Web Hacking: Attacks and Defense

Paperback (Print)
Buy New
Buy New from BN.com
$37.74
Used and New from Other Sellers
Used and New from Other Sellers
from $1.99
Usually ships in 1-2 business days
(Save 96%)
Other sellers (Paperback)
  • All (26) from $1.99   
  • New (5) from $27.10   
  • Used (21) from $1.99   

Overview

"Both novice and seasoned readers will come away with an increased understanding of how Web hacking occurs and enhanced skill at developing defenses against such Web attacks. Technologies covered include Web languages and protocols, Web and database servers, payment systems and shopping carts, and critical vulnerabilities associated with URLs. This book is a virtual battle plan that will help you identify and eliminate threats that could take your Web site off line..."
--From the Foreword by William C. Boni, Chief Information Security Officer, Motorola
"Just because you have a firewall and IDS sensor does not mean you aresecure; this book shows you why."
--Lance Spitzner, Founder, The Honeynet Project
Whether it's petty defacing or full-scale cyber robbery, hackers are moving to the Web along with everyone else. Organizations using Web-based business applications are increasingly at risk. Web Hacking: Attacks and Defense is a powerful guide to the latest information on Web attacks and defense. Security experts Stuart McClure (lead author of Hacking Exposed), Saumil Shah, and Shreeraj Shah present a broad range of Web attacks and defense.

Features include:

  • Overview of the Web and what hackers go after
  • Complete Web application security methodologies
  • Detailed analysis of hack techniques
  • Countermeasures
  • What to do at development time to eliminate vulnerabilities
  • New case studies and eye-opening attack scenarios
  • Advanced Web hacking concepts, methodologies, and tools

"How Do They Do It?" sections show how and why different attacks succeed, including:

  • Cyber graffiti and Web site defacements
  • e-Shoplifting
  • Database access and Web applications
  • Java™ application servers; how to harden your Java™ Web Server
  • Impersonation and session hijacking
  • Buffer overflows, the most wicked of attacks
  • Automated attack tools and worms

Appendices include a listing of Web and database ports, cheat sheets for remote command execution, and source code disclosure techniques.

Web Hacking informs from the trenches. Experts show you how to connect the dots--how to put the stages of a Web hack together so you can best defend against them. Written for maximum brain absorption with unparalleled technical content and battle-tested analysis, Web Hacking will help you combat potentially costly security threats and attacks.

0201761769B07192002

Read More Show Less

Editorial Reviews

From Barnes & Noble
The Barnes & Noble Review
It’s so obvious, it’s hardly worth saying: The Web is a cracker’s playground. All those sites, all those unfixed vulnerabilities, all those easy-to-guess passwords and easy-to-steal credit card databases. All those system administrators who think they’re OK because they’re running a firewall. (Ninety-five percent of all attacks occur in spite of a working firewall!)

If you’re responsible for a web site, you desperately need web security guidance from someone who can pull together all the information you need, and all the solutions. You need Web Hacking.

Lead author Stuart McClure cowrote Hacking Exposed, the classic general hands-on guide to hacking and information security. If you’re a Fortune 500 IT professional, you may also know him as president of Foundstone, a leading provider of security assessments, vulnerability protection, consulting, and education.

In Web Hacking, McClure and two of his colleagues turn their attention specifically to web hacking. Like Hacking Exposed, this book covers the full range of attacks web administrators are likely to face. It also presents start-to-finish attack scenarios that show how multiple attacks build on each other.

You’ll start by thoroughly reviewing the vulnerabilities of every element of an e-commerce site: web scripting languages; web servers; database servers; payment systems; shopping carts; and the HTTP and HTTPS protocols.

Some pre-packaged shopping systems have proven notoriously insecure -- especially those widely used by smaller sites. For example, it’s common for shopping cart systems to send critical information such as product IDs and prices via hidden fields in HTML forms. But once the web server sends its HTML response to the browser, the server loses all control over the data sent, and it can’t rely on the data it receives back -- it’s easy for a buyer to change the price tag on an item and go unnoticed. Many systems respond by providing client-side validation, but client-side scripts are just as vulnerable as hidden HTML form fields.

