本书通过实际案例展示如何发现并修复代码漏洞,避免SQL注入攻击、跨站脚本等常见安全问题。作者结合在大型金融机构的工作经验,指导开发者转变思维,从破坏网站的角度审视代码安全性。
版权声明:原创作品,允许转载,转载时请务必以超链接形式标明文章原始出版、作者信息和本声明。否则将追究法律责任。
http://blog.youkuaiyun.com/topmvp - topmvp
*This concise and practical book shows where code vulnerabilities lie-without delving into the specifics of each system architecture, programming or scripting language, or application-and how best to fix them
*Based on real-world situations taken from the author's experiences of tracking coding mistakes at major financial institutions
*Covers SQL injection attacks, cross-site scripting, data manipulation in order to bypass authorization, and other attacks that work because of missing pieces of code
*Shows developers how to change their mindset from Web site construction to Web site destruction in order to find dangerous code
http://rapidshare.com/files/53017483/0470857447.rar
http://depositfiles.com/files/1659720
*This concise and practical book shows where code vulnerabilities lie-without delving into the specifics of each system architecture, programming or scripting language, or application-and how best to fix them
*Based on real-world situations taken from the author's experiences of tracking coding mistakes at major financial institutions
*Covers SQL injection attacks, cross-site scripting, data manipulation in order to bypass authorization, and other attacks that work because of missing pieces of code
*Shows developers how to change their mindset from Web site construction to Web site destruction in order to find dangerous code
http://rapidshare.com/files/53017483/0470857447.rar
http://depositfiles.com/files/1659720
扫一扫
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
