XSS Exploits

Cross Site Scripting Attacks and Defense

Seth Fogie

544 pages, parution le 01/06/2007

Ajouter à une liste

Indisponible

Résumé

XSS Exploits - Cross Site Scripting Attacks and Defense starts by defining the terms and laying out the ground work. It assumes that the reader is familiar with basic web programming (HTML) and JavaScript. First it discusses the concepts, methodology, and technology that makes XSS a valid concern. It then moves into the various types of XSS attacks, how they are implemented, used, and abused. After XSS is thoroughly explored, the next part provides examples of XSS malware and demonstrates real cases where XSS is a dangerous risk that exposes internet users to remote access, sensitive data theft, and monetary losses. Finally, the book closes by examining the ways developers can avoid XSS vulnerabilities in their web applications, and how users can avoid becoming a victim. The audience is web developers, security practitioners, and managers.

XSS Vulnerabilities exist in 8 out of 10 Web sites
The authors of this book are the undisputed industry leading authorities
Contains independent, bleeding edge research, code listings and exploits that can not be found anywhere else

L'auteur - Seth Fogie

SETH FOGIE is currently Senior Security Consultant at VirusMD Corporation, where he moderates the firm's Internet Security Help forum. He served six years as a U.S. Navy Nuclear Engineer and earned his MCSE before becoming the Network Administrator for a large retail company.

Sommaire

Cross-site Scripting Fundamentals
The XSS Discovery Toolkit
XSS Theory
XSS Attack Methods
Advanced XSS Attack Vectors
XSS Exploited
Exploit Frameworks
XSS Worms
Preventing XSS Attacks
A. The Owned List

Voir tout

Replier

Caractéristiques techniques

	PAPIER
Éditeur(s)	Syngress
Auteur(s)	Seth Fogie
Parution	01/06/2007
Nb. de pages	544
Format	18 x 23
Couverture	Broché
Intérieur	Noir et Blanc
EAN13	9781597491549
ISBN13	978-1-59749-154-9