In fact, McClure and company walk through a whole laundry list of shopping system vulnerabilities: metacharacters sent from clients to cause buffer overflows; information retrieval from easy-to-compromise temporary files on the server; weak encryption; file system directory exposure; improper privilege escalation; customer information disclosure; opportunities to alter both products and orders; and, of course, denial-of-service attacks.

There’s a full section on the security risks associated with URLs (more than you may imagine). For example, there’s the IIS vulnerability (since fixed, if you religiously patch your systems) which allows hackers to use URLs with invalid Unicode UTF-8 sequences to change directories on your server, find one where scripts are executable, and run whatever scripts suit their fancy.

Next, you’ll walk step-by-step through a sophisticated web site defacement attack. These come in many varieties; in McClure’s example, a hacker finds a proxy server that permits reverse HTTP proxying (a no-no); then exploits HTTP’s weak encryption to obtain user-level access; finds directory listings; locates a “staging script” that automatically updates web pages on a predefined schedule; then substitutes his own web pages, and waits for the script to run automatically.

The book contains equally detailed coverage of compromising web databases; executing Java code remotely; impersonation; on-the-fly buffer overflows; worms; and techniques for defeating intrusion detection systems. Outside the hacker underground, we’ve never seen this much web security information in a form so useful to working administrators. Bill Camarda

Bill Camarda is a consultant, writer, and web/multimedia content developer. His 15 books include Special Edition Using Word 2000 and Upgrading & Fixing Networks For Dummies®, Second Edition.

From The Critics
Since human error keeps computers vulnerable despite such precautions as firewalls, the lead author of Hacking Exposed (Osborne McGraw-Hill, 2001) and his colleagues at an enterprise vulnerability management firm introduce the "e-commerce playground," hackers' modus operandi, and "advanced Web kung fu" for protecting against such attacks. They list popular Web and database servers; method and field definitions for Http1.0 and 1.1; and Web resources and tools. The book includes cheat sheets for remote command execution and source codes, files, and directories. Annotation c. Book News, Inc., Portland, OR
Read More Show Less

Product Details

  • ISBN-13: 9780201761764
  • Publisher: Addison-Wesley
  • Publication date: 8/10/2002
  • Pages: 528
  • Product dimensions: 7.30 (w) x 9.00 (h) x 1.30 (d)

Meet the Author

Stuart McClure, President/CTO, Foundstone, Inc., brings over 12 years of IT and security experience to Foundstone. Stuart is a successful security author, speaker, and teacher whose writings have been translated into dozens of languages around the world.

Stuart is the lead author of the best-selling security book Hacking Exposed: Network Security Secrets and Solutions, which has been translated into 19 languages, and has received critical acclaim around the world. In addition, it was ranked the #4 computer book sold on Amazon in 2001, positioning it as the best selling security book ever sold.

Prior to co-founding Foundstone, Stuart was a Senior Manager with Ernst & Young's National Security Profiling Team responsible for project management, attack and penetration reviews, and security technology evaluations. Prior to Ernst & Young, Stuart was a Security Analyst for the InfoWorld Test Center where he covered the security industry and evaluated over 100 network and security products specializing in firewalls, security auditing, intrusion detection, and public key infrastructure (PKI). Prior to InfoWorld, Stuart was the IT manager for State and Local Governments, supporting Novell, NT, Solaris, AIX, and AS/400 platforms.

Stuart holds a B.A. degree from the University of Colorado, Boulder and numerous certifications including ISC2's CISSP, Novell's CNE, and Check Point's CCSE.

