Browse Library
Sign In Start Free Trial
Close icon Search icon
Account
Browse Library Sign In Start Free Trial

Add to playlist

Create a Playlist

Modal Close icon
You need to login to use this feature.
  • Book Overview & Buying The Web Application Hacker's Handbook
  • Table Of Contents Toc
The Web Application Hacker's Handbook

The Web Application Hacker's Handbook

By : Dafydd Stuttard, Marcus Pinto
close
close
The Web Application Hacker's Handbook

The Web Application Hacker's Handbook

By: Dafydd Stuttard, Marcus Pinto

Overview of this book

Web applications are the front door to most organizations, exposing them to attacks that may disclose personal information, execute fraudulent transactions, or compromise ordinary users. This practical book has been completely updated and revised to discuss the latest step-by-step techniques for attacking and defending the range of ever-evolving web applications. Youíll explore the various new technologies employed in web applications that have appeared since the first edition and review the new attack techniques that have been developed, particularly in relation to the client side. The book starts with the current state of web application security and the trends that indicate how it is likely to evolve soon. Youíll examine the core security problem affecting web applications and the defence mechanisms that applications implement to address this problem, and youíll also explore the key technologies used in todayís web application. Next, youíll carry out tasks for breaking into web applications and for executing a comprehensive attack. As you progress, youíll learn to find vulnerabilities in an application's source code and review the tools that can help when you hack web applications. Youíll also study a detailed methodology for performing a comprehensive and deep attack against a specific target. By the end of this book, youíll be able to discover security flaws in web applications and how to deal with them.
Table of Contents (32 chapters)
close
close
close
Lock Free Chapter
1
Cover
Icon
Cover
2
Title
Icon
Title
3
Copyright
Icon
Copyright
4
About the Authors
Icon
About the Authors
5
About the Technical Editor
Icon
About the Technical Editor
6
MDSec: The Authors’ Company
Icon
MDSec: The Authors’ Company
7
Credits
Icon
Credits
8
Acknowledgments
Icon
Acknowledgments
9
Introduction
chevron up
Icon
Introduction
Icon
Overview of This Book
Icon
Who Should Read This Book
Icon
How This Book Is Organized
Icon
What's New in This Edition
Icon
Tools You Will Need
Icon
What's on the Website
Icon
Bring It On
10
Chapter 1: Web Application (In)security
Icon
Chapter 1: Web Application (In)security
Icon
The Evolution of Web Applications
Icon
Web Application Security
Icon
Summary
11
Chapter 2: Core Defense Mechanisms
Icon
Chapter 2: Core Defense Mechanisms
Icon
Handling User Access
Icon
Handling User Input
Icon
Handling Attackers
Icon
Managing the Application
Icon
Summary
Icon
Questions
12
Chapter 3: Web Application Technologies
Icon
Chapter 3: Web Application Technologies
Icon
The HTTP Protocol
Icon
Web Functionality
Icon
Encoding Schemes
Icon
Next Steps
Icon
Questions
13
Chapter 4: Mapping the Application
Icon
Chapter 4: Mapping the Application
Icon
Enumerating Content and Functionality
Icon
Analyzing the Application
Icon
Summary
Icon
Questions
14
Chapter 5: Bypassing Client-Side Controls
Icon
Chapter 5: Bypassing Client-Side Controls
Icon
Transmitting Data Via the Client
Icon
Capturing User Data: HTML Forms
Icon
Capturing User Data: Browser Extensions
Icon
Handling Client-Side Data Securely
Icon
Summary
Icon
Questions
15
Chapter 6: Attacking Authentication
Icon
Chapter 6: Attacking Authentication
Icon
Authentication Technologies
Icon
Design Flaws in Authentication Mechanisms
Icon
Implementation Flaws in Authentication
Icon
Securing Authentication
Icon
Summary
Icon
Questions
16
Chapter 7: Attacking Session Management
Icon
Chapter 7: Attacking Session Management
Icon
The Need for State
Icon
Weaknesses in Token Generation
Icon
Weaknesses in Session Token Handling
Icon
Securing Session Management
Icon
Summary
Icon
Questions
17
Chapter 8: Attacking Access Controls
Icon
Chapter 8: Attacking Access Controls
Icon
Common Vulnerabilities
Icon
Attacking Access Controls
Icon
Securing Access Controls
Icon
Summary
Icon
Questions
18
Chapter 9: Attacking Data Stores
Icon
Chapter 9: Attacking Data Stores
Icon
Injecting into Interpreted Contexts
Icon
Injecting into SQL
Icon
Injecting into NoSQL
Icon
Injecting into XPath
Icon
Injecting into LDAP
Icon
Summary
Icon
Questions
19
Chapter 10: Attacking Back-End Components
Icon
Chapter 10: Attacking Back-End Components
Icon
Injecting OS Commands
Icon
Manipulating File Paths
Icon
Injecting into XML Interpreters
Icon
Injecting into Back-end HTTP Requests
Icon
Injecting into Mail Services
Icon
Summary
Icon
Questions
20
Chapter 11: Attacking Application Logic
Icon
Chapter 11: Attacking Application Logic
Icon
The Nature of Logic Flaws
Icon
Real-World Logic Flaws
Icon
Avoiding Logic Flaws
Icon
Summary
Icon
Questions
21
Chapter 12: Attacking Users: Cross-Site Scripting
Icon
Chapter 12: Attacking Users: Cross-Site Scripting
Icon
Varieties of XSS
Icon
XSS Attacks in Action
Icon
Finding and Exploiting XSS Vulnerabilities
Icon
Preventing XSS Attacks
Icon
Summary
Icon
Questions
22
Chapter 13: Attacking Users: Other Techniques
Icon
Chapter 13: Attacking Users: Other Techniques
Icon
Inducing User Actions
Icon
Capturing Data Cross-Domain
Icon
The Same-Origin Policy Revisited
Icon
Other Client-Side Injection Attacks
Icon
Local Privacy Attacks
Icon
Attacking ActiveX Controls
Icon
Attacking the Browser
Icon
Summary
Icon
Questions
23
Chapter 14: Automating Customized Attacks
Icon
Chapter 14: Automating Customized Attacks
Icon
Uses for Customized Automation
Icon
Enumerating Valid Identifiers
Icon
Harvesting Useful Data
Icon
Fuzzing for Common Vulnerabilities
Icon
Putting It All Together: Burp Intruder
Icon
Barriers to Automation
Icon
Summary
Icon
Questions
24
Chapter 15: Exploiting Information Disclosure
Icon
Chapter 15: Exploiting Information Disclosure
Icon
Exploiting Error Messages
Icon
Gathering Published Information
Icon
Using Inference
Icon
Preventing Information Leakage
Icon
Summary
Icon
Questions
25
Chapter 16: Attacking Native Compiled Applications
Icon
Chapter 16: Attacking Native Compiled Applications
Icon
Buffer Overflow Vulnerabilities
Icon
Integer Vulnerabilities
Icon
Format String Vulnerabilities
Icon
Summary
Icon
Questions
26
Chapter 17: Attacking Application Architecture
Icon
Chapter 17: Attacking Application Architecture
Icon
Tiered Architectures
Icon
Shared Hosting and Application Service Providers
Icon
Summary
Icon
Questions
27
Chapter 18: Attacking the Application Server
Icon
Chapter 18: Attacking the Application Server
Icon
Vulnerable Server Configuration
Icon
Vulnerable Server Software
Icon
Web Application Firewalls
Icon
Summary
Icon
Questions
28
Chapter 19: Finding Vulnerabilities in Source Code
Icon
Chapter 19: Finding Vulnerabilities in Source Code
Icon
Approaches to Code Review
Icon
Signatures of Common Vulnerabilities
Icon
The Java Platform
Icon
ASP.NET
Icon
PHP
Icon
Perl
Icon
JavaScript
Icon
Database Code Components
Icon
Tools for Code Browsing
Icon
Summary
Icon
Questions
29
Chapter 20: A Web Application Hacker's Toolkit
Icon
Chapter 20: A Web Application Hacker's Toolkit
Icon
Web Browsers
Icon
Integrated Testing Suites
Icon
Standalone Vulnerability Scanners
Icon
Other Tools
Icon
Summary
30
Chapter 21: A Web Application Hacker's Methodology
Icon
Chapter 21: A Web Application Hacker's Methodology
Icon
General Guidelines
Icon
1 Map the Application's Content
Icon
2 Analyze the Application
Icon
3 Test Client-Side Controls
Icon
4 Test the Authentication Mechanism
Icon
5 Test the Session Management Mechanism
Icon
6 Test Access Controls
Icon
7 Test for Input-Based Vulnerabilities
Icon
8 Test for Function-Specific Input Vulnerabilities
Icon
9 Test for Logic Flaws
Icon
10 Test for Shared Hosting Vulnerabilities
Icon
11 Test for Application Server Vulnerabilities
Icon
12 Miscellaneous Checks
Icon
13 Follow Up Any Information Leakage
31
Index
Icon
Index
32
End User License Agreement
Icon
End User License Agreement

