Web Application Security: Exploitation and Countermeasures for Modern Web Applications 2nd Edition


Web Application Security: Exploitation and Countermeasures for Modern Web Applications
Author: Andrew Hoffman (Author)
Publisher finelybook 出版社:‏ O’Reilly Media
Edition 版本:‏ 2nd
Publication Date 出版日期:‏ 2024-02-27
Language 语言: English
Print Length 页数: 441 pages
ISBN-10: 1098143930
ISBN-13: 9781098143930

Book Description

In the first edition of this critically acclaimed book, Andrew Hoffman defined the three pillars of application security: reconnaissance, offense, and defense. In this revised and updated second edition, he examines dozens of related topics, from the latest types of attacks and mitigations to threat modeling, the secure software development lifecycle (SSDL/SDLC), and more.

Hoffman, senior staff security engineer at Ripple, also provides information regarding exploits and mitigations for several additional web application technologies such as GraphQL, cloud-based deployments, content delivery networks (CDN) and server-side rendering (SSR). Following the curriculum from the first book, this second edition is split into three distinct pillars comprising three separate skill sets:

  • Pillar 1: Recon—Learn techniques for mapping and documenting web applications remotely, including procedures for working with web applications
  • Pillar 2: Offense—Explore methods for attacking web applications using a number of highly effective exploits that have been proven by the best hackers in the world. These skills are valuable when used alongside the skills from Pillar 3.
  • Pillar 3: Defense—Build on skills acquired in the first two parts to construct effective and long-lived mitigations for each of the attacks described in Pillar 2.

About the Author

Andrew Hoffman is a senior staff security engineer at Ripple. His expertise is in deep DOM and JavaScript security vulnerabilities. He’s worked with every major browser vendor, including TC39 and the Web Hypertext Application Technology Working Group (WHATWG) – organizations responsible for the upcoming version of JavaScript and the browser DOM spec.

Amazon page

下载地址 Download解决验证以访问链接!
打赏
未经允许不得转载:finelybook » Web Application Security: Exploitation and Countermeasures for Modern Web Applications 2nd Edition

评论 抢沙发

觉得文章有用就打赏一下

您的打赏,我们将继续给力更多优质内容

支付宝扫一扫

微信扫一扫