Saumil continues to lead the efforts in e-commerce security research at Net-Square. His focus is on researching vulnerabilities with various e-commerce and Web-based application systems. Saumil also provides information security consulting services to Net-Square clients, specializing in ethical hacking and security architecture. He holds a designation of Certified Information Systems Security Professional. Saumil has had more than eight years experience with system administration, network architecture, integrating heterogenous platforms and information security, and has perfomed numerous ethical hacking exercises for many significant companies in the IT area. Saumil is a regular speaker at security conferences such as BlackHat, RSA, etc.

Previously, Saumil was the Director of Indian Operations for Foundstone Inc, where he was instrumental in developing their Web application security assessment methodology, the Web assessment component of FoundScan--Foundstone's Managed Security Services software and was instrumental in pioneering Foundstone's Ultimate Web Hacking training class.

Prior to joining Foundstone, Saumil was a senior consultant with Ernst & Young, where he was responsible for the company's ethical hacking and security architecture solutions. Saumil has also worked at the Indian Institute of Management, Ahmedabad, as a research assistant and is currently a visiting faculty member there.

Saumil graduated from Purdue University with a master's degree in computer science and a strong research background in operating systems, networking, information security, and cryptography. At Purdue, he was a research assistant in the COAST (Computer Operations, Audit and Security Technology) laboratory. He got his undergraduate degree in computer engineering from Gujarat University, India. Saumil is also the author of The Anti-Virus Book (Tata McGraw-Hill, 1996).

Shreeraj leads the software development and research arm of Net-Square. His role is to develop new methodologies for Web application security assessment and defense. In the past, he has been involved in several Web application assessment projects, protocol analysis, code reviews, ethical Web hacking, etc. He has also been a speaker at RSA and BlackHat.

Shreeraj has vast experience in the fields of security, application development, and network administration in addition to his strong technical background, client management skills, project management, and research methodologies. He was a member of the core development team for the Web application assessment engine at Foundstone. Shreeraj also worked with Chase Manhattan Bank in their middleware application division. Prior to joining Chase, Shreeraj worked with IBM's Domino Application Server team.

Shreeraj graduated from Marist College with a master's degree in computer science. He received his MBA at the Nirma Institute of Managment, India. He got his bachelor's degree in instrumentation and controls engineering from Gujarat University, India. Shreeraj has also authored quite a few white papers during his academic period both in India and USA.

0201761769AB04252003

Read More Show Less

Read an Excerpt

"We're Secure, We Have a Firewall"

If only we got a nickel every time we heard a client utter this pithy phrase. On second thought, that would unfortunate as we would probably not be writing this book; we'd be sipping Pina Colada's on some white sand beach by now...

For those skeptics among you, all warm and cozy next to your firewall, just remember this: over 65% of reported attacks occur over TCP port 80, the traditional web port (http://www.incidents.org). Is the web threat real? It's all too real.To Err is Human

After performing hundreds of security reviews over the decades, the authors have known for some time what you are about to know (if you don't already): Nothing can be truly secure. Error is at the heart of every security breach and as the saying goes: to err is human. No level of firewall, intrusion detection system (IDS), or anti-virus software will make you secure. Surprised this type of comment introduces a security book? Don't be. It is the harsh reality that must be accepted before the race to security can be started.

So what should we do, just throw up our hands, turn the power off to our computers and revert back 30 years; forgetting this Internet or the modem or the computer really happened? Sure, you can do that but you would be alone in your efforts. The Internet and all it has to offer is undeniable: increased communication, increased information sharing, connecting with people of all races, creeds, colors, sexes, and intelligence without boundaries or limits. And that's just the home user's benefits. Businesses use the Internet 24 hours a day, 7 days a week, making revenue and transmitting funds around the world atthe blink of an eye. Anyone who denies the ubiquity and staying power of the Internet is just kidding themselves.Writing on the Wall

Over three years ago, one of the authors wrote a foreboding article that was indicative of things to come. The column printed on August 9, 1999 and was titled "Bane of e-commerce: We're secure: We allow only Web traffic through our firewall" (http://www.infoworld.com/articles/op/

). The writing was on the security wall at that time but no one wanted to believe it, much less talk about it. They were too caught up in either hyped technologies such as Firewalls, IDS, and virtual private networks (VPN), or peripheral technologies that never hit mainstream, such as Public Key Infrastructure (PKI), Distributed Computing Environment (DCE), and single signon.