What's on the Website

The companion website for this book at http://mdsec.net/wahh, which you can also link to from www/wiley.com/go/webhacker2e, contains several resources that you will find useful in the course of mastering the techniques we describe and using them to attack actual applications. In particular, the website contains access to the following:

  • Source code for some of the scripts we present in the book
  • A list of current links to all the tools and other resources discussed in the book
  • A handy checklist of the tasks involved in attacking a typical application
  • Answers to the questions posed at the end of each chapter
  • Hundreds of interactive vulnerability labs that are used in examples throughout this book and that are available on a subscription basis to help you develop and refine your skills
CONTINUE READING
83
Tech Concepts
36
Programming languages
73
Tech Tools
Icon Unlimited access to the largest independent learning library in tech of over 8,000 expert-authored tech books and videos.
Icon Innovative learning tools, including AI book assistants, code context explainers, and text-to-speech.
Icon 50+ new titles added per month and exclusive early access to books as they are being written.
The Web Application Hacker's Handbook
End of Section 9
Next Section
notes
bookmark Notes and Bookmarks search Search in title playlist Add to playlist font-size Font size

Change the font size

margin-width Margin width

Change margin width

day-mode Day/Sepia/Night Modes

Change background colour

Close icon Search
Country selected
Close icon Your notes and bookmarks

Confirmation

Modal Close icon
claim successful
Order Page Read Now

Buy this book with your credits?

Modal Close icon
Are you sure you want to buy this book with one of your credits?
Close
YES, BUY

Submit Your Feedback

Modal Close icon
Modal Close icon
Modal Close icon