Hacking the Code: ASP.NET Web Application Security by Mark Burnett

Hacking the Code: ASP.NET Web Application Security



Download Hacking the Code: ASP.NET Web Application Security




Hacking the Code: ASP.NET Web Application Security Mark Burnett
Language: English
Page: 522
Format: djvu
ISBN: 1932266658, 9781932266658
Publisher: Syngress

Hacker Code will have over 400 pages of dedicated exploit, vulnerability, and tool code with corresponding instruction. Unlike other security and programming books that dedicate hundreds of pages to architecture and theory based flaws and exploits, HC1 will dive right into deep code analysis. Previously undisclosed security research in combination with superior programming techniques from Foundstone and other respected organizations will be included in both the Local and Remote Code sections of the book. The book will be accompanied with a FREE COMPANION CD containing both commented and uncommented versions of the source code examples presented throughout the book. In addition to the book source code, the CD will also contain a copy of the author-developed Hacker Code Library v1.0. The Hacker Code Library will include multiple attack classes and functions that can be utilized to quickly create security programs and scripts. These classes and functions will simplify exploit and vulnerability tool development to an extent never before possible with publicly available software. * Learn to quickly create security tools that ease the burden of software testing and network administration* Find out about key security issues regarding vulnerabilities, exploits, programming flaws, and secure code development * Discover the differences in numerous types of web-based attacks so that developers can create proper quality assurance testing procedures and tools* Learn to automate quality assurance, management, and development tasks and procedures for testing systems and applications* Learn to write complex Snort rules based solely upon traffic generated by network tools and exploits

From the Publisher

Are Your Web Applications Really Secure? This unique book walks you through the many threats to your web application code, from managing and authorizing users and encrypting private data to filtering user input and securing XML. For every defined threat, it provides a menu of solutions and coding considerations. And, it offers coding examples and a set of security policies for each of the corresponding threats. Know the threats to your applications:

* Develop secure password policies and how to securely manage user passwords in your web application.

* Establish a secure procedure for resetting lost or forgotten passwords and discover how to properly use secret questions in that process.

* Securely authenticate and authorize users, taking advantage of the advanced capabilities in ASP.NET

* Limit exposure to credential harvesting and brute force password attacks.

* Securely manage user sessions and learn how to create strong user authentication tokens.

* Work with the built-in state providers and securely implement view state in your forms.

* Make sense of the extensive encryption features in ASP.NET and employ symmetric and asymmetric encryption for sensitive data.

* Properly encrypt and store secrets to the registry, a file, or the protected store.

* Filter user input to prevent from SQL injection, directory traversal, cross-site scripting and other application-level attacks.

* Apply techniques such as pattern matching and data reflecting to control exposure to malicious input attacks.

* Configure honey drops to detect attacks on your web application

* Configure IIS and ASP.NET to constrain buffer overflow, denial of service, and other attacks.

* Write secure database access code.

* Secure databases and database drivers.

* Construct secure HTML markup to limit exposure to cross-site scripting and cross-site request forgery attacks.

* Use structured error handling to prevent failure conditions that open holes or reveal sensitive information. · Integrate XML encryption and apply XML digital signatures. Your Solutions Membership Gives You Access to: Comprehensive FAQ page that consolidates all of the key points of this book into an easy to search web page "From the Author" Forum where the authors post timely updates and links to related sites The complete code listings from the book These downloadable e-booklets: Stealing The Network: How to Own a Continent: Product of Fate: The Evolution of a Hacker Special Ops: Host and Network Security for Microsoft, Unix, and Oracle: Hacking Custom Web Applications CYA: Securing IIS: Configuring Advanced Web Server Security IT Ethics Handbook: Programmers and Analysts

MORE EBOOKS:







Tags: Hacking the Code: ASP.NET Web Application Security ebook pdf epub djvu mobi rar
Hacking the Code: ASP.NET Web Application Security pdf epub djvu free download
Download Hacking the Code: ASP.NET Web Application Security free ebook pdf epub
Hacking the Code: ASP.NET Web Application Security read online free book
Hacking the Code: ASP.NET Web Application Security cheap ebook for kindle and nook
Mark Burnett ebooks and audio books
Hacking the Code: ASP.NET Web Application Security download pdf epub rar rapidshare mediafire fileserve 4shared torrent depositfiles scribd