Sale!

Web Security for Developers Real Threats Practical Defense 1st Edition by Malcolm Mcdonald ISBN 9781593279950 1593279957

Original price was: $50.00.Current price is: $25.00.

Web Security for Developers Real Threats Practical Defense 1st Edition Malcolm Mcdonald Digital Instant Download

Author(s): Malcolm McDonald
ISBN(s): 9781593279943, 9781593279950, 1593279949, 1593279957
Edition: 1
File Details: PDF, 2.54 MB
Year: 2020
Language: English
SKU: EB-22277500 Category: Tag:

Web Security for Developers Real Threats Practical Defense 1st Edition by Malcolm Mcdonald – Ebook PDF Instant Download/Delivery: 9781593279950 ,1593279957 
Full download Web Security for Developers Real Threats Practical Defense 1st Edition after payment

Product details:
ISBN 10: 1593279957 
ISBN 13: 9781593279950
Author: Malcolm Mcdonald

Website security made easy. This book covers the most common ways websites get hacked and how web developers can defend themselves. The world has changed. Today, every time you make a site live, you’re opening it up to attack. A first-time developer can easily be discouraged by the difficulties involved with properly securing a website. But have hope: an army of security researchers is out there discovering, documenting, and fixing security flaws. Thankfully, the tools you’ll need to secure your site are freely available and generally easy to use. Web Security for Developers will teach you how your websites are vulnerable to attack and how to protect them. Each chapter breaks down a major security vulnerability and explores a real-world attack, coupled with plenty of code to show you both the vulnerability and the fix. You’ll learn how to: Protect against SQL injection attacks, malicious JavaScript, and cross-site request forgery Add authentication and shape access control to protect accounts Lock down user accounts to prevent attacks that rely on guessing passwords, stealing sessions, or escalating privileges Implement encryption Manage vulnerabilities in legacy code Prevent information leaks that disclose vulnerabilities Mitigate advanced attacks like malvertising and denial-of-service As you get stronger at identifying and fixing vulnerabilities, you’ll learn to deploy disciplined, secure code and become a better programmer along the way.
 

Web Security for Developers Real Threats Practical Defense 1st Edition Table of contents:

1 LET’S HACK A WEBSITE

Software Exploits and the Dark Web

How to Hack a Website

Part I: The Basics

2 HOW THE INTERNET WORKS

The Internet Protocol Suite

Application Layer Protocols

Stateful Connections

Encryption

Summary

3 HOW BROWSERS WORK

Web Page Rendering

JavaScript

Before and After Rendering: Everything Else the Browser Does

Summary

4 HOW WEB SERVERS WORK

Static and Dynamic Resources

Static Resources

Dynamic Resources

Summary

5 HOW PROGRAMMERS WORK

Phase 1: Design and Analysis

Phase 2: Writing Code

Phase 3: Pre-Release Testing

Phase 4: The Release Process

Phase 5: Post-Release Testing and Observation

Dependency Management

Summary

Part II: The Threats

6 INJECTION ATTACKS

SQL Injection

Command Injection

Remote Code Execution

File Upload Vulnerabilities

Summary

7 CROSS-SITE SCRIPTING ATTACKS

Stored Cross-Site Scripting Attacks

Reflected Cross-Site Scripting Attacks

DOM-Based Cross-Site Scripting Attacks

Summary

8 CROSS-SITE REQUEST FORGERY ATTACKS

Anatomy of a CSRF Attack

Mitigation 1: Follow REST Principles

Mitigation 2: Implement Anti-CSRF Cookies

Mitigation 3: Use the SameSite Cookie Attribute

Bonus Mitigation: Require Reauthentication for Sensitive Actions

Summary

9 COMPROMISING AUTHENTICATION

Implementing Authentication

Mitigation 1: Use Third-Party Authentication

Mitigation 2: Integrate with Single Sign-On

Mitigation 3: Secure Your Own Authentication System

Summary

10 SESSION HIJACKING

How Sessions Work

How Attackers Hijack Sessions

Summary

11 PERMISSIONS

Privilege Escalation

Access Control

Directory Traversal

Summary

12 INFORMATION LEAKS

Mitigation 1: Disable Telltale Server Headers

Mitigation 2: Use Clean URLs

Mitigation 3: Use Generic Cookie Parameters

Mitigation 4: Disable Client-Side Error Reporting

Mitigation 5: Minify or Obfuscate Your JavaScript Files

Mitigation 6: Sanitize Your Client-Side Files

Stay on Top of Security Advisories

Summary

13 ENCRYPTION

Encryption in the Internet Protocol

Enabling HTTPS

Attacking HTTP (and HTTPS)

