The Bottom Line
- Same established and respected style as the rest of the Hacking Exposed books
- Broad coverage from IIS to Apache and J2EE to ASP.NET
- Excellent checklists and techniques to protect your web servers from these attacks
- None
Description
- Describes how attackers gather information to identify weak spots and select a target
- Discusses various attacks from attacking the web servers, to web applications and web clients
- Case studies provide a great resource to help you pull the information together and understand it
- Checklists are provided to help you ensure you've covered all the bases to secure your web apps
Guide Review - Book Review: Hacking Exposed- Web Applications
Hacking Exposed- Web Applications: Web Application Security Secrets & Solutions by Joel Scambray and Mike Shema will show you what you need to know to protect your web servers. The authors explain how an attacker gathers information to identify target systems and seek out the vulnerabilities they can exploit to break in. They go into great detail to discuss the myriad of vulnerabilities on various platforms such as Apache, IIS, J2EE and more.
This book will help you understand just how much risk your web servers are exposed to- vulnerabilities within XML, cross-site scripting and other input validation attacks, SQL injection attacks and more. Thankfully, the authors go on to provide valuable information for how to guard against these attacks and ways to harden your web servers to protect them.
Anyone who administers a web server or develops web applications should read this book to understand the pitfalls and how to avoid them.
