Home | Amazing | Today | Tags | Publishers | Years | Account | Search 
Advertisement
unlimited object storage image
Today's Books
Hunting Security Bugs

Buy
Hunting Security Bugs, 9780735621879 (073562187X), Microsoft Press, 2006

Your essential reference to software security testing—from the experts.

Learn how to think like an attacker—and identify potential security issues in your software. In this essential guide, security testing experts offer practical, hands-on guidance and code samples to help you find, classify, and assess security bugs before your software is released.

Discover how to:

  • Identify high-risk entry points and create test cases
  • Test clients and servers for malicious request/response bugs
  • Use black box and white box approaches to help reveal security vulnerabilities
  • Uncover spoofing issues, including identity and user interface spoofing
  • Detect bugs that can take advantage of your program’s logic, such as SQL injection
  • Test for XML, SOAP, and Web services vulnerabilities
  • Recognize information disclosure and weak permissions issues
  • Identify where attackers can directly manipulate memory
  • Test with alternate data representations to uncover canonicalization issues
  • Expose COM and ActiveX repurposing attacks

About the Authors

Tom Gallagher has been intrigued with both physical and computer security from a young age. In 1999, Tom graduated from Loyola University of New Orleans and was hired to work as a penetration tester for Microsoft SharePoint. Since then, he has continued to work on the security of different parts of Microsoft Office and is currently the lead of the Office Security Test team. This team is primarily focused on penetration testing, writing security testing tools, and educating program managers, developers, and testers about security issues.

Bryan Jeffries has been interested in computers for as long as he can remember. Upon graduating from North Carolina State University in 2001 with a BS degree in Computer Science, he left his home state of North Carolina to work for Microsoft Corporation in Redmond, Washington. He has been working as a software engineer in Microsoft SharePoint Products and Technologies for the past five years and is responsible for driving security testing across Microsoft Office Server System.

Lawrence Landauer's first interest in computers was as a hobby. After graduating from Montana State University in 1995 with a BS degree in Industrial and Management Engineering, he has since worked for Microsoft Corporation as a software engineer working on coding, testing, and training projects related to security, personal productivity, and deployment.

Comments
Add Your Comment
(HTML tags aren't allowed.)

Amazing Books
Inequality and Uncertainty: Current Challenges for Cities
Inequality and Uncertainty: Current Challenges for Cities
It is not possible to ignore the fact that cities are not only moving, vibrant and flourishing spaces, promising hope for better quality of life, but that they also accumulate and reflect significant problems. This book explores the relational and dynamic nature of urban inequalities, including their visible and invisible forms. By...
Principles of Broadband Switching & Networks
Principles of Broadband Switching & Networks

The past few decades have seen the merging of many computer and communication applications. Enabled by the advancement of optical fiber, wireless communication, and very-large-scale integration (VLSI) technologies, modern telecommunication networks can be regarded as one of the most important inventions of the past century.

Before...

Stack Silver Get Gold: How To Buy Gold And Silver Bullion Without Getting Ripped Off!
Stack Silver Get Gold: How To Buy Gold And Silver Bullion Without Getting Ripped Off!

Want to learn how to start safely buying gold and silver bullion like a precious metals expert in about an hour?
 

This 2017 updated edition of Stack Silver Get Gold is the only gold and silver investing book you'll ever need because its written by a nationally recognized precious metals...


Building Solutions with the Microsoft .NET Compact Framework: Architecture and Best Practices for Mobile Development
Building Solutions with the Microsoft .NET Compact Framework: Architecture and Best Practices for Mobile Development

Whether you are an architect, developer, or manager, Building Solutions with the Microsoft .NET Compact Framework is your guide to creating effective solutions for mobile devices with .NET. Authors Dan Fox and Jon Box walk you through four essential architectural concepts and programming...

Statistics and Data with R: An applied approach through examples
Statistics and Data with R: An applied approach through examples
R, an Open Source software, has become the de facto statistical computing environment. It has an excellent collection of data manipulation and graphics capabilities. It is extensible and comes with a large number of packages that allow statistical analysis at all levels – from simple to advanced – and in numerous fields...
Mysterious Creatures: A Guide to Cryptozoology, 2 Volume Set
Mysterious Creatures: A Guide to Cryptozoology, 2 Volume Set
From Bigfoot and the bonobo to the Central Asian wildman and winged humanoid, this volume presents over 1000 A-to-Z entries on every reported cryptid - i.e. legendary animal unknown to science - from around the world. Each entry traces the history of sightings and known habitats, including details such as: popular name; distribution; etymology;...
©2021 LearnIT (support@pdfchm.net) - Privacy Policy