Cross Site Scripting Attacks: Xss Exploits and Defense
Seth Fogie, Jeremiah Grossman, Robert Hansen, Anton Rager, Petko D. Petkov
- 出版商: Syngress Media
- 出版日期: 2007-04-01
- 定價: $1,980
- 售價: 6.0 折 $1,188
- 語言: 英文
- 頁數: 480
- 裝訂: Paperback
- ISBN: 1597491543
- ISBN-13: 9781597491549
-
相關分類:
資訊安全
立即出貨(限量) (庫存=1)
買這商品的人也買了...
-
PHP 函式庫參考手冊$580$493 -
計算機網路實驗以 NS2 模擬工具實作$450$428 -
專案管理理論與案例解析$480$456 -
$1,188Data Structures and Algorithms in Java, 4/e -
作業系統原理 (Silberschatz: Operating System Principles, 7/e)
$780$741 -
SQL 語法範例辭典$550$468 -
Linux 驅動程式, 3/e (Linux Device Drivers, 3/e)$980$774 -
$1,080CMMI: Guidelines for Process Integration and Product Improvement, 2/e -
SCJP Java 5 專業認證手冊 (SCJP Sun Certified Programmer for Java 5 Study Guide)(Exam 310-055)
$880$695 -
防駭戰士 (Security Warrior)$780$616 -
Linux 作業系統之奧義$480$408 -
自己動手寫作業系統$520$411 -
SCWCD 專業認證手冊 (Sun Certified Web Component Developer Study Guide)(考試編號:310-081)$780$616 -
ASP.NET 2.0 網站開發學習講座$650$553 -
深入淺出物件導向分析與設計 (Head First Object-Oriented Analysis and Design)$880$695 -
最新 JSP 與 Servlet 600 個活用範例大全, 2/e$620$484 -
ASP.NET AJAX 應用剖析立即上手$580$452 -
軟體測試實務講座─來自矽谷的技術經驗與心得分享$290$226 -
ASP.NET AJAX 經典範例 100─使用 VC#$750$593 -
JavaScript 大全 (JavaScript: The Definitive Guide, 5/e)$1,200$948 -
現代嵌入式系統開發專案實務-菜鳥成長日誌與專案經理的私房菜$600$480 -
$399CCNA ICND2 Official Exam Certification Guide (CCNA Exams 640-816 and 640-802), 2/e -
計算機網路實驗-使用 NS2 模擬多媒體通訊與無線網路$480$456 -
Linux 網路安全技術與實現$620$527 -
大話設計模式$620$527
商品描述
Description
Cross Site Scripting Attacks starts by defining the terms and laying out the ground work. It assumes that the reader is familiar with basic web programming (HTML) and JavaScript. First it discusses the concepts, methodology, and technology that makes XSS a valid concern. It then moves into the various types of XSS attacks, how they are implemented, used, and abused. After XSS is thoroughly explored, the next part provides examples of XSS malware and demonstrates real cases where XSS is a dangerous risk that exposes internet users to remote access, sensitive data theft, and monetary losses. Finally, the book closes by examining the ways developers can avoid XSS vulnerabilities in their web applications, and how users can avoid becoming a victim. The audience is web developers, security practitioners, and managers.
*XSS Vulnerabilities exist in 8 out of 10 Web sites
*The authors of this book are the undisputed industry leading authorities
*Contains independent, bleeding edge research, code listings and exploits that can not be found anywhere else
商品描述(中文翻譯)
描述
《跨站腳本攻擊》首先定義了詞彙並建立了基礎。它假設讀者對基本的網頁編程(HTML)和JavaScript有所了解。首先討論了使XSS成為一個合理關注的概念、方法和技術。然後進入了各種類型的XSS攻擊,以及它們的實施、使用和濫用。在深入探討XSS之後,下一部分提供了XSS惡意軟件的示例,並展示了XSS是一個危險風險,會使網絡用戶面臨遠程訪問、敏感數據盜竊和金錢損失。最後,本書通過檢視開發人員如何避免其網頁應用程序中的XSS漏洞以及用戶如何避免成為受害者來結束。目標讀者是網頁開發人員、安全從業人員和管理人員。
* 10個網站中有8個存在XSS漏洞
* 本書的作者是無可爭議的行業領先權威
* 包含獨立的、最新的研究、代碼清單和無法在其他地方找到的攻擊示例
