Web Application Security: A Comprehensive Overview
This Book by LIMSbook.com is licensed under a Creative Commons Attribution-NonCommercial-ShareAlike 4.0 International License.
Table of Contents
- Introducing web application security
- Opening comments
- Checklist
- Miscellaneous points
- File inclusion and disclosure
- File upload vulnerabilities
- SQL injection
- Cross-site scripting (XSS)
- XML and internal data escaping
- XML, JSON and general API security
- (Un)trusted input
- Cross-site request forgery (CSRF)
- Clickjacking
- Insecure data transfer
- Session fixation
- Session stealing
- Truncation attacks, trimming attacks
- Password security
- Comparison issues
- PHP-specific issues
- Prefetching and spiders
- Special files
- SSL, TLS and HTTPS basics
- Further reading
- Authors
