A Beginner's Guide to Web Application Penetration Testing - Abdollahi, Ali
- Format: Broché Voir le descriptif
Vous en avez un à vendre ?
Vendez-le-vôtre56,71 €
Produit Neuf
Ou 14,18 € /mois
- Livraison : 3,99 €
- Livré entre le 25 et le 31 juillet
Nos autres offres
-
61,15 €
Produit Neuf
Ou 15,29 € /mois
- Livraison à 0,01 €
Expédition rapide et soignée depuis l`Angleterre - Délai de livraison: entre 10 et 20 jours ouvrés.
Voir le détail de l'annonce -
81,30 €
Produit Neuf
Ou 20,33 € /mois
- Livraison à 0,01 €
- Livré entre le 27 juillet et le 8 août
Brand new, In English, Fast shipping from London, UK; Tout neuf, en anglais, expédition rapide depuis Londres, Royaume-Uni;ria9781394295593_dbm
Voir le détail de l'annonce -
81,09 €
Produit Neuf
Ou 20,27 € /mois
- Livraison : 5,00 €
- Livré entre le 25 et le 30 juillet
Exp¿di¿ en 7 jours ouvr¿s
Voir le détail de l'annonce
- Payez directement sur Rakuten (CB, PayPal, 4xCB...)
- Récupérez le produit directement chez le vendeur
- Rakuten vous rembourse en cas de problème
Gratuit et sans engagement
Félicitations !
Nous sommes heureux de vous compter parmi nos membres du Club Rakuten !
TROUVER UN MAGASIN
Retour
Avis sur A Beginner's Guide To Web Application Penetration Testing de Abdollahi, Ali Format Broché - Livre Informatique
0 avis sur A Beginner's Guide To Web Application Penetration Testing de Abdollahi, Ali Format Broché - Livre Informatique
Les avis publiés font l'objet d'un contrôle automatisé de Rakuten.
-
Project Management For Engineers
Neuf dès 69,48 €
-
Manuel D'arabe En Ligne Apprentissage En Autonomie
Occasion dès 45,87 €
-
Art Of Haikyu!!
Neuf dès 46,00 €
-
Francois Guizot Et La Culture Politique
Occasion dès 32,25 €
-
The Name Of The Wind
Neuf dès 42,72 €
-
La Sante Interdite
1 avis
Occasion dès 71,00 €
-
History For The Ib Diploma Paper 3 The Soviet Union And Post-Soviet Russia (1924-2000) Coursebook With Digital Access (2 Years)
Neuf dès 44,39 €
-
The Hobbit And The Lord Of The Rings
Occasion dès 43,02 €
-
Intermedia, Fluxus And The Something Else Press: Selected Writings By Dick Higgins
Neuf dès 38,68 €
-
Literature In English - Anthologie Des Littératures Anglophones
1 avis
Neuf dès 39,90 €
-
Some Heads
Neuf dès 37,40 €
-
Master Incapable
Neuf dès 37,29 €
-
Ephemerides 1950-2050 Ut For 0h International Edition
17 avis
Occasion dès 44,95 €
-
Twilight
1 avis
Occasion dès 47,02 €
-
2001 Entre Kubrick Et Clarke: Genèse, Conception Et Paternité Dun Chef Duvre
Neuf dès 38,68 €
-
Anselm Kiefer
Neuf dès 49,58 €
-
The Eb Real Book, Sixth Edition
1 avis
Neuf dès 48,97 €
-
Art And Devotion At A Buddhist Temple In The Indian Himalaya
Neuf dès 73,00 €
-
Maps
Neuf dès 46,70 €
-
Flandre Et Amérique Latine: 500 Ans De Confrontation Et Métissage
1 avis
Occasion dès 34,00 €
Produits similaires
Présentation A Beginner's Guide To Web Application Penetration Testing de Abdollahi, Ali Format Broché
- Livre Informatique
Résumé : A hands-on, beginner-friendly intro to web application pentesting In A Beginner's Guide to Web Application Penetration Testing, seasoned cybersecurity veteran Ali Abdollahi delivers a startlingly insightful and up-to-date exploration of web app pentesting. In the book, Ali takes a dual approach-emphasizing both theory and practical skills-equipping you to jumpstart a new career in web application security. You'll learn about common vulnerabilities and how to perform a variety of effective attacks on web applications. Consistent with the approach publicized by the Open Web Application Security Project (OWASP), the book explains how to find, exploit and combat the ten most common security vulnerability categories, including broken access controls, cryptographic failures, code injection, security misconfigurations, and more. A Beginner's Guide to Web Application Penetration Testing walks you through the five main stages of a comprehensive penetration test: scoping and reconnaissance, scanning, gaining and maintaining access, analysis, and reporting. You'll also discover how to use several popular security tools and techniques-like as well as: Perfect for software engineers new to cybersecurity, security analysts, web developers, and other IT professionals, A Beginner's Guide to Web Application Penetration Testing will also earn a prominent place in the libraries of cybersecurity students and anyone else with an interest in web application security....
