Read more
Informationen zum Autor van der Linden! Maura A. Klappentext Written in simple! common terms! "Testing Code Security" is a consolidated resource designed to teach beginning and intermediate testers the software security concepts needed to conduct relevant and effective tests. Zusammenfassung Describes the essential software security concepts that are needed to conduct relevant and effective tests. This book considers foundation concepts, processes and techniques in security testing, security test planning, threat-modeling, and how to test for them. It is suitable for various testers working in any environment. Inhaltsverzeichnis Introduction! Security Vocabulary! Software Testing and Changes in the Security Landscape! All Trust Is Misplaced! Security Testing Considerations! Threat Modeling and Risk Assessment Processes! Personas and Testing! Security Test Planning! Sample Security Considerations! Vulnerability Case Study - Brute Force Browsing! Vulnerability Case Study - Buffer Overruns! Vulnerability Case Study - Cookie Tampering! Vulnerability Case Study: Cross-Site Scripting (XSS)! Vulnerability Case Study: Denial of Service/Distributed Denial of Service! Vulnerability Case Study: Format String Vulnerabilities! Vulnerability Case Study: Integer Overflows and Underflows! Vulnerability Case Study: Man-in-the-Middle Attacks! Vulnerability Case Study - Password Cracking! Vulnerability Case Study - Session Hijacking! Vulnerability Case Study - Spoofing Attacks! Vulnerability Case Study - SQL Injection! Fuzz Testing! Background - Cryptography! Background - Firewalls! Background - OSI Network Model! Background - Proxy Servers! Background - TCP/IP and Other Networking Protocols! Background - Test Case Outlining (TCO)! Additional Sources of Information! Index
