How to Break Software Security describes the general problem of software security in a practical perspective from a software tester's point of view. It defines prescriptive techniques (attacks that testers can use on their own software) that are designed to ferret out security vulnerabilities in software applications. The book's style is easy to read and provides readers with the techniques and advice to hunt down security bugs and see that they're destroyed before the software is released.Accompanying the book is a CD-ROM containing Holodeck, which tests for security vulnerabilities. There are also a number of bug-finding tools, freeware, and an easy-to-use port scanner included on the CD-ROM.
- Limba : Engleza
- Cuprins : (Chapters 1-6 conclude with a "Conclusion," "Exercises," and "References." Chapter 7 concludes with a "Conclusion" and "References" and the Appendices conclude with only "References.")
I. INTRODUCTION.1. A Fault Model for Software Security Testing.
Why Security Testing is Different.A Fault Model for Security Vulnerabilities.Security Concerns and the How to Break Software Fault Model. Creating an Attack Plan.A Note on Format.
II. CREATING UNANTICIPATED USER INPUT SCENARIOS.2. Attacking Software Dependencies.
First Attack: Block access to libraries.Second Attack: Manipulate the application's registry values.Third Attack: Force the application to use corrupt files.Fourth Attack: Manipulate and replace files that the application creates, reads from, writes to or executes.Fifth Attack: F
- Data Publicarii : 2004
- Editie : 1
- Format : Paperback
- Numar pagini : 208
- ISBN : 9780321194336