Wouldn't it be great if our testing processes kept us out of jail and reduced the risk for us and our customers? There is an exponentially growing body of laws at the national, provincial, state, and local levels in most countries. The many news stories we are all bombarded with make it clear that government bodies at all levels throughout the world are still trying to determine how to find the right balance of privacy, confidentiality, and accountability for cyber-security related events. It turns out that, in the vast majority of government bodies, those making the laws might be ill-suited to understand the complexities and form effective regulations. One Complication for us is the fact that we are very rarely operating in a single jurisdiction: interstate and international entanglements are perilous and dynamic. How can we save ourselves from...
Mastering Kali Linux for Web Penetration Testing
By :
Mastering Kali Linux for Web Penetration Testing
By:
Overview of this book
You will start by delving into some common web application architectures in use, both in private and public cloud instances. You will also learn about the most common frameworks for testing, such as OWASP OGT version 4, and how to use them to guide your efforts. In the next section, you will be introduced to web pentesting with core tools and you will also see how to make web applications more secure through rigorous penetration tests using advanced features in open source tools. The book will then show you how to better hone your web pentesting skills in safe environments that can ensure low-risk experimentation with the powerful tools and features in Kali Linux that go beyond a typical script-kiddie approach. After establishing how to test these powerful tools safely, you will understand how to better identify vulnerabilities, position and deploy exploits, compromise authentication and authorization, and test the resilience and exposure applications possess.
By the end of this book, you will be well-versed with the web service architecture to identify and evade various protection mechanisms that are used on the Web today. You will leave this book with a greater mastery of essential test techniques needed to verify the secure design, development, and operation of your customers' web applications.
Related Content you might be interested in
Current Title:
Mastering Kali Linux for Web Penetration Testing
Table of Contents (13 chapters)
Preface
Free Chapter
Common Web Applications and Architectures
Guidelines for Preparation and Testing
Stalking Prey Through Target Recon
Scanning for Vulnerabilities with Arachni
Proxy Operations with OWASP ZAP and Burp Suite
Infiltrating Sessions via Cross-Site Scripting
Injection and Overflow Testing
Exploiting Trust Through Cryptography Testing
Stress Testing Authentication and Session Management
Launching Client-Side Attacks
Breaking the Application Logic
Educating the Customer and Finishing Up
Customer Reviews