Web Security for Developers: Real Threats, Practical Defense (Paperback)

Web Security for Developers: Real Threats, Practical Defense Cover Image
$29.95
WE CAN ORDER THIS FOR YOU (store pickup in 5-14 days)

Description


Website security made easy. This book covers the most common ways websites get hacked and how web developers can defend themselves.

The world has changed. Today, every time you make a site live, you're opening it up to attack.

A first-time developer can easily be discouraged by the difficulties involved with properly securing a website. But have hope: an army of security researchers is out there discovering, documenting, and fixing security flaws. Thankfully, the tools you'll need to secure your site are freely available and generally easy to use.

Web Security for Developers will teach you how your websites are vulnerable to attack and how to protect them. Each chapter breaks down a major security vulnerability and explores a real-world attack, coupled with plenty of code to show you both the vulnerability and the fix.

You'll learn how to:
    Protect against SQL injection attacks, malicious JavaScript, and cross-site request forgery
    Add authentication and shape access control to protect accounts
    Lock down user accounts to prevent attacks that rely on guessing passwords, stealing sessions,
    or escalating privileges
    Implement encryption
    Manage vulnerabilities in legacy code
    Prevent information leaks that disclose vulnerabilities
    Mitigate advanced attacks like malvertising and denial-of-service

As you get stronger at identifying and fixing vulnerabilities, you'll learn to deploy disciplined, secure code and become a better programmer along the way.

About the Author


Malcolm McDonald has been programming for over 20 years. McDonald is the creator of www.hacksplaining.com, an online training program for web developers.

Praise For…


"Reads easily and provides essential knowledge to aspiring web developers."
—Help Net Security


"You can frame the usefulness of this book several ways: It’s well suited to those who are transitioning from development to security. It’s also another great security beginner-level read, providing introductions to an array of pen testing tools that will help you do your job better. And finally, it’s a terrific resource for developers looking to build more secure applications."
—Britt Kemp, Bishop Fox Labs


Product Details
ISBN: 9781593279943
ISBN-10: 1593279949
Publisher: No Starch Press
Publication Date: June 19th, 2020
Pages: 216
Language: English