XSS Exploits: Cross Site Scripting Attacks and Defense

石头

作者：Seth Fogie, Jeremiah Grossman, Robert Hansen, Anton Rager, Petko D. Petkov
出版日期：May 15, 2007
出版社：Syngress
页数：480
ISBN：ISBN-10: 1597491543 ISBN-13: 978-1597491549
文件格式：PDF

Book Description
Learn to defend your Web site against cross site scripting attacks (the#1 software vulnerability) written by the world’s foremost, undisputedexperts!
Product Description
Cross Site Scripting Attacks starts by defining theterms and laying out the ground work. It assumes that the reader isfamiliar with basic web programming (HTML) and JavaScript. First itdiscusses the concepts, methodology, and technology that makes XSS avalid concern. It then moves into the various types of XSS attacks, howthey are implemented, used, and abused. After XSS is thoroughlyexplored, the next part provides examples of XSS malware anddemonstrates real cases where XSS is a dangerous risk that exposesinternet users to remote access, sensitive data theft, and monetarylosses. Finally, the book closes by examining the ways developers canavoid XSS vulnerabilities in their web applications, and how users canavoid becoming a victim. The audience is web developers, securitypractitioners, and managers.
*XSS Vulnerabilities exist in 8 out of 10 Web sites
*The authors of this book are the undisputed industry leading authorities