So why the tremendous interest in the Web and its security now? Because hacking events are frequent in today's connected world. And people are beginning to understand how a single vulnerability in a web application can expose an entire company's jewels to an attacker (a.k.a. Code Red and Nimda worms).Book Organization

This book as been organized into four sections:

  • E-Commerce Playground
  • URLs Unraveled
  • How do they do it?
  • Advanced Web Kung Fu

The content in each section gets progressively more advanced in its content and delivery, going from a brief web languages introduction (Chapter 1) to finding and exploiting your own buffer overflows (Chapter 14). But don't let the pace derail your learning. If you missed something, you can probably pick it up as you go along.

The first two sections are focused to give the reader a preliminary and then more intermediate introduction into the world of the web. In "E-Commerce Playground" we show you how the web works, its languages, applications, databases, protocols, and syntax. In "URLs Unraveled", we delve into the meaning of the URL, what is important to an attacker, how visible code can be helpful to an attacker, and we show you how mapping web sites can be critical to an attacker's repertoire.In the third section, "How do they do it?" we demystify the art of web hacking, how it is pulled off, and how simple steps at development time can eliminate a significant portion of the threat. This section is bar far the meatier of the sections in terms of information and often provides the greatest clues as to how hackers do what they do. Each chapter provides both a detailed analysis of the hack as well as a countermeasure section at the end which helps prevent the hack.

In the fourth section, "Advanced Web Kung Fu," we discuss some advanced web hacking concepts, methodologies, and tools that simply cannot be missed.

Finally, at the end of the book you will find Appendices that include a listing of common web ports on the Internet, cheat sheets for remote command execution and source code disclosure techniques, among other additions.

Read More Show Less

Table of Contents

(NOTE: Each chapter begins with an Introduction and concludes with a Summary.)

Foreword.

Introduction.

“We're Secure, We Have a Firewall”.

To Err Is Human.

Writing on the Wall.

Book Organization.

Parts.

Chapters.

A Final Word.

Acknowledgments.

Contributor.

I. THE E-COMMERCE PLAYGROUND.

Case Study: Acme Art, Inc. Hacked!
1. Web Languages: The Babylon of the 21st Century.

Languages of the Web.

HTML.

Dynamic HTML (DHTML).

XML.

XHTML.

Perl.

PHP.

ColdFusion.

Active Server Pages.

CGI.

Java.

2. Web and Database Servers.

Web Servers.

Apache.

Microsoft's Internet Information Server (IIS).

Database Servers.

Microsoft SQL Server.

Oracle.

3. Shopping Carts and Payment Gateways.

Evolution of the Storefront.

Electronic Shopping.

Shopping Cart Systems.

Scope and Lifetime of an Electronic Shopping Cart.

Collecting, Analyzing, and Comparing Selected Components.

Keeping Track of the Total Cost.

Change of Mind.

Processing the Purchase.

Implementation of a Shopping Cart Application.

Product Catalog.

Session Management.

Database Interfacing.

Integration with the Payment Gateway.

Examples of Poorly Implemented Shopping Carts.

Carello Shopping Cart.

DCShop Shopping Cart.

Hassan Consulting's Shopping Cart.

Cart32 and Several Other Shopping Carts.

Processing Payments.

Finalizing the Order.

Method of Payment.

Verification and Fraud Protection.

Order Fulfillment and Receipt Generation.

Overview of the Payment Processing System.

Innovative Ways to Combat Credit Card Fraud.

Order Confirmation Page.

Payment Gateway Interface.

Transaction Database Interface.

Interfacing with a Payment Gateway—An Example.

Payment System Implementation Issues.

Integration.

Temporary Information.

SSL.

