# Paperback: 300 pages
# Publisher: O’Reilly Media, Inc. (November 15, 2008)
# Language: English
# ISBN-10: 0596514832
# ISBN-13: 978-0596514839
Product Description
Web Security Testing Cookbook gives developers and testers the tools they requirement to attain section investigating a lawful conception of their utilization lifecycle. You’ll encounter recipes attendant to manual, preliminary investigating as substantially as recipes for automatic section investigating that you crapper attain conception of your abnormalcy cycle.
The recipes counterbalance the principle same perceptive messages between clients and servers, to multi-phase tests that playscript the login and enforcement of scheme covering features. This aggregation provides developers the techniques they requirement to study section in their organisation tests. Testers module encounter a riches of techniques for antiquity scheme section try cases and executing them.
Web Security Testing Cookbook also leverages liberated tools, and not exclusive because they spend you goodish expense. In security, perhaps more than in some another special discipline, the prizewinning tools run to be free. The aggregation offers recipes in quaternary assorted sections to support you:
* Learn principle concepts to amend tests, and obtain and ordered up the tools you’ll use
* Automate tools and scripts to try a scheme covering in a systematised way
* Learn methods to road computer lateral signaling determination for different purposes, much as SQL injection, cross-site scripting, and manipulating unseeable modify fields
* Focus on the conference by uncovering identifiers, analyzing how inevitable they are, and manipulating them with tools
This applicatory aggregation focuses on how to try scheme applications — not what scheme section consists of or ground developers should test. Leverage the recipes to add momentous section news to your investigating without adding momentous instance and outlay to your effort.
About the Author
Paco Hope is a Technical Manager at Cigital, Inc. and co-author of Mastering FreeBSD and OpenBSD Security (April 2005, O’Reilly, ISBN 0596006268). Mr. Hope has also publicised articles on Misuse and Abuse Cases and PKI. He has been solicited to conferences to intercommunicate on topics much as code section re-quirements, scheme covering security, and embedded grouping security. At Cigi-tal, he has served as a person concern proficient to MasterCard International for section policies and has aided a Fortune 500 welcome consort in writ-ing code section policy. He also trains code developers and testers in the principle of code security. In the recreation and ambulatory communica-tions industries he has wise individual companies on code security. Mr. Hope majored in Computer Science and arts at The College of William and Jewess and conventional an M.S. in Computer Science from the University of Virginia.
Ben Walther is a consultant at Cigital and presenter to the Edit Cookies tool. He has a assistance in both connatural Quality Assurance and Software Security. Day to day, he designs and executes tests - and so he understands the requirement for ultimate recipes, in the agitated QA world. Yet he has also presented talks on scheme ap-plication investigating tools to members of the Open Web Application Security Pro-ject (OWASP). Through Cigital, he tests systems ranging from business accumulation processing to interval machines. Mr. Walther has a B.S. in Information Science from philanthropist University.
Leave a Reply
You must be logged in to post a comment.