Seven Deadliest Web Application Attacks by Mike ShemaSeven Deadliest Web Application Attacks by Mike Shema

Seven Deadliest Web Application Attacks

byMike ShemaEditorMike Shema

Paperback | March 17, 2010

Pricing and Purchase Info


Earn 188 plum® points

Prices and offers may vary in store


In stock online

Ships free on orders over $25

Not available in stores


Seven Deadliest Web Application Attackshighlights the vagaries of web security by discussing the seven deadliest vulnerabilities exploited by attackers. This book pinpoints the most dangerous hacks and exploits specific to web applications, laying out the anatomy of these attacks including how to make your system more secure. You will discover the best ways to defend against these vicious hacks with step-by-step instruction and learn techniques to make your computer and network impenetrable.

Each chapter presents examples of different attacks conducted against web sites. The methodology behind the attack is explored, showing its potential impact. The chapter then moves on to address possible countermeasures for different aspects of the attack. The book consists of seven chapters that cover the following: the most pervasive and easily exploited vulnerabilities in web sites and web browsers; Structured Query Language (SQL) injection attacks; mistakes of server administrators that expose the web site to attack; brute force attacks; and logic attacks. The ways in which malicious software malware has been growing as a threat on the Web are also considered.

This book is intended for information security professionals of all levels, as well as web application developers and recreational hackers.

  • Knowledge is power, find out about the most dominant attacks currently waging war on computers and networks globally
  • Discover the best ways to defend against these vicious attacks; step-by-step instruction shows you how
  • Institute countermeasures, don't be caught defenseless again, and learn techniques to make your computer and network impenetrable
Mike Shema develops web application security solutions at Qualys, Inc. His current work is focused on an automated web assessment service. Mike previously worked as a security consultant and trainer for Foundstone where he conducted information security assessments across a range of industries and technologies. His security background ...
Title:Seven Deadliest Web Application AttacksFormat:PaperbackDimensions:192 pages, 9.25 × 7.5 × 0.68 inPublished:March 17, 2010Publisher:Syngress PublishingLanguage:English

The following ISBNs are associated with this title:

ISBN - 10:1597495433

ISBN - 13:9781597495431


Table of Contents

Introduction Chapter 1. Cross-Site Scripting (XSS) Chapter 2. Cross-Site Request Forgery (CSRF) Chapter 3. SQL Injection Chapter 4. Server Misconfiguration and Predictable Pages Chapter 5. Breaking Authentication Schemes Chapter 6. Logic Attacks Chapter 7. Web of Distrust

Editorial Reviews

"The threats highlighted should be understood by web developers, administrators and general users alike. If you use the web in any way then this should be on your bookshelf. In addition to the detailing the threat Shema also provides countermeasures to minimise or remove the risk, but be warned; you may never look at a website the same way again." - Andrew Waite, Security Researcher, InfoSanity Research