The Web Application Hacker′s Handbook: Finding and Exploiting Security Flaws

Very good condition book

Good

This book took me months to finish, but it's worth it. Some of the hacking tools mentioned don't exist anymore and you cannot test the vulnerabilities on the WAHH website because it doesn't exist. All the vulnerabilities mentioned are still relevant, except for a few related to Flash and Silverlight which I promptly skipped. The summary and questions at the end of each chapter are good to consolidate knowledge. Chapter 12 on cross site scripting is simultaneously the longest, most important, and most boring, in my opinion. It's funny that there is an entire chapter (9) devoted to SQL but only a paragraph about NoSQL which says "it's not popular enough so we won't discuss it". How times have changed!

Portswigger web academy labları yardımcı olması için aldım kesinlikle alınır

Other reviewers have said that this book is best used as a reference, they say not to read this ~700 page book cover-to-cover. I read this cover to cover. While on a first read-through it was not possible to take everything in, I found this to be highly accessible for a technical book. The writing style was quite casual. Examples are made from an informed perspective and relevant background for every exploit was presented in an understandable way. This is not a "cook-book" of ready to use exploits, but more an explanation of the mind-set required to develop your own exploits and a presentation of the background to specific circumstances that allow such exploits. I have to say that this is an old book considering the pace of technological advancement and reference is made to deprecated technologies such as Flash and Silverlight, but as a primer, a historical snapshot and an introduction to the mind-set required to effectively use exploits in general, this was a very good read. Don't expect to sit down and have an easy time, this is a technical book and I found it challenging in this respect, but I am extremely glad I decided to purchase this book and read it cover-to-cover. I would say this book is best read while dividing time with more current resources such as the Portswigger Academy, labs provided by sites such as TryHackMe, etc. Dafydd Stuttard, one of the authors, is the core developer of BurpSuite (by Portswigger), and reading this summary of the web hacking landscape has given me a new perspective on this world-leading application. I would strongly recommend this to anyone interested in web hacking specifically, but also hacking in general.

Tratamiento muy completo, exhaustivo y trata todos los temas con mucha claridad, el seguimiento de los temas es muy fácil. Gran cantidad de ejemplos.

Book itself is nice The shipper didn't gave attention to packaging , I specified that it should be with gift option , book came with damaged pages ... with some sheet of brown paper on it ..