Description :
This book concisely identifies the types of attacks which are faced daily by Web 2.0 sites, and the authors give solid, practical advice on how to identify and mitigate these threats." --Max Kelly, CISSP, CIPP, CFCE, Senior Director of Security, Facebook.
Protect your Web 2.0 architecture against the latest wave of cybercrime using expert tactics from Internet security professionals. Hacking Exposed Web 2.0 shows how hackers perform reconnaissance, choose their entry point, and attack Web 2.0-based services, and reveals detailed countermeasures and defense techniques. You'll learn how to avoid injection and buffer overflow attacks, fix browser and plug-in flaws, and secure AJAX, Flash, and XML-driven applications. Real-world case studies illustrate social networking site weaknesses, cross-site attack methods, migration vulnerabilities, and IE7 shortcomings.
Indonesian :
Buku ini dengan ringkas menjelaskan bagaimana cara mengidentifikasi jenis serangan yang dihadapi setiap hari oleh situs Web 2.0 dan memitigasi ancaman "-. Max Kelly, CISSP, CIPP, CFCE, Senior Direktur Keamanan , Facebook.
Melindungi arsitektur Web 2.0 Anda terhadap gelombang terbaru cybercrime menggunakan taktik ahli dari profesional keamanan Internet. Hacking Exposed Web 2.0 menunjukkan bagaimana hacker melakukan pengintaian, memilih titik masuk mereka, dan serangan layanan Web 2.0-based, dan mengungkapkan penanggulangan rinci dan teknik pertahanan. Anda akan belajar bagaimana untuk menghindari injeksi dan serangan buffer overflow, memperbaiki browser dan plug-in kekurangan, dan aman AJAX, Flash, dan aplikasi XML-driven. studi kasus dunia nyata menggambarkan kelemahan situs jejaring sosial, metode serangan lintas-situs, kerentanan migrasi, dan IE7 kekurangan.
Image :
Size : 6.4 MB
Link Download :
Link Download :
ziddu, hotfile, rapidshare
English :
This book concisely identifies the types of attacks which are faced daily by Web 2.0 sites, and the authors give solid, practical advice on how to identify and mitigate these threats." --Max Kelly, CISSP, CIPP, CFCE, Senior Director of Security, Facebook.
Protect your Web 2.0 architecture against the latest wave of cybercrime using expert tactics from Internet security professionals. Hacking Exposed Web 2.0 shows how hackers perform reconnaissance, choose their entry point, and attack Web 2.0-based services, and reveals detailed countermeasures and defense techniques. You'll learn how to avoid injection and buffer overflow attacks, fix browser and plug-in flaws, and secure AJAX, Flash, and XML-driven applications. Real-world case studies illustrate social networking site weaknesses, cross-site attack methods, migration vulnerabilities, and IE7 shortcomings.
- Plug security holes in Web 2.0 implementations the proven Hacking Exposed way.
- Learn how hackers target and abuse vulnerable Web 2.0 applications, browsers, plug-ins, online databases, user inputs, and HTML forms.
- Prevent Web 2.0-based SQL, XPath, XQuery, LDAP, and command injection attacks.
- Circumvent XXE, directory traversal, and buffer overflow exploits.
- Learn XSS and Cross-Site Request Forgery methods attackers use to bypass browser security controls.
- Fix vulnerabilities in Outlook Express and Acrobat Reader add-ons.
- Use input validators and XML classes to reinforce ASP and .NET security.
- Eliminate unintentional exposures in ASP.NET AJAX (Atlas), Direct Web Remoting, Sajax, and GWT Web applications.
- Mitigate ActiveX security exposures using SiteLock, code signing, and secure controls.
- Find and fix Adobe Flash vulnerabilities and DNS rebinding attacks.
Indonesian :
Buku ini dengan ringkas menjelaskan bagaimana cara mengidentifikasi jenis serangan yang dihadapi setiap hari oleh situs Web 2.0 dan memitigasi ancaman "-. Max Kelly, CISSP, CIPP, CFCE, Senior Direktur Keamanan , Facebook.
Melindungi arsitektur Web 2.0 Anda terhadap gelombang terbaru cybercrime menggunakan taktik ahli dari profesional keamanan Internet. Hacking Exposed Web 2.0 menunjukkan bagaimana hacker melakukan pengintaian, memilih titik masuk mereka, dan serangan layanan Web 2.0-based, dan mengungkapkan penanggulangan rinci dan teknik pertahanan. Anda akan belajar bagaimana untuk menghindari injeksi dan serangan buffer overflow, memperbaiki browser dan plug-in kekurangan, dan aman AJAX, Flash, dan aplikasi XML-driven. studi kasus dunia nyata menggambarkan kelemahan situs jejaring sosial, metode serangan lintas-situs, kerentanan migrasi, dan IE7 kekurangan.
- Tutup lubang keamanan di Web 2.0 dengan mengimplementasi cara Hacking terbukti terkena.
- Pelajari bagaimana hacker target dan rentan penyalahgunaan aplikasi Web 2.0, browser, plug-in, database online, input pengguna, dan bentuk HTML.
- Mencegah serangan terhadap Web 2.0 berbasis SQL, XPath, XQuery, LDAP, dan perintah injeksi.
- Menghindari XXE, traversal direktori, dan buffer overflow exploits.
- Pelajari XSS dan Permintaan Cross-Site Pemalsuan metode penyerang gunakan untuk memotong kontrol keamanan browser.
- Perbaiki kerentanan di Outlook Express dan Acrobat Reader pengaya.
- Validator masukan Penggunaan dan kelas XML untuk memperkuat ASP dan keamanan NET.
- Menghilangkan disengaja eksposur di ASP.NET AJAX (Atlas), Direct Web Remoting, Sajax, dan Web aplikasi GWT.
- Mengurangi eksposur keamanan ActiveX menggunakan SiteLock, penandatanganan kode, dan aman kontrol.
- Find and fix Adobe Flash vulnerabilities and DNS rebinding attacks.