Storing User Profiles.

Vulnerabilities Caused by Poor Integration of Shopping Cart and Payment Gateway.

PayPal—Enabling Individuals to Accept Electronic Payments.

4. HTTP and HTTPS: The Hacking Protocols.

Protocols of the Web.

HTTP.

HTTPS (HTTP over SSL).

5. URL: The Web Hacker's Sword.

URL Structure.

Web Hacker Psychology.

URLs and Parameter Passing.

URL Encoding.

Meta-Characters.

Specifying Special Characters on the URL String.

Meta-Characters and Input Validation.

Unicode Encoding.

The Acme Art, Inc. Hack.

Abusing URL Encoding.

Unicode Encoding and Code Red's Shell Code.

Unicode Vulnerability.

The Double-Decode or Superfluous Decode Vulnerability.

HTML Forms.

Anatomy of an HTML Form.

Input Elements.

Parameter Passing Via GET and POST.

II. URLS UNRAVELED.

Case Study: Reconnaissance Leaks Corporate Assets.
6. Web: Under (the) Cover.

The Components of a Web Application.

The Front-End Web Server.

The Web Application Execution Environment.

The Database Server.

Wiring the Components.

The Native Application Processing Environment.

Web Server APIs and Plug-Ins.

URL Mapping and Internal Proxying.

Proxying with a Back-End Application Server.

Examples.

Connecting with the Database.

The Craftiest Hack of Them All.

Using Native Database APIs.

Examples.

Using ODBC.

Using JDBC.

Specialized Web Application Servers.

Identifying Web Application Components from URLs.

The Basics of Technology Identification.

Examples.

More Examples.

Advanced Techniques for Technology Identification.

Examples.

Identifying Database Servers.

Countermeasures.

Rule 1: Minimize Information Leaked from the HTTP Header.

Rule 2: Prevent Error Information from Being Sent to the Browser.

7. Reading Between the Lines.

Information Leakage Through HTML.

What the Browsers Don't Show You .

Netscape Navigator—View Page Source.

Internet Explorer—View Source.

Clues to Look For.

HTML Comments.

Revision History.

Developer or Author Details.

Cross-References to Other Areas of the Web Application.

Reminders and Placeholders.

Comments Inserted by Web Application Servers.

Old “Commented-Out” Code.

Internal and External Hyperlinks.

E-mail Addresses and Usernames.

UBE, UCE, Junk Mail, and Spam.

Keywords and Meta Tags.

Hidden Fields.

Client-Side Scripts.

Automated Source Sifting Techniques.

Using wget.

Using grep.

Sam Spade, Black Widow, and Teleport Pro.

8. Site Linkage Analysis.

HTML and Site Linkage Analysis.

Site Linkage Analysis Methodology.

Step 1: Crawling the Web Site .

Crawling a Site Manually.

A Closer Look at the HTTP Response Header.

Some Popular Tools for Site Linkage Analysis.

Step-1 Wrap-Up.

Crawlers and Redirection.

Step 2: Creating Logical Groups Within the Application Structure.

Step-2 Wrap-Up.

Step 3: Analyzing Each Web Resource.

1. Extension Analysis.

2. URL Path Analysis.

3. Session Analysis.

4. Form Determination.

5. Applet and Object Identification.

6. Client-Side Script Evaluation.

7. Comment and E-Mail Address Analysis.

Step-3 Wrap-Up.

Step 4: Inventorying Web Resources.

III. HOW DO THEY DO IT?

Case Study: How Boris Met Anna's Need for Art Supplies.
9. Cyber Graffiti.

Defacing Acme Travel, Inc.'s Web Site.

Mapping the Target Network.

Throwing Proxy Servers in Reverse.

Brute Forcing HTTP Authentication.

Directory Browsing.

Uploading the Defaced Pages.

What Went Wrong?

HTTP Brute-Forcing Tools.

Brutus.

WebCracker 4.0.

Countermeasures Against the Acme Travel, Inc. Hack.

