The Penetration Tester's Guide to Web Applications

Saved in:
Bibliographic Details
Title: The Penetration Tester's Guide to Web Applications
Description: This innovative new resource provides both professionals and aspiring professionals with clear guidance on how to identify and exploit common web application vulnerabilities. The book focuses on offensive security and how to attack web applications. It describes each of the Open Web Application Security Project (OWASP) top ten vulnerabilities, including broken authentication, cross-site scripting and insecure deserialization, and details how to identify and exploit each weakness. Readers learn to bridge the gap between high-risk vulnerabilities and exploiting flaws to get shell access. The book demonstrates how to work in a professional services space to produce quality and thorough testing results by detailing the requirements of providing a best-of-class penetration testing service. It offers insight into the problem of not knowing how to approach a web app pen test and the challenge of integrating a mature pen testing program into an organization. Based on the author's many years of first-hand experience, this book provides examples of how to break into user accounts, how to breach systems, and how to configure and wield penetration testing tools.
Authors: Borso, Serge
Resource Type: eBook.
Subjects: Penetration testing (Computer security), Computer security
Categories: COMPUTERS / Web / General, COMPUTERS / Software Development & Engineering / Quality Assurance & Testing
Database: eBook Collection (EBSCOhost)
FullText Links:
  – Type: ebook-pdf
Text:
  Availability: 0
Header DbId: nlebk
DbLabel: eBook Collection (EBSCOhost)
An: 2227829
RelevancyScore: 1090
AccessLevel: 6
PubType: eBook
PubTypeId: ebook
PreciseRelevancyScore: 1090.09973144531
IllustrationInfo
ImageInfo – Size: thumb
  Target: https://rps2images.ebscohost.com/rpsweb/othumb?id=NL$2227829$PDF&s=r
– Size: medium
  Target: https://rps2images.ebscohost.com/rpsweb/othumb?id=NL$2227829$PDF&s=d
Items – Name: Title
  Label: Title
  Group: Ti
  Data: The Penetration Tester's Guide to Web Applications
– Name: Abstract
  Label: Description
  Group: Ab
  Data: This innovative new resource provides both professionals and aspiring professionals with clear guidance on how to identify and exploit common web application vulnerabilities. The book focuses on offensive security and how to attack web applications. It describes each of the Open Web Application Security Project (OWASP) top ten vulnerabilities, including broken authentication, cross-site scripting and insecure deserialization, and details how to identify and exploit each weakness. Readers learn to bridge the gap between high-risk vulnerabilities and exploiting flaws to get shell access. The book demonstrates how to work in a professional services space to produce quality and thorough testing results by detailing the requirements of providing a best-of-class penetration testing service. It offers insight into the problem of not knowing how to approach a web app pen test and the challenge of integrating a mature pen testing program into an organization. Based on the author's many years of first-hand experience, this book provides examples of how to break into user accounts, how to breach systems, and how to configure and wield penetration testing tools.
– Name: Author
  Label: Authors
  Group: Au
  Data: <searchLink fieldCode="AR" term="%22Borso%2C+Serge%22">Borso, Serge</searchLink>
– Name: TypePub
  Label: Resource Type
  Group: TypPub
  Data: eBook.
– Name: Subject
  Label: Subjects
  Group: Su
  Data: <searchLink fieldCode="DE" term="%22Penetration+testing+%28Computer+security%29%22">Penetration testing (Computer security)</searchLink><br /><searchLink fieldCode="DE" term="%22Computer+security%22">Computer security</searchLink>
– Name: SubjectBISAC
  Label: Categories
  Group: Su
  Data: <searchLink fieldCode="ZK" term="%22COMPUTERS+%2F+Web+%2F+General%22">COMPUTERS / Web / General</searchLink><br /><searchLink fieldCode="ZK" term="%22COMPUTERS+%2F+Software+Development+%26+Engineering+%2F+Quality+Assurance+%26+Testing%22">COMPUTERS / Software Development & Engineering / Quality Assurance & Testing</searchLink>
PLink https://search.ebscohost.com/login.aspx?direct=true&site=eds-live&db=nlebk&AN=2227829
RecordInfo BibRecord:
  BibEntity:
    Classifications:
      – Code: 005.8
        Scheme: ddc
        Type: prePub
    Languages:
      – Code: eng
        Text: English
    Subjects:
      – SubjectFull: Penetration testing (Computer security)
        Type: general
      – SubjectFull: Computer security
        Type: general
    Titles:
      – TitleFull: The Penetration Tester's Guide to Web Applications
        Type: main
  BibRelationships:
    HasContributorRelationships:
      – PersonEntity:
          Name:
            NameFull: Borso, Serge
      – PersonEntity:
          Name:
            NameFull: Borso, Serge
    IsPartOfRelationships:
      – BibEntity:
          Dates:
            – D: 01
              M: 01
              Type: published
              Y: 2019
            – D: 31
              M: 12
              Type: profile
              Y: 2019
          Identifiers:
            – Type: isbn-print
              Value: 9781630816223
            – Type: isbn-electronic
              Value: 9781630816247
          Titles:
            – TitleFull: The Penetration Tester's Guide to Web Applications
              Type: main
ResultId 1