| 000 | 02352nam a2200241Ia 4500 | ||
|---|---|---|---|
| 003 | NULRC | ||
| 005 | 20250520100613.0 | ||
| 008 | 250520s9999 xx 000 0 und d | ||
| 020 | _a9780071740647 | ||
| 040 | _cNULRC | ||
| 050 | _aTK 5105.59 .S33 2011 | ||
| 100 |
_aScambray, Joel _eauthor |
||
| 245 | 0 |
_aHacking exposed web applications : _bweb application security secrets and solutions / _cJoel Scambray, Vincent Liu and Caleb Sima. |
|
| 250 | _aThird Edition. | ||
| 260 |
_aNew York : _bMcGraw Hill Education, _cc2011 |
||
| 300 |
_axxvi, 451 pages : _billustrations ; _c23 cm. |
||
| 365 | _bPHP2399 | ||
| 504 | _aIncludes index. | ||
| 520 | _aThe latest Web app attacks and countermeasures from world-renowned practitioners Protect your Web applications from malicious attacks by mastering the weapons and thought processes of today's hacker. Written by recognized security practitioners and thought leaders, Hacking Exposed Web Applications, Third Edition is fully updated to cover new infiltration methods and countermeasures. Find out how to reinforce authentication and authorization, plug holes in Firefox and IE, reinforce against injection attacks, and secure Web 2.0 features. Integrating security into the Web development lifecycle (SDL) and into the broader enterprise information security program is also covered in this comprehensive resource. Get full details on the hacker's footprinting, scanning, and profiling tools, including SHODAN, Maltego, and OWASP DirBuster See new exploits of popular platforms like Sun Java System Web Server and Oracle WebLogic in operation Understand how attackers defeat commonly used Web authentication technologies See how real-world session attacks leak sensitive data and how to fortify your applications Learn the most devastating methods used in today's hacks, including SQL injection, XSS, XSRF, phishing, and XML injection techniques Find and fix vulnerabilities in ASP.NET, PHP, and J2EE execution environments Safety deploy XML, social networking, cloud computing, and Web 2.0 services Defend against RIA, Ajax, UGC, and browser-based, client-side exploits Implement scalable threat modeling, code review, application scanning, fuzzing, and security testing procedures. | ||
| 650 | _aINFORMATION TECHNOLOGY -- SECURITY MEASURES | ||
| 700 |
_aLiu, Vincent _eco-author |
||
| 942 |
_2lcc _cBK |
||
| 999 |
_c9246 _d9246 |
||