XSS Attacks CROSS SITE SCRIPTING EXPLOITS AND DEFENSE

时间:2011-08-16 03:20:24
【文件属性】:

文件名称:XSS Attacks CROSS SITE SCRIPTING EXPLOITS AND DEFENSE

文件大小:6.24MB

文件格式:PDF

更新时间:2011-08-16 03:20:24

XSS CSS 跨站脚本 信息安全 黑客

目前较好的一本介绍跨站脚本攻击(XSS)的书

Cross Site Scripting Attacks starts by defining the terms and laying out the ground work. It assumes that the reader is familiar with basic web programming (HTML) and JavaScript. First it discusses the concepts, methodology, and technology that makes XSS a valid concern. It then moves into the various types of XSS attacks, how they are implemented, used, and abused. After XSS is thoroughly explored, the next part provides examples of XSS malware and demonstrates real cases where XSS is a dangerous risk that exposes internet users to remote access, sensitive data theft, and monetary losses. Finally, the book closes by examining the ways developers can avoid XSS vulnerabilities in their web applications, and how users can avoid becoming a victim. The audience is web developers, security practitioners, and managers.


*XSS Vulnerabilities exist in 8 out of 10 Web sites


*The authors of this book are the undisputed industry leading authorities


*Contains independent, bleeding edge research, code listings and exploits that can not be found anywhere else


网友评论

  • XSS近期就要开始学习,主要原因是来自浏览器。对数据在浏览器端的执行,好好学习
  • 好书,值得分享
  • 感谢分享 很不错的资源 看书还是要英文的好
  • 英文版的,很不错。
  • 很好,学习到了很多知识,推荐。
  • 怎么没有汉化版的
  • 很经典的教材,谢谢分享
  • 感谢分享 很不错的资源 可惜是英文
  • 不错,要是有中文版就更好了
  • 英文版的,要花点时间看了。要是有中文的就好了。
  • 非常好的入门原理教材,对进行黑核安全测试方面有很大的帮助。文中某些观点相对来说有些老旧,但不影响指导。
  • 不错,要是有中文版就更好了。
  • 教科书 一ing文版的