Testing and Securing Web Applications
Autor Ravi Das, Greg Johnsonen Limba Engleză Paperback – 4 aug 2020
The primary objective of this book is to address those specific areas that require testing before a web app can be considered to be completely secure. The book specifically examines five key areas:
- Network security: This encompasses the various network components that are involved in order for the end user to access the particular web app from the server where it is stored at to where it is being transmitted to, whether it is a physical computer itself or a wireless device (such as a smartphone).
- Cryptography: This area includes not only securing the lines of network communications between the server upon which the web app is stored at and from where it is accessed from but also ensuring that all personally identifiable information (PII) that is stored remains in a ciphertext format and that its integrity remains intact while in transmission.
- Penetration testing: This involves literally breaking apart a Web app from the external environment and going inside of it, in order to discover all weaknesses and vulnerabilities and making sure that they are patched before the actual Web app is launched into a production state of operation.
- Threat hunting: This uses both skilled analysts and tools on the Web app and supporting infrastructure to continuously monitor the environment to find all security holes and gaps.
- The Dark Web: This is that part of the Internet that is not openly visible to the public. As its name implies, this is the "sinister" part of the Internet, and in fact, where much of the PII that is hijacked from a web app cyberattack is sold to other cyberattackers in order to launch more covert and damaging threats to a potential victim.
Preț: 441.00 lei
Preț vechi: 551.25 lei
-20%
Puncte Express: 662
Carte tipărită la comandă
Livrare economică 07-21 iulie
Specificații
ISBN-13: 9780367333751
ISBN-10: 0367333759
Pagini: 224
Ilustrații: 25
Dimensiuni: 156 x 234 x 15 mm
Greutate: 0.32 kg
Ediția:1
Editura: CRC Press
Colecția Auerbach Publications
ISBN-10: 0367333759
Pagini: 224
Ilustrații: 25
Dimensiuni: 156 x 234 x 15 mm
Greutate: 0.32 kg
Ediția:1
Editura: CRC Press
Colecția Auerbach Publications
V-ar putea interesa
-
-20%Preț: 72.66 lei90.83 lei -
Systematic Security: A CISO’s PlaybookTimur Qader-20%Preț: 342.82 lei428.53 leiRecomandat -
The Web Application Hacker's HandbookDafydd Stuttard-20%Preț: 289.54 lei361.93 lei -
Advanced Penetration TestingWil Allsopp-20%Preț: 243.84 lei304.81 lei -
Cryptography ApocalypseRoger A. Grimes-20%Preț: 172.63 lei215.78 lei -
Alice and Bob Learn Application SecurityTanya Janca-20%Preț: 244.36 lei305.44 lei -
CompTIA Security+ Review Guide - Exam SY0-601James Michael StewartPreț: 195.23 lei -
CEH v11 Certified Ethical Hacker Study GuideRic MessierPreț: 289.72 lei -
-20%Preț: 263.35 lei329.18 lei -
Stallings, W: Cryptography and Network Security: PrinciplesWilliam Stallings-20%Preț: 640.17 lei800.21 lei -
-20%Preț: 347.52 lei434.40 lei -
-20%Preț: 294.86 lei368.58 lei -
Penetration TestingGeorgia Weidman-36%Preț: 243.43 lei379.11 lei -
Real-World Bug Hunting: A Field Guide to Web HackingPeter Yaworski-20%Preț: 198.17 lei247.71 lei -
Web Security for Developers: Real Threats, Practical DefenseMalcolm Mcdonald-41%Preț: 137.00 lei230.69 lei -
Testing Web APIsMark Winteringham-20%Preț: 371.00 lei463.75 lei -
Grokking Web Application SecurityMalcolm McDonald-20%Preț: 323.02 lei403.77 lei -
-37%Preț: 287.91 lei457.03 lei -
Serious Cryptography, 2nd Edition: A Practical Introduction to Modern EncryptionJean-Philippe Aumasson-20%Preț: 286.54 lei358.17 lei -
Cybersecurity EssentialsKodi A. Cochran-20%Preț: 265.48 lei331.85 lei
Public țintă
Professional Practice & DevelopmentCuprins
1. Network Security. 2. Cryptography. 3. Penetration Testing. 4. Threat Hunting. 5. Conclusions.
Notă biografică
Ravi Das is a Business Development Specialist for The AST Cybersecurity Group, Inc., a leading Cybersecurity content firm located in the Greater Chicago area. Ravi holds a Master of Science of Degree in Agribusiness Economics (Thesis in International Trade), and Master of Business Administration in Management Information Systems. He has authored five books, with two forthcoming ones on artificial intelligence in cybersecurity, and cybersecurity risk and its impact on cybersecurity insurance policies.
Greg Johnson is the CEO of the penetration test company, Webcheck Security. Greg started Webcheck Security after serving on several executive teams and a long sales and management career with technology companies such as WordPerfect/Novell, SecurityMetrics, A-LIGN, and Secuvant Security. A Brigham Young University graduate, Greg began his career in the days of 64k, 5.25" floppy drives and Mac 128k’s. As the industry evolved, Greg moved into the cyber arena and provided his clients with solutions surrounding compliance, digital forensics, data breach and response, and in 2016 earned the PCI Professional (PCIP) designation. In several business development roles, Greg consulted, guided and educated clients in compliance guidelines and certifications for standards including PCI, HIPAA, ISO 27001, NIST, SOC 1 and SOC 2, GDPR/CCPA, and FedRAMP.
When he is not providing cyber solutions for his clients, he can be found spending time with his wife Kelly, playing with his grandchildren, or rehearsing or performing with the world-renowned Tabernacle Choir on Temple Square.
Greg Johnson is the CEO of the penetration test company, Webcheck Security. Greg started Webcheck Security after serving on several executive teams and a long sales and management career with technology companies such as WordPerfect/Novell, SecurityMetrics, A-LIGN, and Secuvant Security. A Brigham Young University graduate, Greg began his career in the days of 64k, 5.25" floppy drives and Mac 128k’s. As the industry evolved, Greg moved into the cyber arena and provided his clients with solutions surrounding compliance, digital forensics, data breach and response, and in 2016 earned the PCI Professional (PCIP) designation. In several business development roles, Greg consulted, guided and educated clients in compliance guidelines and certifications for standards including PCI, HIPAA, ISO 27001, NIST, SOC 1 and SOC 2, GDPR/CCPA, and FedRAMP.
When he is not providing cyber solutions for his clients, he can be found spending time with his wife Kelly, playing with his grandchildren, or rehearsing or performing with the world-renowned Tabernacle Choir on Temple Square.
Descriere
This book is about how to test Web based applications so that customers know that they are very safe to access them, and that their information and data will not fall into the hands of a malicious third party. The only way that this can be accomplished is with thorough security testing.