As a registered member of SearchAppSecurity.com, you're entitled to a complimentary copy of Chapter 6 of Hacking Exposed Web Applications, Second Edition written by Joel Scambray, Mike Shema and Caleb Sima and published by The McGraw-Hill Companies Inc.
"Input Validation Attacks" will teach you input validation routines that serve as a first line of defense for a Web application. Buffer overflow, directory traversal, cross-site scripting and SQL injection are just a few of the attacks that can result from improper data validation. Learn how to defend your applications against these exploits.
Defend against the latest Web-based attacks by looking at your Web applications through the eyes of a malicious intruder. Fully revised and updated to cover the latest Web exploitation techniques, Hacking Exposed Web Applications, Second Edition shows you, step-by-step, how cyber-criminals target vulnerable sites, gain access, steal critical data, and execute devastating attacks.
All of the cutting-edge threats and vulnerabilities are covered in full detail alongside real-world examples, case studies, and battle-tested countermeasures from the authors' experiences as gray hat security professionals.
This book delves into topics like profiling, authentication, authorization, XML Web services, Web clients, Denial-of-Service attacks and much more.
>> Buy the book
Dig Deeper on Building security into the SDLC (Software development life cycle)