Hands-on Penetration Testing for Web Applications - 2nd Edition Richa Gupta
(ebook)
(audiobook)
(audiobook)
- Autor:
- Richa Gupta
- Wydawnictwo:
- BPB Publications
- Ocena:
- Stron:
- 334
- Dostępne formaty:
-
ePubMobi
Opis
książki
:
Hands-on Penetration Testing for Web Applications - 2nd Edition
Description
Hands-on Penetration Testing for Web Applications offers readers with the knowledge and skillset to identify, exploit, and control the security vulnerabilities present in commercial web applications, including online banking, mobile payments, and e-commerce applications.
Covering a diverse array of topics, this book provides a comprehensive overview of web application security testing methodologies. Each chapter offers key insights and practical applications that align with the objectives of the course. Students will explore critical areas such as vulnerability identification, penetration testing techniques, using open-source pen test management and reporting tools, testing applications hosted on cloud, and automated security testing tools. Throughout the book, readers will encounter essential concepts and tools such as OWASP Top 10 vulnerabilities, SQL injection, cross-site scripting (XSS), authentication and authorization testing, and secure configuration practices. With a focus on real-world applications, students will develop critical thinking skills, problem-solving abilities, and a security-first mindset required to address the challenges of modern web application threats.
With a deep understanding of security vulnerabilities and testing solutions, students will have the confidence to explore new opportunities, drive innovation, and make informed decisions in the rapidly evolving field of cybersecurity. Key Features
Exciting coverage on vulnerabilities and security loopholes in modern web applications.
Practical exercises and case scenarios on performing pen testing and identifying security breaches.
This new edition brings enhanced cloud security coverage and comprehensive penetration test management using AttackForge for streamlined vulnerability, documentation, and remediation. What you will learn
Navigate the complexities of web application security testing.
An overview of the modern application vulnerabilities, detection techniques, tools, and web penetration testing methodology framework.
Contribute meaningfully to safeguarding digital systems.
Address the challenges of modern web application threats.
This edition includes testing modern web applications with emerging trends like DevSecOps, API security, and cloud hosting.
This edition brings DevSecOps implementation using automated security approaches for continuous vulnerability remediation. Who this book is for
The target audience for this book includes students, security enthusiasts, penetration testers, and web application developers. Individuals who are new to security testing will be able to build an understanding about testing concepts and find this book useful. People will be able to gain expert knowledge on pentesting tools and concepts. Table of Contents
1. Introduction to Security Threats
2. Web Application Security Essentials
3. Web Pentesting Methodology
4. Testing Authentication Failures
5. Testing Secure Session Management
6. Testing Broken Access Control
7. Testing Sensitive Data Exposure
8. Testing Secure Data Validation
9. Techniques to Attack Application Users
10. Testing Security Misconfigurations
11. Automating Security Attacks
12. Penetration Testing Tools
13. Pen Test Management and Reporting
14. Defense In Depth
15. Security Testing in Cloud
Hands-on Penetration Testing for Web Applications offers readers with the knowledge and skillset to identify, exploit, and control the security vulnerabilities present in commercial web applications, including online banking, mobile payments, and e-commerce applications.
Covering a diverse array of topics, this book provides a comprehensive overview of web application security testing methodologies. Each chapter offers key insights and practical applications that align with the objectives of the course. Students will explore critical areas such as vulnerability identification, penetration testing techniques, using open-source pen test management and reporting tools, testing applications hosted on cloud, and automated security testing tools. Throughout the book, readers will encounter essential concepts and tools such as OWASP Top 10 vulnerabilities, SQL injection, cross-site scripting (XSS), authentication and authorization testing, and secure configuration practices. With a focus on real-world applications, students will develop critical thinking skills, problem-solving abilities, and a security-first mindset required to address the challenges of modern web application threats.
With a deep understanding of security vulnerabilities and testing solutions, students will have the confidence to explore new opportunities, drive innovation, and make informed decisions in the rapidly evolving field of cybersecurity. Key Features
Exciting coverage on vulnerabilities and security loopholes in modern web applications.
Practical exercises and case scenarios on performing pen testing and identifying security breaches.
This new edition brings enhanced cloud security coverage and comprehensive penetration test management using AttackForge for streamlined vulnerability, documentation, and remediation. What you will learn
Navigate the complexities of web application security testing.
An overview of the modern application vulnerabilities, detection techniques, tools, and web penetration testing methodology framework.
Contribute meaningfully to safeguarding digital systems.
Address the challenges of modern web application threats.
This edition includes testing modern web applications with emerging trends like DevSecOps, API security, and cloud hosting.
This edition brings DevSecOps implementation using automated security approaches for continuous vulnerability remediation. Who this book is for
The target audience for this book includes students, security enthusiasts, penetration testers, and web application developers. Individuals who are new to security testing will be able to build an understanding about testing concepts and find this book useful. People will be able to gain expert knowledge on pentesting tools and concepts. Table of Contents
1. Introduction to Security Threats
2. Web Application Security Essentials
3. Web Pentesting Methodology
4. Testing Authentication Failures
5. Testing Secure Session Management
6. Testing Broken Access Control
7. Testing Sensitive Data Exposure
8. Testing Secure Data Validation
9. Techniques to Attack Application Users
10. Testing Security Misconfigurations
11. Automating Security Attacks
12. Penetration Testing Tools
13. Pen Test Management and Reporting
14. Defense In Depth
15. Security Testing in Cloud
Wybrane bestsellery
-
Learn how to build an end-to-end Web application security testing framework Description Hands-on Penetration Testing for Web Applications offers readers with knowledge and skillset to identify, exploit and control the security vulnerabilities present in commercial web applications including online banking, mobile payments and e-commerce application-
- ePub + Mobi pkt
(71,91 zł najniższa cena z 30 dni)
39.26 zł
79.89 zł (-51%) -
Szczegóły książki
- ISBN Ebooka:
- 978-93-658-9703-6, 9789365897036
- Data wydania ebooka :
-
2025-03-14
Data wydania ebooka często jest dniem wprowadzenia tytułu do sprzedaży i może nie być równoznaczna
z datą wydania książki papierowej. Dodatkowe informacje możesz znaleźć w darmowym fragmencie.
