The Web Application Hacker’s Handbook: Finding and Exploiting Security Flaws

Web applications are the front door to most organizations, exposing them to attacks that may disclose personal information, execute fraudulent transactions, or compromise abnormal users. This practical book has been completely up to date and revised to discuss the contemporary step by step techniques for attacking and defending the range of ever-evolving web applications. You’ll be able to explore the quite a lot of new technologies employed in web applications that have appeared since the first edition and review the new attack techniques which have been developed, particularly with regards to the client side.

• Reveals how to overcome the new technologies and techniques aimed at defending web applications against attacks that have appeared since the previous edition
• Discusses new remoting frameworks, HTML5, cross-domain integration techniques, UI redress, framebusting, HTTP parameter pollution, hybrid file attacks, and more
• Features a companion web site hosted by the authors that allows readers to check out out the attacks described, gives answers to the questions that are posed at the end of each chapter, and provides a summarized methodology and checklist of tasks

Focusing on the areas of web application security where things have changed in contemporary years, this book is the most current resource on the critical topic of discovering, exploiting, and preventing web application security flaws.