Average Reviews:
(More customer reviews)This book proposes to teach us about testing web application security. OK, there *is* one entire sentence devoted to PHP, and somewhere in this mess I think that I remember seeing several lines regarding jsp. On the plus side -- there is an Appendix devoted to a cursory review of the SANS top 20 security vulnerabilities. Thank goodness -- googling for this list or finding it online at the SANS portal must be outside the abilities of the reviewers who gave this book positive reviews.
Testing w/ client-side proxies, as far as I can tell, is not covered; nor is any mention made of SQL insertion techniques, basic authentication mechanism testing, Nikto usage, etc.
I purchased this book based upon the initial reviews on this site. Obviously, the earlier reviewers were not reading the same book as the one I received.
Click Here to see more reviews about: Testing Web Security: Assessing the Security of Web Sites and Applications
* Covers security basics and guides reader through the process of testing a Web site.* Explains how to analyze results and design specialized follow-up tests that focus on potential security gaps.* Teaches the process of discovery, scanning, analyzing, verifying results of specialized tests, and fixing vulnerabilities.
Get 38% OFF
Buy cheap Testing Web Security: Assessing the Security of Web Sites and Applications now.
No comments:
Post a Comment