Mastering Modern Web Penetration Testing this are the best book for the web penetration
Mastering Modern Web Penetration Testing the art of conducting modern pen test attacks and techniques on your web application before committing to a hacker!
Web penetration testing is a growing, fast-moving and absolutely critical area in information security. This book carries out modern web application attacks and uses state-of-the-art hacking techniques with an extended knowledge of web application security.
We will cover web hacking techniques so that you can detect attack vectors during penetration tests. The book includes the latest technologies such as OAuth 2.0, Web API testing method and XML vectors used by hackers. Some less discussed attack vectors such as RPO (relative path overwrite), DOM clobbering, PHP object injection, and so on are included in this book.
We will explain various old school techniques such as XSS, CSRF, SQL Injection through in-depth SQL Spa and Reconnaissance at times.
Nowadays websites provide APIs to allow integration with third party applications, leading to a lot of attack surfaces, we test these APIs using real life examples.
This practical guide will be a great benefit and will help you design a completely secure application.
- This book covers the latest technologies such as Advance XSS, XSRF, SQL Injection, Web API testing, XML attack vectors, OAuth 2.0 Security, and more involved in today’s web applications
- Penetrate and secure your web application using various techniques
- Get this comprehensive reference guide that provides advanced tricks and tools of the trade for seasoned penetration testers
Table of contents