload free course Web Page Size, Speed, and Performance, pdf file on 39 pages by Terrence Dorsey....
Reintroducing ReactDownload free course Reintroducing React, pdf file on 257 pages by Ohans Emmanuel....