Professional Pen Testing for Web Applications
Andres Andreu
- 出版商: Wrox Press
- 出版日期: 2006-07-01
- 定價: $1,800
- 售價: 2.2 折 $399
- 語言: 英文
- 頁數: 548
- 裝訂: Paperback
- ISBN: 0471789666
- ISBN-13: 9780471789666
-
相關分類:
資訊安全、駭客 Hack
立即出貨(限量) (庫存=4)
買這商品的人也買了...
-
C++ Primer, 3/e 中文版$980$774 -
最新 JavaScript 完整語法參考辭典 第三版$490$382 -
PhotoImpact 10 私房書$299$254 -
Excel 2003 實力養成暨評量$350$277 -
深入淺出 Java 程式設計, 2/e (Head First Java, 2/e)$880$581 -
Dreamweaver 8 魔法書中文版$490$417 -
如何設計好網站 (Don't Make Me Think: A Common Sense Approach to Web Usability, 2/e)$450$405 -
鳥哥的 Linux 私房菜基礎學習篇, 2/e$780$702 -
Microsoft SQL Server 2005 設計實務$680$578 -
PMP Exam Prep: Rita's Course in a Book for Passing the PMP Exam, 5/e$3,026$2,875 -
駭客攻防技術擂臺$520$442 -
ASP.NET 2.0 深度剖析範例集$650$507 -
Microsoft SQL Server 2005 管理實務$680$578 -
Linux 驅動程式, 3/e (Linux Device Drivers, 3/e)$980$774 -
$299Enterprise Integration with Ruby (Paperback) -
Dreamweaver 搞不定的網頁設計效果:CSS 關鍵救援密碼$520$442 -
操作介面設計模式 (Designing Interfaces)$880$695 -
向世界最 TOP 的網站學 CSS 網頁設計$490$382 -
Visual C# 2005 程式開發與介面設計秘訣$750$593 -
Ajax 實戰手冊 (Ajax in Action)$680$537 -
Ajax 技術手冊 (Foundations of Ajax)$450$356 -
Ajax 快速上手 (Head Rush Ajax)$780$616 -
$199From Java to Ruby: Things Every Manager Should Know -
聖殿祭司的 ASP.NET 2.0 專家技術手冊─使用 C#$720$569 -
$399CCNA ICND2 Official Exam Certification Guide (CCNA Exams 640-816 and 640-802), 2/e
商品描述
Description
There is no such thing as "perfect security" when it comes to keeping all systems intact and functioning properly. Good penetration (pen) testing creates a balance that allows a system to be secure while simultaneously being fully functional. With this book, you'll learn how to become an effective penetrator (i.e., a white hat or ethical hacker) in order to circumvent the security features of a Web application so that those features can be accurately evaluated and adequate security precautions can be put in place.
After a review of the basics of web applications, you'll be introduced to web application hacking concepts and techniques such as vulnerability analysis, attack simulation, results analysis, manuals, source code, and circuit diagrams. These web application hacking concepts and techniques will prove useful information for ultimately securing the resources that need your protection.
What you will learn from this book
- Surveillance techniques that an attacker uses when targeting a system for a strike
- Various types of issues that exist within the modern day web application space
- How to audit web services in order to assess areas of risk and exposure
- How to analyze your results and translate them into documentation that is useful for remediation
- Techniques for pen-testing trials to practice before a live project
Who this book is for
This book is for programmers, developers, and information security professionals who want to become familiar with web application security and how to audit it.
Wrox Professional guides are planned and written by working programmers to meet the real-world needs of programmers, developers, and IT professionals. Focused and relevant, they address the issues technology professionals face every day. They provide examples, practical solutions, and expert education in new technologies, all designed to help programmers do a better job.
商品描述(中文翻譯)
描述
在保持所有系統完整並正常運作方面,「完美的安全」是不存在的。良好的滲透測試可以在系統保持安全的同時保持其完全功能。通過本書,您將學習如何成為一名有效的滲透者(即白帽駭客或道德駭客),以繞過網絡應用程序的安全功能,從而準確評估這些功能並採取足夠的安全預防措施。
在介紹網絡應用程序入侵概念和技術(如漏洞分析、攻擊模擬、結果分析、手冊、源代碼和電路圖)之後,您將了解到這些網絡應用程序入侵概念和技術對於最終保護需要您保護的資源非常有用。
本書將教您以下內容:
- 攻擊者在對系統進行攻擊時使用的監視技術
- 現代網絡應用程序領域存在的各種問題類型
- 如何審計網絡服務以評估風險和曝光領域
- 如何分析結果並將其轉化為有用的修復文檔
- 在實際項目之前進行滲透測試試驗的技巧
本書適合程序員、開發人員和信息安全專業人員,他們希望熟悉網絡應用程序安全性以及如何進行審計。
Wrox專業指南由在職程序員計劃和撰寫,以滿足程序員、開發人員和IT專業人員的實際需求。這些指南聚焦且相關,涉及技術專業人員每天面臨的問題。它們提供實例、實用解決方案和專家教育,旨在幫助程序員做得更好。
