By Tom Gallagher, Bryan Jeffries
Learn easy methods to imagine like an attacker—and determine capability safeguard concerns on your software program. during this crucial consultant, safety trying out specialists provide functional, hands-on suggestions and code samples that can assist you locate, classify, and examine defense insects ahead of your software program is released.
become aware of how to:
- Identify high-risk access issues and create try out situations
- Test consumers and servers for malicious request/response insects
- Use black field and white field techniques to aid display safeguard vulnerabilities
- Uncover spoofing concerns, together with id and person interface spoofing
- Detect insects which may reap the benefits of your program’s good judgment, comparable to SQL injection
- Test for XML, cleaning soap, and internet companies vulnerabilities
- Recognize details disclosure and susceptible permissions matters
- Identify the place attackers can at once control reminiscence
- Test with trade facts representations to discover canonicalization matters
- Expose COM and ActiveX repurposing assaults
PLUS—Get code samples and debugging instruments at the Web
Read or Download Hunting Security Bugs (Developer Reference) PDF
Similar Comptia books
Crucial talents for IT professionalsMike Meyers A+ advisor to notebook Lab guide, moment version positive aspects 40-plus lab workouts that problem you to resolve difficulties in response to practical case experiences and step by step situations that require severe pondering. you are going to additionally get post-lab statement questions that degree your figuring out of lab effects and key time period quizzes that aid construct vocabulary.
A textbook for rookies in safeguard. during this new first version, recognized writer Behrouz Forouzan makes use of his available writing kind and visible method of simplify the tricky techniques of cryptography and community safeguard. This version additionally presents an internet site that incorporates Powerpoint records in addition to teacher and scholars strategies manuals.
Linux Routers, moment variation indicates you precisely tips on how to lessen your charges and expand your community with Linux-based routing. you can find step by step assurance of software/hardware choice, configuration, administration, and troubleshooting for present day key internetworking functions, together with LANs, Internet/intranet/extranet routers, body Relay, VPNs, distant entry, and firewalls.
WebDAV: Next-Generation Collaborative net Authoring is the full advisor to Web-based dispensed Authoring and Versioning (WebDAV), the IETF commonplace for net authoring and vast sector collaboration. skilled implementer Lisa Dusseault covers WebDAV from bits at the twine as much as customized software implementation, demonstrating with large examples and strains from genuine consumers and servers.
Additional resources for Hunting Security Bugs (Developer Reference)