The Web Application Hacker's Handbook: First Edition
by Marcus Pinto & Dafydd Stuttard
The first edition of The Web Application Hacker's Handbook established the standard methodology for web application penetration testing. Written by Dafydd Stuttard, the creator of Burp Suite, the book provides systematic approaches to discovering and exploiting every class of web vulnerability. It covers authentication flaws, session management weaknesses, access control bypasses, injection attacks (SQL, OS command, LDAP, XPath), cross-site scripting, cross-site request forgery, and logic flaws. The methodology walks through the complete assessment process from mapping the application and analyzing its functionality to testing each attack surface and exploiting discovered vulnerabilities. Despite being superseded by the second edition, the first edition remains valuable for its foundational treatment of web security concepts.
Available formats
Book Details
- Author
- Marcus Pinto & Dafydd Stuttard
- Year
- 2007
- Category
- Web Security
- ISBN
- 9780470170779
- Formats
- Paperback
Get This Book
Related Books
The Web Application Hacker's Handbook: Second Edition
Dafydd Stuttard & Marcus Pinto
Comprehensive updated guide to discovering and exploiting security flaws in web applications. By the creator of Burp Suite.
The Tangled Web: A Guide to Securing Modern Web Applications
Michael Zalewsi
Michal Zalewski's The Tangled Web provides a deep exploration of web browser security and the chaotic landscape of web standards that create security vulnerabilities. Rather than cataloging specific.