Input Validation Attacks -- Chapter 6, Hacking Exposed Web Applications, Second Edition

Input validation routines serve as a first line of defense for a Web application. Buffer overflow, directory traversal, cross-site scripting and SQL injection are just a few of the attacks that can result from improper data validation. This chapter will teach you how to validate your input to defend against these exploits.


As a registered member of SearchAppSecurity.com, you're entitled to a complimentary copy of Chapter 6 of Hacking Exposed Web Applications, Second Edition written by Joel Scambray, Mike Shema and Caleb Sima and published by The McGraw-Hill Companies Inc.

"Input Validation Attacks" will teach you input validation routines that serve as a first line of defense for a Web application. Buffer overflow, directory traversal, cross-site scripting and SQL injection are just a few of the attacks that can result from improper data validation. Learn how to defend your applications against these exploits.



Hacking Exposed Web Applications, Second Edition

Book description:
Defend against the latest Web-based attacks by looking at your Web applications through the eyes of a malicious intruder. Fully revised and updated to cover the latest Web exploitation techniques, Hacking Exposed Web Applications, Second Edition shows you, step-by-step, how cyber-criminals target vulnerable sites, gain access, steal critical data, and execute devastating attacks.

All of the cutting-edge threats and vulnerabilities are covered in full detail alongside real-world examples, case studies, and battle-tested countermeasures from the authors' experiences as gray hat security professionals.

This book delves into topics like profiling, authentication, authorization, XML Web services, Web clients, Denial-of-Service attacks and much more.

>> Read Chapter 6: Input Validation Attacks.

>> Buy the book





This was last published in July 2006

Dig Deeper on Building security into the SDLC (Software development life cycle)

PRO+

Content

Find more PRO+ content and other member only offers, here.

Start the conversation

Send me notifications when other members comment.

By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Please create a username to comment.

-ADS BY GOOGLE

SearchSOA

TheServerSide

SearchCloudApplications

SearchAWS

SearchBusinessAnalytics

SearchFinancialApplications

SearchHealthIT

Close