Bug Bounty Bootcamp: The Guide to Finding and Reporting Web Vulnerabilities (Paperback)
Li, Vickie
- 出版商: No Starch Press
- 出版日期: 2021-12-07
- 售價: $1,800
- 貴賓價: 9.5 折 $1,710
- 語言: 英文
- 頁數: 416
- 裝訂: Quality Paper - also called trade paper
- ISBN: 1718501544
- ISBN-13: 9781718501546
立即出貨 (庫存 < 4)
買這商品的人也買了...
-
深入淺出 Linux TCP/IP 協定核心$520$442 -
Linux Kernel Hacks 改善效能、提昇開發效率及節能的技巧與工具$680$537 -
系統管理員懶人包|Shell Script 自動化指令集 (Wicked Cool Shell Scripts)$480$379 -
無瑕的程式碼-敏捷完整篇-物件導向原則、設計模式與 C# 實踐 (Agile principles, patterns, and practices in C#)$790$616 -
特洛伊木馬病毒程式設計:使用 Python$520$406 -
Real-World Bug Hunting: A Field Guide to Web Hacking$1,400$1,330 -
Working Effectively with Legacy Code : 管理、修改、重構遺留程式碼的藝術 (中文版)$720$562 -
Rust 權威指南 (The Rust Programming Language (Covers Rust 2018))$954$906 -
網絡安全防禦實戰 — 藍軍武器庫$408$388 -
再強一點:用 Go語言完成六個大型專案$780$616 -
Network Programming with Go: Learn to Code Secure and Reliable Network Services from Scratch$1,750$1,663 -
使用 AWS 在雲端建置 Linux 伺服器的 20堂課$500$350 -
矽谷工程師教你 Kubernetes:史上最全 CI/CD 中文應用指南(iT邦幫忙鐵人賽系列書)$600$468 -
WebSecurity 網站滲透測試:Burp Suite 完全學習指南 (iT邦幫忙鐵人賽系列書)$600$468 -
$374Web 漏洞搜索 (Real-World Bug Hunting : A Field Guide to Web Hacking) -
Practical Linux Forensics: A Guide for Digital Investigators (Paperback)$2,190$2,081 -
黑帽 Python|給駭客與滲透測試者的 Python 開發指南, 2/e (Black Hat Python : Python Programming for Hackers and Pentesters, 2/e)$450$355 -
Spring REST API 開發與測試指南|使用 Swagger、HATEOAS、JUnit、Mockito、PowerMock、Spring Test$580$458 -
Linux 網路內功修煉 - 徹底了解底層原理及高性能架構$780$616 -
演算法生存指南$800$632 -
OAuth 2.0 從入門到實戰:利用驗證和授權守護 API 的安全$600$468 -
遞迴演算法大師親授面試心法:Python 與 JavaScript 解題全攻略 (The Recursive Book of Recursion)$680$530 -
建構機器學習系統實踐指南$620$490 -
機器學習的訓練資料 (Training Data for Machine Learning)$780$616 -
資料工程基礎|規劃和建構強大、穩健的資料系統 (Fundamentals of Data Engineering)$980$774
相關主題
商品描述
Bug Bounty Bootcamp teaches you how to hack web applications. You will learn how to perform reconnaissance on a target, how to identify vulnerabilities, and how to exploit them. You'll also learn how to navigate bug bounty programs set up by companies to reward security professionals for finding bugs in their web applications.
Bug bounty programs are company-sponsored programs that invite researchers to search for vulnerabilities on their applications and reward them for their findings. This book is designed to help beginners with little to no security experience learn web hacking, find bugs, and stay competitive in this booming and lucrative industry.
You'll start by learning how to choose a program, write quality bug reports, and maintain professional relationships in the industry. Then you'll learn how to set up a web hacking lab and use a proxy to capture traffic. In Part 3 of the book, you'll explore the mechanisms of common web vulnerabilities, like XSS, SQL injection, and template injection, and receive detailed advice on how to find them and bypass common protections. You'll also learn how to chain multiple bugs to maximize the impact of your vulnerabilities.
Finally, the book touches on advanced techniques rarely covered in introductory hacking books but that are crucial to understand to hack web applications. You'll learn how to hack mobile apps, review an application's source code for security issues, find vulnerabilities in APIs, and automate your hacking process. By the end of the book, you'll have learned the tools and techniques necessary to be a competent web hacker and find bugs on a bug bounty program.
作者簡介
Vickie Li is a developer and security researcher experienced in finding and exploiting vulnerabilities in web applications. She has reported vulnerabilities to firms such as Facebook, Yelp and Starbucks and contributes to a number of online training programs and technical blogs.
