The Web Application Hacker's Handbook

top 2
Hiền Hiền

Dafydd Stuttard is an independent security consultant, author, and software developer that specializes in web application and compiled software penetration testing. Dafydd invented the popular Burp Suite of hacking tools under the moniker PortSwigger.


Marcus Pinto provides online application attack and defense security consulting and training to prominent global enterprises in the financial, government, telecom, gambling, and retail industries.


Most firms' front doors are web apps, which expose them to assaults that may reveal personal information, execute fraudulent transactions, or compromise ordinary users. The Web Application Hacker's Handbook has been thoroughly updated and reworked to cover the most recent step-by-step approaches for attacking and defending a variety of ever-changing web applications. You'll look at the new technologies used in web applications that have emerged since the first edition, as well as the new attack strategies that have been created, notably on the client side.


  • Describes how to overcome new technologies and approaches for protecting web applications from assaults that have emerged since the last version.
  • New remoting frameworks, HTML5, cross-domain integration techniques, UI redress, framebusting, HTTP parameter pollution, hybrid file attacks, and other topics are covered.
  • The authors have created a companion website that allows users to try out the assaults discussed, provides solutions to the questions provided at the end of each chapter, and provides a simplified methodology and task checklist.


This book is the most current resource on the crucial topic of identifying, exploiting, and avoiding web application security flaws, focusing on areas of web application security where things have evolved in recent years.


Author: Dafydd Stuttard and Marcus Pinto

Link to buy: https://www.amazon.com/Web-Application-Hackers-Handbook-Exploiting/dp/1118026470/

Ratings: 4.7 out of 5 stars (from 818 reviews)

Best Sellers Rank: #69,890 in Books

#39 in Privacy & Online Safety

#70 in Computer Hacking

#90 in Internet & Telecommunications



https://www.amazon.com/
https://www.amazon.com/
https://www.amazon.com/
https://www.amazon.com/

Objective Completely Accurate

Toplist Joint Stock Company
Address: 3rd floor, Viet Tower Building, No. 01 Thai Ha Street, Trung Liet Ward, Dong Da District, Hanoi City, Vietnam
Phone: +84369132468 - Tax code: 0108747679
Social network license number 370/GP-BTTTT issued by the Ministry of Information and Communications on September 9, 2019
Privacy Policy