The Web Application Hacker’s Handbook
Well it’s getting closer! My friend, PortSwigger (also known as Dafydd Stuttard - author of Burp Suite) is getting ever closer to completion of his new book The Web Application Hacker’s Handbook. He’s co-authoring it with Marcus Pinto. I’ve known about the book for a while now, and am really looking forward to reading it.
He’s also released a table of contents for the book so people can get a head’s up. It looks like a pretty thorough writeup on how to do manual and semi-manual security assessments. It’s going to look nice on my bookshelf - once I get my bookshelf looking nice that is.
September 12th, 2007 at 12:03 pm
Wow! Judging by the table of contents, this book looks very very promising. I plan on purchasing it and learning quite a bit. It seems as though it will go in to adequate detail as well, which is important in order to protect an application from an area that a particular malicious user may have an expertise in. Partial security is not much better than zero security- someone will always have the knowledge to find flaws, so such explicitness in this sort of book is crucial.
-Dan
September 12th, 2007 at 1:40 pm
Preordered way back!
September 12th, 2007 at 6:01 pm
good, but, why publish PDF, I can’t buy it in China !
September 12th, 2007 at 10:31 pm
Ah, glad to see another WAS book coming out! Soon we will have our very own set of bibles.
September 12th, 2007 at 11:23 pm
This is looking awesome - there is a lot in there that not in the other books, like code review, writing attack scripts, logic flaws, & app arcitecture. The book also seems a lot longer than what Amazon say so hopefully has a lot of detail. I will defeinitely order this.
September 13th, 2007 at 1:01 am
I can’t wait!
September 13th, 2007 at 1:42 am
this looks very nice based on the ToC
September 13th, 2007 at 12:48 pm
I looked at the table of contents, saw a lot of things I’m quite familiar with, and saw a lot of things that would be helpful to know, which is why I’ll most likely order the book.
September 13th, 2007 at 9:29 pm
I knew this book too and blog about it. I mean i am also preparing to get a copy of it.
September 15th, 2007 at 8:26 am
Yup. you are right. Another fabulouas book by WROX :
Professional Pen Testing for Web Applications.
Its a good book too.
September 18th, 2007 at 9:06 pm
I think this will be one of few books worth actually paying for a hard copy of.. Normally with this kind of book, I would just glance at an online version and glean any information from it within about 10 minutes, but this looks like a meaty, useful reference for just about everything.
September 19th, 2007 at 5:45 pm
while you wait you can watch my videos.
ask rsnake for the link because I don’t want to
spam.
(remove this link if you dont want
spam.. http://fazed-darkstar.blogspot.com/)
September 28th, 2007 at 6:13 am
Amazon suggest me to buy it with “The Shellcoder’s Handbook: Discovering and Exploiting Security Holes” by Chris Anley.
What do you think about that book?
October 12th, 2007 at 10:07 am
Just ordered this, looking forward to receiving it. Too bad it’s not on Amazon.co.uk, shipping is wickedly slow from US to europe
October 17th, 2007 at 2:39 am
i am looking forward to get this book,it’s very good.
but i don’t know when can i see it in china.
October 31st, 2007 at 8:01 pm
I am looking forward to it too!
Hope it will come to China ASAP!
December 31st, 2007 at 2:41 am
find the book which was wrotten by x-master on this site = www.cyber-warrior.org , you will be happier than now , really
January 12th, 2008 at 8:31 am
I get this book recently from amazon and it looks very promissing!!
Good work.
vlan7