Biographie: ALI ABDOLLAHI is a cybersecurity researcher with over 12 years of experience. Currently, he is the application and offensive security manager at Canon EMEA. He studied computer engineering, published articles, and holds several professional certificates. Ali is a Microsoft MVP and regular speaker or trainer at industry conferences and events....
Sommaire: Foreword xvii Introduction xix Chapter 1 Introduction to Web Application Penetration Testing 1 The Importance of Web Application Security 3 Overview of Web Application Penetration Testing 6 The Penetration Testing Process 8 Methodologies 12 Tools and Techniques 14 Reporting 16 Types of Web Application Vulnerabilities 17 Key Takeaways 25 Chapter 2 Setting Up Your Penetration Testing Environment 27 Setting Up Virtual Machines 28 Container Option 29 Kali Linux Installation 30 PentestBox 34 Installing DVWA 35 OWASP Juice Shop 40 Burp Suite 41 OWASP ZED Attack Proxy 46 WILEY Preconfigured Environment 49 Key Takeaways 49 Chapter 3 Reconnaissance and Information Gathering 51 Passive Information Gathering 52 Automating Subdomain Enumeration 61 Active Information Gathering 64 Open-Source Intelligence Gathering 77 Key Takeaways 88 Chapter 4 Cross-Site Scripting 89 XSS Categories 90 Reflected XSS 91 Stored XSS 93 Automatic User Session Hijacking 94 Website Defacement Using XSS 96 DOM-Based XSS 97 Self-XSS 98 Browser Exploitation Framework 100 XSS Payloads and Bypasses 102 XSS Mitigation Techniques 105 Reflected XSS Bypass Techniques 107 Stored XSS Bypass Technique 110 Key Takeaways 112 Chapter 5 SQL Injection 113 What Is SQL Injection? 113 Types of SQL Injection 114 Error-Based SQL Injection 117 Union-Based SQL Injection 117 Blind SQL Injection 123 SQLMap 126 SQL Injection Payloads with ChatGPT 140 SQL Injection Prevention 142 Key Takeaways 145 Chapter 6 Cross-Site Request Forgery 147 Hunting CSRF Vulnerability 149 CSRF Exploitation 149 XSS and CSRF 151 Clickjacking 152 Generating an Effective Proof of Concept Using ChatGPT 154 Tips for Developers 157 Key Takeaways 158 Chapter 7 Server-Side Attacks and Open Redirects 159 Server-Side Request Forgery 159 SSRF in Action 160 SSRF Vulnerability 162 Blind SSRF 164 Local File Inclusion 166 Remote File Inclusion 170 Open Redirect 173 Server-Side Attacks Differences 177 Security Mitigations 178 Key Takeaways 181 Chapter 8 XML-Based Attacks 183 XML Fundamentals 183 XXE Exploitation 185 Hunting XML Entry Points 187 SSRF Using XXE 192 DoS Using XXE 193 XXE Payload and Exploitation with ChatGPT 195 XML-Based Attacks Countermeasures 196 Key Takeaways 198 Chapter 9 Authentication and Authorization 201 Password Cracking and Brute-Force Attacks 205 Credential Stuffing Attack 211 Password Spraying 213 Password Spraying Using Burp Suite Intruder 214 Other Automated Tools for Password Attacks 215 JSON Web Token 223 Key Takeaways 225 Chapter 10 API Attacks 227 OWASP API Top 10 228 API Enumeration and Discovery 230 API Discovery Using ChatGPT 231 API Broken Object-Level Authorization Exploitation 235 Rate Limiting 240 API Penetration Testing Tools 242 API Security Tips 244 Key Takeaways 245 Appendix A Best Practices and Standards 247 Information Gathering 248 Configuration and Deployment Management Testing 251 Identity Management Testing 254 Authentication Testing 256 Authorization Testing 261 Session Management Testing 265
Détails de conformité du produit
Personne responsable dans l'UE