Mastering Modern Web Penetration Testing Ebook

Publication: Packt Publishing
 
Is my Device Supported?

You're about to purchase a Downloadable Ebook

Hi, sorry for the interruption!
We're repeating some important information here to ensure that you're making an informed purchase. Please review it.

  • Don't get caught unaware. Preview ebook and open the sample ebook on each of your intended devices before continuing.
  • You will need a Free 3rd-party application that can read the intermediate .acsm file you will receive as download. PDF/Epub format is downloaded automatically by the application thereafter. Please install the necessary software first on your intended device of use.
  • e-Book can be copied on up to 6 devices that must have the same Adobe ID
  • We can only keep the download on our site until the ebook publishers/distributors authorize us to do so. Please keep a backup.
  • - Printing is not permitted.
    - You cannot copy text from file.
  • Refund Policy
    Refunds are not allowed after the ebook is opened so please open the ebook directly on your intended device. Refund requests should be recieved within 7 days after download is made available. Of course, if you get an incorrect ebook ( different from what is mentioned in the title) or if the ebook doesn't open on the initial device, then we'll assist with fixing the issue or get you a refund if a timely fix isn't available.
  • Customer Service
    We currently only provide ticket (online form submission) or email support. Rest assured that you're in good hands; customers like our professional service!
I have previewed the ebook and read the requirements and terms.
Cancel

Language: English
Publication Date: October 2016
File Size: 28022 Kbytes

Restrictions set by Publisher:
- Text-to-speech feature not available.
- Printing is not permitted.
- You cannot copy text from file.
- Free application Adobe Digital Editions, Aldiko reader, or Bluefire reader required .
$36.89
Change Region
 
ISBN: 9781785289149   Should I buy this Ebook?   Write a Review

Description

Master the art of conducting modern pen testing attacks and techniques on your web application before the hacker does! About This Book • This book covers the latest technologies such as Advance XSS, XSRF, SQL Injection, Web API testing, XML attack vectors, OAuth 2.0 Security, and more involved in today’s web applications • Penetrate and secure your web application using various techniques • Get this comprehensive reference guide that provides advanced tricks and tools of the trade for seasoned penetration testers Who This Book Is For This book is for security professionals and penetration testers who want to speed up their modern web application penetrating testing. It will also benefit those at an intermediate level and web developers who need to be aware of the latest application hacking techniques. What You Will Learn • Get to know the new and less-publicized techniques such PHP Object Injection and XML-based vectors • Work with different security tools to automate most of the redundant tasks • See different kinds of newly-designed security headers and how they help to provide security • Exploit and detect different kinds of XSS vulnerabilities • Protect your web application using filtering mechanisms • Understand old school and classic web hacking in depth using SQL Injection, XSS, and CSRF • Grasp XML-related vulnerabilities and attack vectors such as XXE and DoS techniques • Get to know how to test REST APIs to discover security issues in them In Detail Web penetration testing is a growing, fast-moving, and absolutely critical field in information security. This book executes modern web application attacks and utilises cutting-edge hacking techniques with an enhanced knowledge of web application security. We will cover web hacking techniques so you can explore the attack vectors during penetration tests. The book encompasses the latest technologies such as OAuth 2.0, Web API testing methodologies and XML vectors used by hackers. Some lesser discussed attack vectors such as RPO (relative path overwrite), DOM clobbering, PHP Object Injection and etc. has been covered in this book. We’ll explain various old school techniques in depth such as XSS, CSRF, SQL Injection through the ever-dependable SQLMap and reconnaissance. Websites nowadays provide APIs to allow integration with third party applications, thereby exposing a lot of attack surface, we cover testing of these APIs using real-life examples. This pragmatic guide will be a great benefit and will help you prepare fully secure applications. Style and approach This master-level guide covers various techniques serially. It is power-packed with real-world examples that focus more on the practical aspects of implementing the techniques rather going into detailed theory.

Recommendations:

802.11 Wlans and IP Networking: Security, Qos and Mobility ebook cover
Save 10.35%
WILL ANIMATION EXPLODE ONTO THE INTERNET? ebook cover
Save 17.64%
Optical Networking ebook cover
Save 19.55%

Should you buy this Ebook?

We've put together a collection of resources to help you make a decision regarding whether you should buy this Ebook from us.

  1. Is your device one of these? Ebook reading software will work on the following devices: Windows, Mac, Android 2.2+ Devices, IPad (iOS 3+), IPhone (iOS 3+), Kindle Fire. Several other devices are also supported by the software.
  2. Compare prices. Our price is $36.89. If you would like to research our competitors to see their prices. Here're some places to look:
  3. Why should you buy Ebooks from onlinebookplace.com?

    We've had 1000s of downloads so far and with over 300000+ Ebooks to choose from, onlinebookplace.com is becoming a favorite Ebook Store for many. Allow us to win you over with our competitive pricing, upfront policies and diligent customer service.

    We're Upfront:

    • Every Ebook page on onlinebookplace.com has information on restrictions that publishers have placed on the Ebook along with a clear indication of software required to read the Ebooks.
    • If ratings for an Ebook are available from one of several sources online, then we've attempted to get those to help you make a better purchasing decision about the Ebook. Reviews from Goodreads (a popular reviews site) are provided on the same if they're available.
    • In most cases, we've also attempted to get you links to the Ebook on our competitor's site so that you can compare prices with relative ease.
    • We use McAfee to scan for any vulnerabilities in the system to ensure that any information that you give us does not fall into the wrong hands.
    • We use Paypal, a trusted 3rd party payment provider to accept Payments -- your payment information doen't reside with us. Any information that does end up with us is safe.

After installing the appropriate app for your device, try a Sample Download (Sherlock Holmes from Project Gutenberg) before purchase. The sample is only for checking device compatibility.

Check below for device compatibility and any free 3rd-party software requirements. Choice of what ebook reading app to use is yours, we only present a few common apps that several customers of ours have preferred. You should be able to transfer your purchase to more than one (upto 6) compatible devices as long as your ebook-reading apps have been registered with the same Adobe ID before opening the file.

Computers/laptops/Mac

Windows/Mac PC or Laptop

Free app Adobe Digital Editions required. Note that this software is not the same as Adobe Reader.

Android

Android 2.1+

Free app Aldiko Reader or Bluefire Reader required.

Kindle Fire (and any Android based Kindle models)

Free Kindle Android app Bluefire Reader required.

IPhone/IPad

IPad or IPhone

Free app Bluefire Reader required. Kindly review their tutorial for the requirement (note that while they're talking about library ebooks, same applies to your purchased .acsm file) -- feel free to use the sample download for testing. Tutorial .

Other E-Reader

Several Other devices supported

Devices like Nook are supported via the free application Adobe Digital Editions . This software is not the same as Adobe Reader. Please check compatibility of your device before purchase.

Mastering Modern Web Penetration Testing