Turning Off Reverse Proxying.

Using Stronger HTTP Authentication Passwords.

Turning off Directory Browsing.

10. E-Shoplifting.

Building an Electronic Store.

The Store Front-End.

The Shopping Cart.

The Checkout Station.

The Database.

Putting It All Together.

Evolution of Electronic Storefronts.

Robbing Acme Fashions, Inc.

Setting Up Acme's Electronic Storefront.

Tracking Down the Problem.

Bypassing Client-Side Validation.

Using Search Engines to Look for Hidden Fields.

Overhauling www.acme-fashions.com.

Facing a New Problem with the Overhauled System.

Postmortem and Further Countermeasures.

Shopping Carts with Remote Command Execution.

11. Database Access.

Direct SQL Attacks.

A Used Car Dealership Is Hacked.

Input Validation.

Countermeasures.

12. Java: Remote Command Execution.

Java-Driven Technology.

Architecture of Java Application Servers.

Attacking a Java Web Server.

Identifying Loopholes in Java Application Servers.

Example: Online Stock Trading Portal.

Invoking FileServlet.

Countermeasures.

Harden the Java Web Server.

Other Conceptual Countermeasures.

13. Impersonation.

Session Hijacking: A Stolen Identity and a Broken Date.

March 5, 7:00 A.M.—Alice's Residence.

8:30 A.M.—Alice's Workplace.

10:00 A.M.—Bob's Office.

11:00 A.M.—Bob's Office.

12:30 P.M.—Alice's Office.

9:30 P.M.-Bertolini's Italian Cuisine.

Session Hijacking.

Postmortem of the Session Hijacking Attack.

Application State Diagrams.

HTTP and Session Tracking.

Stateless Versus Stateful Applications.

Cookies and Hidden Fields.

Cookie Control, Using Netscape on a Unix Platform.

Cookies.

Hidden Fields.

Implementing Session and State Tracking.

Session Identifiers Should Be Unique.

Session Identifiers Should Not Be “Guessable”.

Session Identifiers Should Be Independent.

Session Identifiers Should Be Mapped with Client-Side Connections.

14. Buffer Overflows: On-the-Fly.

Example.

Buffer Overflows.

Buffer Overflow: Its Simplest Form.

Buffer Overflow: An Example.

Postmortem Countermeasures.

IV. ADVANCED WEB KUNG FU.

Case Study.
15. Web Hacking: Automated Tools.

Netcat.

Whisker.

Brute Force.

Brutus.

Achilles.

Cookie Pal.

Teleport Pro.

Security Recommendations.

16. Worms.

Code Red Worm.

January 26, 2000.

June 18, 2001: The First Attack.

July 12, 2001.

July 19, 2001.

August 4, 2001.

Nimda Worm.

Combatting Worm Evolution.

React and Respond.

17. Beating the IDS.

IDS Basics.

Network IDSs.

Host-Based IDSs.

IDS Accuracy.

Getting Past an IDS.

Secure Hacking-Hacking Over SSL.

Example.

Tunneling Attacks via SSL.

Intrusion Detection via SSL.

Sniffing SSL Traffic.

Polymorphic URLs.

Hexadecimal Encoding.

Illegal Unicode/Superfluous Encoding.

Adding Fake Paths.

Inserting Slash-Dot-Slash Strings.

Using Nonstandard Path Separators.

Using Multiple Slashes.

Mixing Various Techniques.

Generating False Positives.

IDS Evasion in Vulnerability Checkers.

Potential Countermeasures.

SSL Decryption.

URL Decoding.

Appendix A: Web and Database Port Listing.Appendix B: HTTP/1.1 and HTTP/1.0 Method and Field Definitions.Appendix C: Remote Command Execution Cheat Sheet.Appendix D: Source Code, File, and Directory Disclosure Cheat Sheet.Appendix E: Resources and Links.Appendix F: Web-Related Tools.Index. 0201761769T07312002

Read More Show Less

Preface

"We're Secure, We Have a Firewall"

If only we got a nickel every time we heard a client utter this pithy phrase. On second thought, that would unfortunate as we would probably not be writing this book; we'd be sipping Pina Colada's on some white sand beach by now...

