The Web Application Hacker's Handbook azw3 chm 地址 kindle 阿里云 下载 umd pdf

This book is a practical guide to discovering and exploiting security flaws in web applications. The authors explain each category of vulnerability using real-world examples, screen shots and code extracts. The book is extremely practical in focus, and describes in detail the steps involved in detecting and exploiting each kind of security weakness found within a variety of applications such as online banking, e-commerce and other web applications.

The topics covered include bypassing login mechanisms, injecting code, exploiting logic flaws and compromising other users. Because every web application is different, attacking them entails bringing to bear various general principles, techniques and experience in an imaginative way. The most successful hackers go beyond this, and find ways to automate their bespoke attacks. This handbook describes a proven methodology that combines the virtues of human intelligence and computerized brute force, often with devastating results.

The authors are professional penetration testers who have been involved in web application security for nearly a decade. They have presented training courses at the Black Hat security conferences throughout the world. Under the alias "PortSwigger", Dafydd developed the popular Burp Suite of web application hack tools.

暂无相关目录，正在全力查找中！

暂无相关内容，正在全力查找中

暂无出版社相关信息，正在全力查找中！

暂无相关书籍摘录，正在全力查找中！

在线阅读地址：The Web Application Hacker's Handbook在线阅读

在线听书地址：The Web Application Hacker's Handbook在线收听

在线购买地址：The Web Application Hacker's Handbook在线购买

应用程序必须假设所有输入的信息都是恶意的输入，并必须采取措施确保攻击者无法使用专门设计的输入破坏应用程序，

任何设计安全应用程序的开发人员必须基于这样一个假设：应用程序将成为意志坚定且经验丰富的攻击者的直接攻击目标。

如果可能，最好避免清除某些不良输入的做法，完全拒绝这种类型的输入。

这里是介绍

大多数Web应用程序使用三层相互关联的安全机制处理用户访问： 身份验证； 会话管理； 访问控制。

令牌是一个唯一的字符串，应用程序将其映射到会话中。当用户收到一个令牌时，浏览器会在随后的HTTP请求中将它返回给服务器，帮助应用程序将请求与该用户联系起来。虽然许多应用程序使用隐藏表单字段（hidden form field）或URL查询字符串（query string）传送会话令牌（session token），但HTTP cookie才是实现这一目的的常规方法。如果用户在一段时间内没有发出请求，会话将会自动终止，如图2-2所示。

会话管理机制中存在的漏洞主要分为两类： 会话令牌生成过程中的薄弱环节； 在整个生命周期过程中处理会话令牌的薄弱环节。

渗透测试步骤 （1）如果应用程序使用HTTP验证，它可能并不执行会话管理机制。使用前面描述的方法分析任何可能是令牌的数据的作用。 （2）如果应用程序使用无会话状态机制，通过客户端传送所有必要数据进行状态维护，有时我们可能很难检测出这种机制，但如果发现下列迹象，即可确定应用程序使用这种机制。 向客户端发布的可能令牌的数据相当长（如100 B或超过100 B）。 应用程序对每个请求做出响应，发布一个新的类似令牌的数据。 数据似乎被加密（因此无法辨别其结构）或包含签名（由有意义的结构和几个字节的无意义二进制数据组成）。 应用程序拒绝通过多个请求提交相同数据的做法。 （3）如果相关证据明确表明应用程序并未使用会话令牌管理状态，那么本章描述的任何攻击都不可能达到其目的。因此，最好着手去寻找其他严重的漏洞，如访问控制不完善或代码注入。

书籍介绍

This book is a practical guide to discovering and exploiting security flaws in web applications. The authors explain each category of vulnerability using real-world examples, screen shots and code extracts. The book is extremely practical in focus, and describes in detail the steps involved in detecting and exploiting each kind of security weakness found within a variety of applications such as online banking, e-commerce and other web applications.

The topics covered include bypassing login mechanisms, injecting code, exploiting logic flaws and compromising other users. Because every web application is different, attacking them entails bringing to bear various general principles, techniques and experience in an imaginative way. The most successful hackers go beyond this, and find ways to automate their bespoke attacks. This handbook describes a proven methodology that combines the virtues of human intelligence and computerized brute force, often with devastating results.

The authors are professional penetration testers who have been involved in web application security for nearly a decade. They have presented training courses at the Black Hat security conferences throughout the world. Under the alias "PortSwigger", Dafydd developed the popular Burp Suite of web application hack tools.