Amazon Web Services Error
Unfortunately we were unable to retrieve details of the product code you requested from Amazon.com or our local cached copy of previous responses. There may be several reasons for this, some of which include, but are not limited to:-
- Incorrect product code (007222438X)
- Problems with the Amazon XML returned from the server
- An empty XML document may have been returned
- The XML data may have been corrupt or unusable
- An unexpected character may have prevented XML processing
- There were no cached details available to display when details could not be retrieved
This error may be temporary or permanent. Please feel free to try again or follow the link to Amazon.com to check out the specific product details. In the meantime, the site owner has been sent a mail containing enough information to be able to reproduce the error. We hope to be able to resolve this error in the future.
See XML Document RequestedRosie says...
It's no good burying your head in the sand and pretending your web applications are not vulnerable to attack... particularly not since the publication of this book! Hacking Exposed: Web Applications will appeal to both script kiddies and security administrators alike. Not only does it tell you about various security exploits, but also gives you practical advice on tools you should use and the techniques that will save you the most time without missing a potential backdoor.
When I first flicked through the book my initial reaction was that I wouldn't be able to find the information I wanted very quickly. Having read the book however, the structure of the book makes perfect sense as it follows the thought processes of someone trying to break into a web application. This train of thought makes you think about all the aspects and potential weaknesses of the application and so helps you to secure your web sites and servers more thoroughly than the "per server" approach I was expecting.
There is a lot of information to digest within these pages, so I highly recommend that you have a notepad and pen handy when reading this book for the first time. I make this recommendation because there are a lot of acronyms being thrown around (particularly in the earlier chapters) and it is very easy even for someone with adequate server knowledge to get dizzy from the use of terminology. The appendixes will prove useful references in their own right, with the checklist and crib sheet proving useful time and time again.
If you are serious about protecting your web applications, servers and internal networks, then you really should lock down all your connections with the internet. Reading Hacking Exposed: Web Applications will certainly get you looking at your site and it's security in a new way...
- Readability: 4
- Reference: 5
- Reusability: 4
- Examples: 5
- User Level: Intermediate/Advanced
- Score: 18/20
Chapter List
- Part I: Reconnaissance
- Introduction to Web Applications and Security
- Profiling
- Hacking Web Servers
- Serveying the Application
- Part II: The Attack
- Authentication
- Authorization
- Attacking Session State Management
- Input Validation Attacks
- Attacking Web Datastores
- Attacking Web Services
- Hacking Web Application Management
- Web Client Hacking
- Case Studies
- Part III: Appendixes
- Web Site Security Checklist
- Web Hacking Tools and Techniques Cribsheet
- Using Libwhisker
- UrlScan Installation and Configuration
- About the Companion Web Site
Other Information
A sample chapter, Introduction to Web Applications and Security, is available from the Osbourne Web Site. The chapter list, book cover image and sample chapter are used with kind permission from Osborne McGraw-Hill.