Web Security Testing Cookbook
Among the tests you perform on web applications, security testing is perhaps the most important, yet it's often the most neglected. The recipes in the Web Security Testing Cookbook demonstrate how developers and testers can check for the most common web security issues, while conducting unit tests, regression tests, or exploratory tests. Unlike ad hoc security assessments, these recipes are repeatable, concise, and systematic-perfect for integrating into your regular test suite
1 online resource (320 pages)
9780596554033, 0596554036
609840997
Web Security Testing Cookbook; Preface; Leveraging Free Tools; About the Cover; Organization; Section Two: Testing Techniques; Section Three: Advanced Techniques; Conventions Used in This Book; Conventions in Examples; Using Code Examples; Safari® Books Online; Comments and Questions; Acknowledgments; Ben Walther; Our Reviewers; O'Reilly; 1. Introduction; Fulfilling Requirements; Security Testing Is More of the Same; Equivalence classes; Security classes; What Are Web Applications?; Fundamentals of HTTP; HTTP is stateless; HTTP is simple text; Web Application Fundamentals. Web Application StructuresOne-layer web applications; Two-layer web applications; Three-layer web applications; The effect of layers on testing; Web App Security Testing; It's About the How; How, Not What; How, Not Where; How, Not Who; How, Not When; Software Security, Not IT Security; 2. Installing Some Free Tools; Solution; Discussion; Installing Firefox Extensions; Solution; Discussion; Installing Firebug; Solution; Discussion; Installing OWASP's WebScarab