Web Application Security: Exploitation and Countermeasures for Modern Web Applications

Andrew Hoffman

$55.99

Publication Date: April 7th, 2020

Publisher:

O'Reilly Media

ISBN:

9781492053118

Pages:

327

Description

While many resources for network and IT security are available, detailed knowledge regarding modern web application security has been lacking until now. This practical guide provides both offensive and defensive security concepts that software engineers can easily learn and apply.

Andrew Hoffman, a senior security engineer at Salesforce, introduces three pillars of web application security: recon, offense, and defense. You ll learn methods for effectively researching and analyzing modern web applications including those you don t have direct access to. You ll also learn how to break into web applications using the latest hacking techniques. Finally, you ll learn how to develop mitigations for use in your own web applications to protect against hackers.

Explore common vulnerabilities plaguing today's web applications
Learn essential hacking techniques attackers use to exploit applications
Map and document web applications for which you don t have direct access
Develop and deploy customized exploits that can bypass common defenses
Develop and deploy mitigations to protect your applications against hackers
Integrate secure coding best practices into your development lifecycle
Get practical tips to help you improve the overall security of your web applications

About the Author

Andrew Hoffman is a product security lead at Salesforce.com, where he is responsible for the security of multiple JavaScript, NodeJS, and OSS teams. His expertise is in deep DOM and JavaScript security vulnerabilities. He has worked with every major browser vendor, as well as with TC39 and WHATWG ? the organizations responsible for the upcoming version of JavaScript and the browser DOM spec.Prior to this role, Andrew was a software security engineer working on Locker Service, the world's first JavaScript namespace isolation library that operates from the interpreter level up. In parallel, Andrew also contributed to the upcoming JavaScript language security feature "Realms," which provides language level namespace isolation to JavaScript.

Web Application Security: Exploitation and Countermeasures for Modern Web Applications

Description

About the Author

National Geographic Complete Photo Guide: How to Take Better Pictures

Around the World in Eighty Games: From Tarot to Tic-Tac-Toe, Catan to Chutes and Ladders, a Mathematician Unlocks the Secrets of the World's Greatest Games

Path Between The Seas: The Creation of the Panama Canal, 1870-1914

The Devil's Element: Phosphorus and a World Out of Balance

ChatGPT for Dummies

The Innovators: How a Group of Hackers, Geniuses, and Geeks Created the Digital Revolution

How Infrastructure Works: Inside the Systems That Shape Our World

Broken Code: Inside Facebook and the Fight to Expose Its Harmful Secrets

Chesapeake Bay Bridge-Tunnel (Images of America)

How to Take Over the World: Practical Schemes and Scientific Solutions for the Aspiring Supervillain

Minecraft: Guide to Survival (Updated)

Once Upon a Prime: The Wondrous Connections Between Mathematics and Literature

Train: The Definitive Visual History (DK Definitive Visual Histories)

The Great Bridge: The Epic Story of the Building of the Brooklyn Bridge

Thunderstruck

Empire of the Sum: The Rise and Reign of the Pocket Calculator

When the Heavens Went on Sale: The Misfits and Geniuses Racing to Put Space Within Reach

Ways of Being: Animals, Plants, Machines: The Search for a Planetary Intelligence

Elon Musk

Inventor of the Future: The Visionary Life of Buckminster Fuller

Fish Butchery: Mastering The Catch, Cut, And Craft

The Age of AI: And Our Human Future

Read Write Own: Building the Next Era of the Internet

Swipe Up for More!: Inside the Unfiltered Lives of Influencers

Silent Spring

Artificial: A Love Story

The Algorithm: How AI Decides Who Gets Hired, Monitored, Promoted, and Fired and Why We Need to Fight Back Now

Co-Intelligence: Living and Working with AI

Hampton Roads Book Crawl

Web Application Security: Exploitation and Countermeasures for Modern Web Applications

Description

About the Author

You May Also Like

National Geographic Complete Photo Guide: How to Take Better Pictures

Around the World in Eighty Games: From Tarot to Tic-Tac-Toe, Catan to Chutes and Ladders, a Mathematician Unlocks the Secrets of the World's Greatest Games

Path Between The Seas: The Creation of the Panama Canal, 1870-1914

The Devil's Element: Phosphorus and a World Out of Balance

ChatGPT for Dummies

The Innovators: How a Group of Hackers, Geniuses, and Geeks Created the Digital Revolution

How Infrastructure Works: Inside the Systems That Shape Our World

Broken Code: Inside Facebook and the Fight to Expose Its Harmful Secrets

Chesapeake Bay Bridge-Tunnel (Images of America)

How to Take Over the World: Practical Schemes and Scientific Solutions for the Aspiring Supervillain

Minecraft: Guide to Survival (Updated)

Once Upon a Prime: The Wondrous Connections Between Mathematics and Literature

Train: The Definitive Visual History (DK Definitive Visual Histories)

The Great Bridge: The Epic Story of the Building of the Brooklyn Bridge

Thunderstruck

Empire of the Sum: The Rise and Reign of the Pocket Calculator

When the Heavens Went on Sale: The Misfits and Geniuses Racing to Put Space Within Reach

Ways of Being: Animals, Plants, Machines: The Search for a Planetary Intelligence

Elon Musk

Inventor of the Future: The Visionary Life of Buckminster Fuller

Fish Butchery: Mastering The Catch, Cut, And Craft

The Age of AI: And Our Human Future

Read Write Own: Building the Next Era of the Internet

Swipe Up for More!: Inside the Unfiltered Lives of Influencers

Silent Spring

Artificial: A Love Story

The Algorithm: How AI Decides Who Gets Hired, Monitored, Promoted, and Fired and Why We Need to Fight Back Now

Co-Intelligence: Living and Working with AI

Hampton Roads Book Crawl