買這商品的人也買了...
-
Software Architecture : Organizational Principles and Patterns (Paperback)$2,650$2,518 -
$399Hacking Exposed: Network Security Secrets & Solutions, 3/e (Paperback) -
Exploiting Software : How to Break Code (Paperback)$2,275$2,161 -
Mastering FreeBSD and OpenBSD Security (Paperback)$2,120$2,014 -
Software Security: Building Security In (Paperback)$2,630$2,499 -
Hacking Exposed Web Applications, 2/e (Paperback)$1,930$1,834 -
Hacking Exposed Windows: Microsoft Windows Security Secrets and Solutions, 3/e (Paperback)$2,510$2,385 -
Exploiting Online Games: Cheating Massively Distributed Systems (Paperback)$1,730$1,644 -
Building a Server with FreeBSD 7$1,430$1,359 -
Software Security Engineering: A Guide for Project Managers (Paperback)$2,160$2,052 -
How We Test Software at Microsoft (Paperback)$1,880$1,786 -
$299The Art of Capacity Planning: Scaling Web Resources -
$600The iPhone Developer's Cookbook: Building Applications with the iPhone SDK (Paperback) -
Linux Device Driver Programming 驅動程式設計$690$587 -
Professional JavaScript for Web Developers, 2/e (Paperback)$1,930$1,834 -
Secrets of the JavaScript Ninja (Paperback)$1,590$1,511 -
Google Android SDK 開發範例大全$750$638 -
$613Even Faster Web Sites: Performance Best Practices for Web Developers (Paperback) -
$690Programming the Semantic Web (Paperback) -
$399Professional JavaScript Frameworks: Prototype,YUI, ExtJS, Dojo and MooTools (Paperback) -
$960Building Social Web Applications: Establishing Community at the Heart of Your Site (Paperback) -
$825Designing Social Interfaces: Principles, Patterns, and Practices for Improving the User Experience (Paperback) -
Web Application Obfuscation: '-/WAFs..Evasion..Filters//alert(/Obfuscation/)-' (Paperback)$2,050$1,948 -
$399Security Metrics, A Beginners Guide (Paperback) -
$1,320Hacking Exposed Mobile Security Secrets & Solutions (Paperback)
商品描述
Among the tests you perform on web applications, security testing is perhaps the most important, yet it's often the most neglected. The recipes in the Web Security Testing Cookbook demonstrate how developers and testers can check for the most common web security issues, while conducting unit tests, regression tests, or exploratory tests. Unlike ad hoc security assessments, these recipes are repeatable, concise, and systematic-perfect for integrating into your regular test suite.
Recipes cover the basics from observing messages between clients and servers to multi-phase tests that script the login and execution of web application features. By the end of the book, you'll be able to build tests pinpointed at Ajax functions, as well as large multi-step tests for the usual suspects: cross-site scripting and injection attacks. This book helps you:
- Obtain, install, and configure useful-and free-security testing tools
- Understand how your application communicates with users, so you can better simulate attacks in your tests
- Choose from many different methods that simulate common attacks such as SQL injection, cross-site scripting, and manipulating hidden form fields
- Make your tests repeatable by using the scripts and examples in the recipes as starting points for automated tests
Don't live in dread of the midnight phone call telling you that your site has been hacked. With Web Security Testing Cookbook and the free tools used in the book's examples, you can incorporate security coverage into your test suite, and sleep in peace.
商品描述(中文翻譯)
在您對網頁應用程式進行的測試中,安全測試或許是最重要的,但卻常常被忽視。《Web Security Testing Cookbook》中的食譜展示了開發人員和測試人員如何在進行單元測試、回歸測試或探索性測試時檢查最常見的網頁安全問題。與臨時的安全評估不同,這些食譜是可重複的、簡潔的和系統化的,非常適合整合到您的常規測試套件中。
食譜涵蓋了從觀察客戶端和伺服器之間的訊息到多階段測試,這些測試會腳本化登錄和執行網頁應用程式功能的基本知識。在本書結束時,您將能夠建立針對 Ajax 功能的測試,以及針對常見問題的多步驟大型測試:跨站腳本攻擊和注入攻擊。本書幫助您:
- 獲取、安裝和配置有用且免費的安全測試工具
- 了解您的應用程式如何與用戶通信,以便您能更好地在測試中模擬攻擊
- 從多種不同的方法中選擇,這些方法模擬常見攻擊,如 SQL 注入、跨站腳本攻擊和操控隱藏表單欄位
- 通過使用食譜中的腳本和範例作為自動化測試的起點,使您的測試可重複
不要再害怕午夜的電話告訴您您的網站被駭客入侵。透過《Web Security Testing Cookbook》及書中範例所使用的免費工具,您可以將安全覆蓋納入您的測試套件,安然入睡。