Jeśli masz wątpliwości skontaktuj się z nami sklep@helion.pl.
- Język publikacji:
- angielski
- Rozmiar pliku ePub:
- 17.7MB
- Rozmiar pliku Mobi:
- 17.7MB
- Zgłoś erratę
- Kategorie:
Hacking
Hacking » Bezpieczeństwo sieci
Hacking » Kryptografia
Sieci komputerowe » Protokoły
BPB Publications - inne książki
-
Description Microsoft 365 Copilot is revolutionizing workplace productivity by integrating powerful AI directly into applications. Copilot is on track to be one of the most successful solutions of Microsoft, by expanding the capabilities of those who have it and giving a competitive edge to users who have not yet begun their generative AI journey.-
- ePub + Mobi pkt
(85,49 zł najniższa cena z 30 dni)
89.91 zł
99.90 zł (-10%) -
-
Description In todays data-driven world, mastering data engineering is crucial for anyone looking to build robust data pipelines and extract valuable insights. This book simplifies complex concepts and provides a clear pathway to understanding the core principles that power modern data solutions. It bridges the gap between raw data and actionable i-
- ePub + Mobi pkt
(85,49 zł najniższa cena z 30 dni)
89.91 zł
99.90 zł (-10%) -
-
Description Effective design, from physical to digital systems, continually evolves, demanding strategic approaches to create useful, usable, and accessible products. This guide empowers readers to grasp modern UX, and develop user-centric solutions in today's dynamic digital landscape. By exploring foundational concepts and advanced techniques, re-
- ePub + Mobi pkt
(85,49 zł najniższa cena z 30 dni)
89.91 zł
99.90 zł (-10%) -
-
Description Designing a scalable Unity project requires more than just codingit demands thoughtful planning, structured architecture, and adherence to best practices. This book is your ultimate guide to building modular and maintainable Unity projects using C# and proven game architecture techniques. This book provides the tools and knowledge you n-
- ePub + Mobi pkt
(85,49 zł najniższa cena z 30 dni)
89.91 zł
99.90 zł (-10%) -
-
Description Generative AI is revolutionizing how we interact with technology, empowering us to create everything from compelling text to intricate code. This book is your practical guide to harnessing the power of open-source libraries, enabling you to build cutting-edge generative AI applications without needing extensive prior experience. In this-
- ePub + Mobi pkt
(85,49 zł najniższa cena z 30 dni)
89.91 zł
99.90 zł (-10%) -
-
Description Information security leadership demands a holistic understanding of governance, risk, and technical implementation. This book is your roadmap to mastering information security leadership and achieving the coveted EC-Council CCISO certification. This book bridges the gap between technical expertise and executive management, equipping you-
- ePub + Mobi pkt
(85,49 zł najniższa cena z 30 dni)
89.91 zł
99.90 zł (-10%) -
-
Description Architecting ASP.NET Core Applications aims to be a reference guide for building modern, reliable, and scalable web applications. This book guides you from foundational concepts to advanced techniques, ensuring a solid understanding of ASP.NET Core's architecture and capabilities. This book provides a practical guide to mastering ASP.NE-
- ePub + Mobi pkt
(85,49 zł najniższa cena z 30 dni)
89.91 zł
99.90 zł (-10%) -
-
Description Python has emerged as a powerhouse for DevOps, enabling efficient automation across various stages of software development and deployment. This book bridges the gap between Python programming and DevOps practices, providing a practical guide for automating infrastructure, workflows, and processes, empowering you to streamline your devel-
- ePub + Mobi pkt
(85,49 zł najniższa cena z 30 dni)
89.91 zł
99.90 zł (-10%) -
-
Description The rapid evolution of AI, especially generative AI, presents both opportunities and critical challenges. This book addresses the urgent need for responsible AI development, focusing on safety, alignment, and robust governance. We explore how to navigate the complexities of AI, ensuring its benefits are harnessed while mitigating potent-
- ePub + Mobi pkt
(85,49 zł najniższa cena z 30 dni)
89.91 zł
99.90 zł (-10%) -
Dzięki opcji "Druk na żądanie" do sprzedaży wracają tytuły Grupy Helion, które cieszyły sie dużym zainteresowaniem, a których nakład został wyprzedany.
Dla naszych Czytelników wydrukowaliśmy dodatkową pulę egzemplarzy w technice druku cyfrowego.
Co powinieneś wiedzieć o usłudze "Druk na żądanie":
- usługa obejmuje tylko widoczną poniżej listę tytułów, którą na bieżąco aktualizujemy;
- cena książki może być wyższa od początkowej ceny detalicznej, co jest spowodowane kosztami druku cyfrowego (wyższymi niż koszty tradycyjnego druku offsetowego). Obowiązująca cena jest zawsze podawana na stronie WWW książki;
- zawartość książki wraz z dodatkami (płyta CD, DVD) odpowiada jej pierwotnemu wydaniu i jest w pełni komplementarna;
- usługa nie obejmuje książek w kolorze.
Masz pytanie o konkretny tytuł? Napisz do nas: sklep@helion.pl
Proszę wybrać ocenę!
Proszę wpisać opinię!
Książka drukowana
Proszę czekać...
Oceny i opinie klientów: Hands-on Penetration Testing for Web Applications - 2nd Edition Richa Gupta
(0)