Summary

14 THIRD-PARTY CODE

Securing Dependencies

Securing Configuration

Securing the Services That You Use

Services as an Attack Vector

Summary

15 XML ATTACKS

The Uses of XML

Validating XML

XML Bombs

XML External Entity Attacks

Securing Your XML Parser

Other Considerations

Summary

16 DON’T BE AN ACCESSORY

Email Fraud

Disguising Malicious Links in Email

Clickjacking

Server-Side Request Forgery

Botnets

Summary

17 DENIAL-OF-SERVICE ATTACKS

Denial-of-Service Attack Types

Denial-of-Service Attack Mitigation

Summary

18 SUMMING UP

INDEX

People also search for Web Security for Developers Real Threats Practical Defense 1st Edition:

web security for developers pdf github

web security for developers book pdf download

web security for developers epub

web application security for developers

Tags:

Malcolm Mcdonald,Web Security,Developers,Real Threats,Practical Defense

You may also like…

Sale!
Neurotechnology in National Security and Defense Practical Considerations Neuroethical Concerns 1st Edition James Giordano (Editor)
Quick View

Medicine

Neurotechnology in National Security and Defense Practical Considerations Neuroethical Concerns 1st Edition James Giordano (Editor)

Original price was: $50.00.Current price is: $25.00.
Sale!
Ethereum for Web Developers: Learn to Build Web Applications on top of the Ethereum Blockchain Santiago Palladino
Quick View

Computers - Web Development

Ethereum for Web Developers: Learn to Build Web Applications on top of the Ethereum Blockchain Santiago Palladino

Original price was: $50.00.Current price is: $25.00.
Sale!
Scala for Java Developers A Practical Primer 1st Edition Toby Weston
Quick View

Computers

Scala for Java Developers A Practical Primer 1st Edition Toby Weston

Original price was: $50.00.Current price is: $25.00.
Sale!
Graphene for Defense and Security First Edition Andre U. Sokolnikov
Quick View

Engineering

Graphene for Defense and Security First Edition Andre U. Sokolnikov

Original price was: $50.00.Current price is: $25.00.
Sale!
Practical Node.js: Building Real-World Scalable Web Apps Azat Mardan
Quick View

Computers - Programming

Practical Node.js: Building Real-World Scalable Web Apps Azat Mardan

Original price was: $50.00.Current price is: $25.00.
Sale!
Web Security for Developers Real Threats Practical Defense 1st Edition by Malcolm Mcdonald ISBN 9781593279950 1593279957
Quick View

Business & Economics

Web Security for Developers Real Threats Practical Defense 1st Edition by Malcolm Mcdonald ISBN 9781593279950 1593279957

Original price was: $50.00.Current price is: $25.00.
Sale!
Marketing Plans How to prepare them how to profit from them 8th Edition Malcolm Mcdonald
Quick View

Business & Economics - Sales & Marketing

Marketing Plans How to prepare them how to profit from them 8th Edition Malcolm Mcdonald

Original price was: $50.00.Current price is: $25.00.
Sale!
JavaScript on Things: Hacking hardware for web developers Lyza Danger Gardner
Quick View

Computers - Web Development

JavaScript on Things: Hacking hardware for web developers Lyza Danger Gardner

Original price was: $50.00.Current price is: $25.00.
Sale!
Flexibility and real estate valuation under uncertainty a practical guide for developers David Geltner
Quick View

Business & Economics

Flexibility and real estate valuation under uncertainty a practical guide for developers David Geltner

Original price was: $50.00.Current price is: $25.00.