《Web Security Testing Cookbook》书籍《Web Security Testing Cookbook》
作者:《Web Security Testing Cookbook》书籍
出版社:O'Reilly Media
出版年:2008-10-24
评分:0.0
ISBN:9780596514839
所属分类:网络科技
书刊介绍
内容简介
Among the tests you perform on web applications, security testing is perhaps the most important, yet it's often the most neglected. The recipes in the Web Security Testing Cookbook demonstrate how developers and testers can check for the most common web security issues, while conducting unit tests, regression tests, or exploratory tests. Unlike ad hoc security assessments, these recipes are repeatable, concise, and systematic-perfect for integrating into your regular test suite. Recipes cover the basics from observing messages between clients and servers to multi-phase tests that script the login and execution of web application features. By the end of the book, you'll be able to build tests pinpointed at Ajax functions, as well as large multi-step tests for the usual suspects: cross-site scripting and injection attacks. This book helps you: * Obtain, install, and configure useful-and free-security testing tools * Understand how your application communicates with users, so you can better simulate attacks in your tests * Choose from many different methods that simulate common attacks such as SQL injection, cross-site scripting, and manipulating hidden form fields * Make your tests repeatable by using the scripts and examples in the recipes as starting points for automated tests Don't live in dread of the midnight phone call telling you that your site has been hacked. With Web Security Testing Cookbook and the free tools used in the book's examples, you can incorporate security coverage into your test suite, and sleep in peace.
相关推荐
-
刑事程序中的透明性与正当性
《刑事程序中的透明性与正当性》内容简介:来自英美法系的对抗制理念在我国风靡一时。关于何谓“正当程序”,一些对抗制教条逐渐演
-
《The Art and Science of CSS》书籍《The Art and Science of CSS》
WanttotakeyourCSSdesignstothenextlevel?willshowyouhowtocreatedozensofCSS-basedWe...
-
克瓦林纳《.NET设计规范》
krzysztofcwalina微软公司公共语言运行库(clr)的项目经理。他曾为.net框架的首个版本设计api,并负责框架中的多个名字空间,包
-
![[英] Jono Bacon《The Art of Community》](http://oss.shudanhao.com/caiji/chazidian/2023/4567.jpg)
[英] Jono Bacon《The Art of Community》
Onlinecommunitiesofferawiderangeofopportunitiestoday,whetheryouresupportingacaus...
-
唤醒孩子的内在成长
《唤醒孩子的内在成长》内容简介:本书是樊登读书育⼉系列第⼆册。要想在⼀个领域得⼼应⼿,底层认知⾮常重要。育⼉的底层认知便是
-
kh10269名师讲坛Linux从入门到精通
kh10269名师讲坛Linux从入门到精通 内容简介 本书是中国台湾优秀it图书作家丰士昌先生的*新力作,总结了作者10余年来使用linux操作系统的经验和技...
-
长三角区域一体化发展战略研究
《长三角区域一体化发展战略研究》内容简介:本书通过对比分析两大经济区制造业,特别是战略性新兴和高技术产业的发展情况,以及制
-
人类学讲义稿
《人类学讲义稿》内容简介:◎反思“东腔西调”学科史的人类学本土叙述 ◎《人类学讲义稿》打破了只是简单地罗列概念和事例的传统教
-
背影:朱自清散文精选集
《背影:朱自清散文精选集》内容简介:朱自清亲情主题散文精选集,4大篇章,39篇经典佳作,在真挚的文字中,传递出生命的种种感动。
-
Shelley Powers《Painting the Web》
PaintingtheWebisthefirstcomprehensivebookonwebgraphicstocomealonginyears,andauth...
-
William Gibson《Pattern Recognition》
Inapost-9/11world,thepresentisasunpredictableasanyfuture...Paidtopredictthehotte...
-
![[日] 奈良美智《小星星通信》](http://oss.shudanhao.com/caiji/chazidian/2023/435.jpg)
[日] 奈良美智《小星星通信》
奈良美智出生於1959年12月5日,日本青森縣弘前市人。是日本現代美術界極具影響力的畫家。1981~1988年在愛知縣立藝術大學和研究所
-
拉通
《拉通》内容简介:怎样加快项目或订单的获取和交付,实现高效增长?怎样提高部门之间、员工之间的协作效率或人效?怎样判断并从根
-
![[美] 斯蒂格勒《统计探源》](http://oss.shudanhao.com/caiji/chazidian/2023/1210.jpg)
[美] 斯蒂格勒《统计探源》
本书收录StephenM.Stigler的22篇论文,主要关于统计的发展历史,同时涉及统计思维、统计标准与统计检测等诸多方面。本书特别关注
-
袁烨《苹果的味道》
《苹果的味道:iPad商务应用每一天》是一本介绍iPad商务应用的书。编者从AppStore丰富的应用程序库中选取了MobileRSS、PocketInfo
-
楚辞选
《楚辞选》内容简介:《楚辞》是中国古典文学经典名著之一,人们常常把将其与《诗经》并称为“诗骚”或“风骚”,是中国古典文学传
-
《基于Web挖掘的个性化信息推荐》书籍《基于Web挖掘的个性化信息推荐》
《基于Web挖掘的个性化信息推荐》内容简介:基于Web挖掘的个性化信息推荐是解决当前互联网“信息过载”问题的重要手段之一。《基
-
James Bennett《Practical Django Projects》
Buildadjangocontentmanagementsystem,blog,andsocialnetworkingsitewithJamesBennett...
-
啊哈C!思考快你一步
《啊哈C!思考快你一步》内容简介:这是一本非常有趣的编程启蒙书,全书从中小学生的角度来讲述,没有生涩的内容,取而代之的是生动
-
物联网与智慧养老
《物联网与智慧养老》内容简介:本书深入剖析当今我国人口老龄化与产业发展,从老龄化发展背景和智慧养老入手,结合物联网技术支撑
