"Get to know the hackers-or plan on getting hacked. Sullivan and Liu have created a savvy, essentials-based approach to web app security packed with immediately applicable tools for any information security practitioner sharpening his or her tools or just starting out." -Ryan McGeehan, Security Manager, Facebook, Inc.
Secure web applications from today's most devious hackers. Web Application Security: A Beginner's Guide helps you stock your security toolkit, prevent common hacks, and defend quickly against malicious attacks.
This practical resource includes chapters on authentication, authorization, and session management, along with browser, database, and file security--all supported by true stories from industry. You'll also get best practices for vulnerability detection and secure development, as well as a chapter that covers essential security fundamentals. This book's templates, checklists, and examples are designed to help you get started right away.
Web Application Security: A Beginner's Guide features:
Vincent Liu, CISSP, is a managing partner at Stach & Liu. He previously led the Attack & Penetration and Reverse Engineering teams for Honeywell's Global Security group and was an analyst at the National Security Agency. Vincent speaks at industry conferences, including Black Hat, ToorCon, and Microsoft's BlueHat. He is a co-author of Hacking Exposed Web Applications, Third Edition and Hacking Exposed Wireless, Second Edition. Bryan Sullivan, Senior Security Researcher at Adobe Systems, was previously Security Program Manager at Microsoft and a development manager at HP, where he helped to design HP's vulnerability scanning tools WebInspect and DevInspect. Bryan speaks at industry conferences such as Black Hat, RSA, BlueHat and TechEd.