MARC details
| 008 - FIXED-LENGTH DATA ELEMENTS--GENERAL INFORMATION |
|---|
| fixed length control field |
100227t20082009caua 001 0 eng |
| 020 ## - INTERNATIONAL STANDARD BOOK NUMBER |
|---|
| International Standard Book Number |
9780596514839 (pbk.) |
| 035 ## - SYSTEM CONTROL NUMBER |
|---|
| System control number |
(Sirsi) u3922 |
| 040 ## - CATALOGING SOURCE |
|---|
| Original cataloging agency |
EG-CaNU |
| Transcribing agency |
EG-CaNU |
| Modifying agency |
EG-CaNU |
| 042 ## - AUTHENTICATION CODE |
|---|
| Authentication code |
ncode |
| 082 04 - DEWEY DECIMAL CLASSIFICATION NUMBER |
|---|
| Classification number |
005.14 |
| Edition number |
22 |
| 100 1# - MAIN ENTRY--PERSONAL NAME |
|---|
| Personal name |
Hope, Paco. |
| 9 (RLIN) |
1285 |
| 245 10 - TITLE STATEMENT |
|---|
| Title |
Web security testing cookbook : |
| Remainder of title |
systematic techniques to find problems fast / |
| Statement of responsibility, etc. |
Brian Hope and Ben Walther. |
| 250 ## - EDITION STATEMENT |
|---|
| Edition statement |
1st ed. |
| 260 ## - PUBLICATION, DISTRIBUTION, ETC. |
|---|
| Place of publication, distribution, etc. |
Sebastopol, CA : |
| Name of publisher, distributor, etc. |
O'Reilly, |
| Date of publication, distribution, etc. |
2008. |
| 300 ## - PHYSICAL DESCRIPTION |
|---|
| Extent |
xxiii, 285 p. : |
| Other physical details |
ill. ; |
| Dimensions |
23 cm. |
| 500 ## - GENERAL NOTE |
|---|
| General note |
Includes index. |
| 505 0# - FORMATTED CONTENTS NOTE |
|---|
| Formatted contents note |
Introduction -- Installing Some Free Tools -- Basic Observation -- Web-Oriented Data Encoding -- Tampering with Input -- Automated Bulk Scanning -- Automating Specific Tasks with cURL -- Automating with LibWWWPerl -- Seeking Design Flaws -- Attacking AJAX -- Manipulating Sessions -- Multifaceted Tests -- Index. |
| 520 ## - SUMMARY, ETC. |
|---|
| Summary, etc. |
Among the tests you perform on web applications, security testing is perhaps the most important, yet it's often the most neglected. The recipes in the "Web Security Testing Cookbook" demonstrate how developers and testers can check for the most common web security issues, while conducting unit tests, regression tests, or exploratory tests. Unlike ad hoc security assessments, these recipes are repeatable, concise, and systematic-perfect for integrating into your regular test suite. Recipes cover the basics from observing messages between clients and servers to multi-phase tests that script the login and execution of web application features. By the end of the book, you'll be able to build tests pinpointed at Ajax functions, as well as large multi-step tests for the usual suspects: cross-site scripting and injection attacks. This book helps you: Obtain, install, and configure useful-and free-security testing tools Understand how your application communicates with users, so you can better simulate attacks in your tests Choose from many different methods that simulate common attacks such as SQL injection, cross-site scripting, and manipulating hidden form fields Make your tests repeatable by using the scripts and examples in the recipes as starting points for automated tests Don't live in dread of the midnight phone call telling you that your site has been hacked. With "Web Security Testing Cookbook" and the free tools used in the book's examples, you can incorporate security coverage into your test suite, and sleep in peace |
| 596 ## - |
|---|
| -- |
1 |
| 650 #0 - SUBJECT ADDED ENTRY--TOPICAL TERM |
|---|
| Topical term or geographic name entry element |
Web sites |
| General subdivision |
Security measures. |
| 9 (RLIN) |
7720 |
| 650 #0 - SUBJECT ADDED ENTRY--TOPICAL TERM |
|---|
| Topical term or geographic name entry element |
Computer software |
| General subdivision |
Validation. |
| 9 (RLIN) |
7721 |
| 700 1# - ADDED ENTRY--PERSONAL NAME |
|---|
| Personal name |
Walther, Ben. |
| 9 (RLIN) |
7722 |