For those skeptics among you, all warm and cozy next to your firewall, just remember this: over 65% of reported attacks occur over TCP port 80, the traditional web port (http://www.incidents.org). Is the web threat real? It's all too real.

To Err is Human

After performing hundreds of security reviews over the decades, the authors have known for some time what you are about to know (if you don't already): Nothing can be truly secure. Error is at the heart of every security breach and as the saying goes: to err is human. No level of firewall, intrusion detection system (IDS), or anti-virus software will make you secure. Surprised this type of comment introduces a security book? Don't be. It is the harsh reality that must be accepted before the race to security can be started.

So what should we do, just throw up our hands, turn the power off to our computers and revert back 30 years; forgetting this Internet or the modem or the computer really happened? Sure, you can do that but you would be alone in your efforts. The Internet and all it has to offer is undeniable: increased communication, increased information sharing, connecting with people of all races, creeds, colors, sexes, and intelligence without boundaries or limits. And that's just the home user's benefits. Businesses use the Internet 24 hours a day, 7 days a week, making revenue and transmitting funds around the world at the blink of an eye. Anyone who denies the ubiquity and staying power of the Internet is just kidding themselves.

Writing on the Wall

Over three years ago, one of the authors wrote a foreboding article that was indicative of things to come. The column printed on August 9, 1999 and was titled "Bane of e-commerce: We're secure: We allow only Web traffic through our firewall" (http://www.infoworld.com/articles/op/xml/99/08/09/990809opsecwatch.xml). The writing was on the security wall at that time but no one wanted to believe it, much less talk about it. They were too caught up in either hyped technologies such as Firewalls, IDS, and virtual private networks (VPN), or peripheral technologies that never hit mainstream, such as Public Key Infrastructure (PKI), Distributed Computing Environment (DCE), and single signon.

So why the tremendous interest in the Web and its security now? Because hacking events are frequent in today's connected world. And people are beginning to understand how a single vulnerability in a web application can expose an entire company's jewels to an attacker (a.k.a. Code Red and Nimda worms).

Book Organization

This book as been organized into four sections:

  • E-Commerce Playground
  • URLs Unraveled
  • How do they do it?
  • Advanced Web Kung Fu

The content in each section gets progressively more advanced in its content and delivery, going from a brief web languages introduction (Chapter 1) to finding and exploiting your own buffer overflows (Chapter 14). But don't let the pace derail your learning. If you missed something, you can probably pick it up as you go along.

The first two sections are focused to give the reader a preliminary and then more intermediate introduction into the world of the web. In "E-Commerce Playground" we show you how the web works, its languages, applications, databases, protocols, and syntax. In "URLs Unraveled", we delve into the meaning of the URL, what is important to an attacker, how visible code can be helpful to an attacker, and we show you how mapping web sites can be critical to an attacker's repertoire.

In the third section, "How do they do it?" we demystify the art of web hacking, how it is pulled off, and how simple steps at development time can eliminate a significant portion of the threat. This section is bar far the meatier of the sections in terms of information and often provides the greatest clues as to how hackers do what they do. Each chapter provides both a detailed analysis of the hack as well as a countermeasure section at the end which helps prevent the hack.

In the fourth section, "Advanced Web Kung Fu," we discuss some advanced web hacking concepts, methodologies, and tools that simply cannot be missed.

Finally, at the end of the book you will find Appendices that include a listing of common web ports on the Internet, cheat sheets for remote command execution and source code disclosure techniques, among other additions.

