Monday, April 16, 2012

Books for experts

Books for experts


Foundations of Security What Every Programmer Needs to Know

Posted: 15 Apr 2012 08:20 AM PDT

Foundations of Security What Every Programmer Needs to Know Foundations of Security What Every Programmer Needs to Know

Foundations of Security What Every Programmer Needs to Know | Neil Daswani, Christoph Kern, Anita Kesavan

Physically securing your system and laying down good policies for employees and users is often just as important as using the technological security mechanisms that we cover in this book. All of your servers should be behind locked doors, and only a privileged set of employees (typically system and security administrators) should have access to them. In addition, data centers used to house farms of servers can employ cameras, card reader and biometric locks, and even "vaults" of various kinds, depending upon the sensitivity of data stored on the servers. In addition to mechanisms that limit access to a physical space to prevent asset theft and unauthorized entry, there are also mechanisms that protect against information leakage and document theft. Documents containing sensitive information can be shredded before they're disposed of so that determined hackers can be prevented from gathering sensitive information by sifting through the company's garbage. Such an attack is often referred to as dumpster diving.

 

Link download :

  1. Mediafire : Foundations of Security What Every Programmer Needs to Know pdf 

  2. Radpidshare : Foundations of Security What Every Programmer Needs to Know pdf 

Developer’s guide to web application security

Posted: 15 Apr 2012 07:36 AM PDT

developer guide to web application security 209x300 Developers guide to web application security

Developer’s guide to Web Application Security | ISBN-10: 159749061X | ISBN-13: 978-1597490610|Michael Cross

Over 75% of network attacks are targeted at the web application layer. This book provides explicit hacks, tutorials, penetration tests, and step-by-step demonstrations for security professionals and Web application developers to defend their most vulnerable applications.

This book defines Web application security, why it should be addressed earlier in the lifecycle in development and quality assurance, and how it differs from other types of Internet security. Additionally, the book examines the procedures and technologies that are essential to developing, penetration testing and releasing a secure Web application. Through a review of recent Web application breaches, the book will expose the prolific methods hackers use to execute Web attacks using common vulnerabilities such as SQL Injection, Cross-Site Scripting and Buffer Overflows in the application layer. By taking an in-depth look at the techniques hackers use to exploit Web applications, readers will be better equipped to protect confidential.

* The Yankee Group estimates the market for Web application-security products and services will grow to $1.74 billion by 2007 from $140 million in 2002

* Author Matt Fisher is a highly sought after speaker who regularly delivers Web Application presentations at leading conferences including: Black Hat, TechnoSecurity, CanSec West, Shmoo Con, Information Security, RSA Conferences, and more

* The Companion Web site will have downloadable code and scripts presented in the book

 Link  download :

  1. Mediafire  : Developer’s guide to web application security pdf 

  2. Rapidshare : Developer’s guide to web application security pdf

  3. 4share.com  : Developer’s guide to web application security pdf 

No comments:

Post a Comment