Practical Web Penetration Testing

Secure web applications using Burp Suite, Nmap, Metasploit, and more

By: Gus Khawaja

Write A Review

eText | 22 June 2018 | Edition Number 1

At a Glance

Format
ePUB

eText

$53.89

or 4 interest-free payments of $13.47 with

or

Instant online reading in your Booktopia eTextbook Library *

Learn how to execute web application penetration testing end-to-end

About This Book

Build an end-to-end threat model landscape for web application security
Learn both web application vulnerabilities and web intrusion testing
Associate network vulnerabilities with a web application infrastructure

Who This Book Is For

Practical Web Penetration Testing is for you if you are a security professional, penetration tester, or stakeholder who wants to execute penetration testing using the latest and most popular tools. Basic knowledge of ethical hacking would be an added advantage.

What You Will Learn

Learn how to use Burp Suite effectively
Use Nmap, Metasploit, and more tools for network infrastructure tests
Practice using all web application hacking tools for intrusion tests using Kali Linux
Learn how to analyze a web application using application threat modeling
Know how to conduct web intrusion tests
Understand how to execute network infrastructure tests
Master automation of penetration testing functions for maximum efficiency using Python

In Detail

Companies all over the world want to hire professionals dedicated to application security. Practical Web Penetration Testing focuses on this very trend, teaching you how to conduct application security testing using real-life scenarios.

To start with, you'll set up an environment to perform web application penetration testing. You will then explore different penetration testing concepts such as threat modeling, intrusion test, infrastructure security threat, and more, in combination with advanced concepts such as Python scripting for automation. Once you are done learning the basics, you will discover end-to-end implementation of tools such as Metasploit, Burp Suite, and Kali Linux. Many companies deliver projects into production by using either Agile or Waterfall methodology. This book shows you how to assist any company with their SDLC approach and helps you on your journey to becoming an application security specialist.

By the end of this book, you will have hands-on knowledge of using different tools for penetration testing.

Style and approach

In this book, you will learn and understand the workflow of application security testing. Starting from analysis using threat modeling until the testing phase and before the web project goes into production, you will be able conduct effective penetrating testing using web intrusion tests , network infrastructure tests, and code review.

on

Desktop

Tablet

Mobile

More in Data Encryption

eBOOK

Cyber War

The Next Threat to National Security and What to Do About It

eBook

RRP $29.99

eBook

eBook

RRP $14.29

$13.99

eBOOK

The Joy of Cryptography

An Undergraduate Course in Provable Security

eBook

RRP $143.57

$114.99

20%
OFF

eBOOK

Microsoft Security Operations Analyst Exam Ref SC-200 Guide

Achieve SC-200 Certification with real-world Microsoft Security Operations insights

eBook

eBOOK

Regulating Access and Transfer of Data

Global Competition Law and Economics Policy

eBook

RRP $197.95

eBook

$7.99

Practical Web Penetration Testing

Secure web applications using Burp Suite, Nmap, Metasploit, and more

At a Glance

eText

Why choose an eTextbook?

Instant Access *

Read Aloud

Study Tools

* eTextbooks are not downloadable to your eReader or an app and can be accessed via web browsers only. You must be connected to the internet and have no technical issues with your device or browser that could prevent the eTextbook from operating.

About This Book

Who This Book Is For

What You Will Learn

In Detail

Style and approach

on

You Can Find This eBook In

More in Data Encryption

Cyber War

The Next Threat to National Security and What to Do About It

At Large

The Strange Case of the World's Biggest Internet Invasion

Decrypting Infosec

A Key to Information Security

CCISO Explained Like I Am 5

Explain "IT" Like I Am 5, #1

Cyber Guard

Comprehensive Web Protection

Block Free Trial Abuse Fast

Simple Solutions for Developers & Website Owners

Security and Privacy in IoMT

Challenges and Solutions

Secure APIs

Design, build, and implement

Mastering Endpoint Management using Microsoft Intune Suite

Learn Everything About Intune Suite

Security and Privacy of Cyber-Physical Systems

Emerging Trends, Technologies, and Applications

Invasion of Privacy

T3CH TALK: THE BLUEPRINT | BREAKING THE CODE, #3

Before Buying Cybersecurity

How to Evaluate, Negotiate, and Partner with IT Security Providers

The Joy of Cryptography

An Undergraduate Course in Provable Security

Microsoft Security Operations Analyst Exam Ref SC-200 Guide

Achieve SC-200 Certification with real-world Microsoft Security Operations insights

Network of Guardians

A Unified Framework for Cyber Defense

Payment Card Industry Professional

PCIP v4.0 - 2nd Edition

Code, Crisis & Capes

IT Professionals Powered by Superheroes

(ISC)2 Certified Cloud Security Professional CCSP Realistic Practice Tests

CompTIA Security+ SY0-601 Exam Practice Tests

(ISC)2 Certified Information Systems Security Professional CISSP Realistic Practice Test

Regulating Access and Transfer of Data

Global Competition Law and Economics Policy

Cryptocurrency

Exploring Digital Assets and Blockchain Innovation in the World of Bitcoin Cash

Decentralized Finance

Building Trustless Wealth Through Open Protocols and Smart Innovation

Ethereum Blockchain

A Guide to Smart Contracts and Decentralized Applications

This product is categorised by