0201761769P05232002

Read More Show Less

Customer Reviews

Be the first to write a review
( 0 )
Rating Distribution

5 Star

(0)

4 Star

(0)

3 Star

(0)

2 Star

(0)

1 Star

(0)

Your Rating:

Your Name: Create a Pen Name or

Barnes & Noble.com Review Rules

Our reader reviews allow you to share your comments on titles you liked, or didn't, with others. By submitting an online review, you are representing to Barnes & Noble.com that all information contained in your review is original and accurate in all respects, and that the submission of such content by you and the posting of such content by Barnes & Noble.com does not and will not violate the rights of any third party. Please follow the rules below to help ensure that your review can be posted.

Reviews by Our Customers Under the Age of 13

We highly value and respect everyone's opinion concerning the titles we offer. However, we cannot allow persons under the age of 13 to have accounts at BN.com or to post customer reviews. Please see our Terms of Use for more details.

What to exclude from your review:

Please do not write about reviews, commentary, or information posted on the product page. If you see any errors in the information on the product page, please send us an email.

Reviews should not contain any of the following:

  • - HTML tags, profanity, obscenities, vulgarities, or comments that defame anyone
  • - Time-sensitive information such as tour dates, signings, lectures, etc.
  • - Single-word reviews. Other people will read your review to discover why you liked or didn't like the title. Be descriptive.
  • - Comments focusing on the author or that may ruin the ending for others
  • - Phone numbers, addresses, URLs
  • - Pricing and availability information or alternative ordering information
  • - Advertisements or commercial solicitation

Reminder:

  • - By submitting a review, you grant to Barnes & Noble.com and its sublicensees the royalty-free, perpetual, irrevocable right and license to use the review in accordance with the Barnes & Noble.com Terms of Use.
  • - Barnes & Noble.com reserves the right not to post any review -- particularly those that do not follow the terms and conditions of these Rules. Barnes & Noble.com also reserves the right to remove any review at any time without notice.
  • - See Terms of Use for other conditions and disclaimers.
Search for Products You'd Like to Recommend

Recommend other products that relate to your review. Just search for them below and share!

Create a Pen Name

Your Pen Name is your unique identity on BN.com. It will appear on the reviews you write and other website activities. Your Pen Name cannot be edited, changed or deleted once submitted.

 
Your Pen Name can be any combination of alphanumeric characters (plus - and _), and must be at least two characters long.

Continue Anonymously
Sort by: Showing 1 Customer Reviews
  • Anonymous

    Posted August 28, 2002

    Grab a cup of ¿joe¿ curl up in a comfy place and get ready for a good read!

    Web Hacking, Attacks and Defense by Stuart McClure, Saumil Shah and Shreeraj Shah is an excellent introductory level book to the world of web hacking. If you are a seasoned professional you will also enjoy having this book in your collection, as it is an excellent resource book. Ever wonder how anyone can enter a web site and see more than what¿s presented? With a clear understanding of the protocols, web languages, an understanding of the processes behind e commerce and a bit of historical knowledge you too can hack a web site, and wind up on the FBI¿s most wanted list. But by the same token, a little bit of knowledge is a powerful thing, with the information presented here you can easily get started on the road to keeping the hackers out, and damage to a minimum if they do get in. The chapters are clearly laid out, and include code with explanations of the weaknesses, referrals to more in depth study, precautionary measures you can take to help secure your site and a look at the various tools available to harden your site. IIS and Apache are reviewed, along with Oracle and SQL Server to show some of the more popular Web Servers and Databases, how they work, are exploited and ways to harden them against attack. The protocols used by the web, web programming languages, and an explanation of how a browser interprets commands are graphically laid out with examples presented. It would be hard to come away from this book with out an understanding of the concepts, as they are so clearly defined. Everything from setting a common understanding of terms to basic E Commerce concepts to unraveling Code Red and a truly unique presentation of IDS (Intrusion Detection Systems) is presented and well worth the time it takes to read. Enjoy!

    Was this review helpful? Yes  No   Report this review
Sort by: Showing 1 Customer Reviews

If you find inappropriate content, please report it to Barnes & Noble
Why is this product inappropriate?
Comments (optional)