Real-World Bug Hunting Real-World Bug Hunting

Real-World Bug Hunting

A Field Guide to Web Hacking

    • €31.99
    • €31.99

Publisher Description

Learn how people break websites and how you can, too.

Real-World Bug Hunting is the premier field guide to finding software bugs. Whether you're a cyber-security beginner who wants to make the internet safer or a seasoned developer who wants to write secure code, ethical hacker Peter Yaworski will show you how it's done.

You'll learn about the most common types of bugs like cross-site scripting, insecure direct object references, and server-side request forgery. Using real-life case studies of rewarded vulnerabilities from applications like Twitter, Facebook, Google, and Uber, you'll see how hackers manage to invoke race conditions while transferring money, use URL parameter to cause users to like unintended tweets, and more.

Each chapter introduces a vulnerability type accompanied by a series of actual reported bug bounties. The book's collection of tales from the field will teach you how attackers trick users into giving away their sensitive information and how sites may reveal their vulnerabilities to savvy users. You'll even learn how you could turn your challenging new hobby into a successful career. You'll learn:

How the internet works and basic web hacking conceptsHow attackers compromise websitesHow to identify functionality commonly associated with vulnerabilitiesHow to find bug bounty programs and submit effective vulnerability reports
Real-World Bug Hunting is a fascinating soup-to-nuts primer on web security vulnerabilities, filled with stories from the trenches and practical wisdom. With your new understanding of site security and weaknesses, you can help make the web a safer place--and profit while you're at it.

GENRE
Computing & Internet
RELEASED
2019
9 July
LANGUAGE
EN
English
LENGTH
264
Pages
PUBLISHER
No Starch Press
SIZE
19.4
MB
Bug Bounty Bootcamp Bug Bounty Bootcamp
2021
The Web Application Hacker's Handbook The Web Application Hacker's Handbook
2011
Hacking APIs Hacking APIs
2022
Hands on Hacking Hands on Hacking
2020
Ethical Hacking Ethical Hacking
2021
HTTP: The Definitive Guide HTTP: The Definitive Guide
2002
Bug Bounty Bootcamp Bug Bounty Bootcamp
2021
Attacking Network Protocols Attacking Network Protocols
2017
Black Hat Go Black Hat Go
2020
The Web Application Hacker's Handbook The Web Application Hacker's Handbook
2011
Black Hat Python, 2nd Edition Black Hat Python, 2nd Edition
2014
Cracking Codes with Python Cracking Codes with Python
2018