Web Application Defender's Cookbook – Battling Hackers and Protecting Users Battling hackers and protecting users

Defending your web applications against hackers and attackers

The top-selling book Web Application Hacker's Handbook showed how attackers and hackers identify and attack vulnerable live web applications. This new Web Application Defender's Cookbook is the perfect counterpoint to that book: it shows you how to defend. Authored by a highly credentialed defensive security expert, this new book details defensive security methods and can be used as courseware for training network security personnel, web server administrators, and security consultants.

Each "recipe" shows you a way to detect and defend against malicious behavior and provides working code examples for the ModSecurity web application firewall module. Topics include identifying vulnerabilities, setting hacker traps, defending different access points, enforcing application flows, and much more.
* Provides practical tactics for detecting web attacks and malicious behavior and defending against them
* Written by a preeminent authority on web application firewall technology and web application defense tactics
* Offers a series of "recipes" that include working code examples for the open-source ModSecurity web application firewall module

Find the tools, techniques, and expert information you need to detect and respond to web application attacks with Web Application Defender's Cookbook: Battling Hackers and Protecting Users.

This book is designed to provide a methodology for identifying malicious web application behavior and then defending against it.  Each topic/recipe includes practical implement advice along with working code examples for the popular open source ModSecurity web application firewall module. The book provides recipes and ingredients including: Preparing the Battlespace Vulnerability Identification and Remediation Poisoned Pawns - Setting Hacker Traps Reputation and 3rd Party Correlation Request Data Analysis Response Data Analysis Defending Authentication Defending Session State Defending Access Control Defending Input Validation Defending Client Attacks Defending File Uploads Enforcing User Rate and Application Flows System Rate and Flow Anomalies Tactical Response Actions

Defending your web applications against hackers and attackers The top-selling book Web Application Hacker's Handbook showed how attackers and hackers identify and attack vulnerable live web applications. This new Web Application Defender's Cookbook is the perfect counterpoint to that book: it shows you how to defend. Authored by a highly credentialed defensive security expert, this new book details defensive security methods and can be used as courseware for training network security personnel, web server administrators, and security consultants. Each "recipe" shows you a way to detect and defend against malicious behavior and provides working code examples for the ModSecurity web application firewall module. Topics include identifying vulnerabilities, setting hacker traps, defending different access points, enforcing application flows, and much more. Provides practical tactics for detecting web attacks and malicious behavior and defending against them Written by a preeminent authority on web application firewall technology and web application defense tactics  Offers a series of "recipes" that include techniques and information, as well as working code examples for the open-source ModSecurity web application firewall module Find the tools, techniques, and expert information you need to detect and respond to web application attacks with Web Application Defender's Cookbook: Battling Hackers and Protecting Users.