Envío gratis siempre a todo México.
Haz clic para hacer zoom
Not Available
Nestor N
Zed Attack Proxy Cookbook
Cargando comentarios…
Comparte
$739
$665
Envío gratis siempre
Comentarios
Cargando el resumen…
Cargando comentarios…
product
914324Zed Attack Proxy Cookbookhttps://www.gandhi.com.mx/zed-attack-proxy-cookbook/phttps://gandhi.vtexassets.com/arquivos/ids/846327/8d4caa6f-d60b-4caf-a92a-bde52f9b6cf8.jpg?v=638336457749400000665739MXNPackt PublishingInStock/Ebooks/911030Zed Attack Proxy Cookbook665739https://www.gandhi.com.mx/zed-attack-proxy-cookbook/phttps://gandhi.vtexassets.com/arquivos/ids/846327/8d4caa6f-d60b-4caf-a92a-bde52f9b6cf8.jpg?v=638336457749400000InStockMXN99999DIEbook20239781801810159_W3siaWQiOiJkYzE3ZmE2Yi0yYjA0LTRmYjAtYmQ5Ny1lNjU2ZWEyYzIwZDciLCJsaXN0UHJpY2UiOjczOSwiZGlzY291bnQiOjc0LCJzZWxsaW5nUHJpY2UiOjY2NSwiaW5jbHVkZXNUYXgiOnRydWUsInByaWNlVHlwZSI6Ildob2xlc2FsZSIsImN1cnJlbmN5IjoiTVhOIiwiZnJvbSI6IjIwMjQtMDQtMDhUMTY6MDA6MDBaIiwicmVnaW9uIjoiTVgiLCJpc1ByZW9yZGVyIjpmYWxzZX1d9781801810159_<p><strong>Dive into security testing and web app scanning with ZAP, a world-famous OWASP security tool</strong></p><h4>Key Features</h4><ul><li>Master ZAP to protect your systems from any type of attack</li><li>Get hands on with cybersecurity using this step-by-step guide packed with practical examples</li><li>Use advanced testing techniques on web applications such as XXE attacks and Java deserialization</li></ul><h4>Book Description</h4><p>Security is an ever-changing, fast-paced discipline. Thankfully, there are free tools that you can use to protect your systems. OWASP Zed Attack Proxy (ZAP) is the most popular one: it allows you to test for vulnerabilities and exploits with the same functionality as a licensed tool! But how does it work?</p><p>Zed Attack Proxy Cookbook contains a vast array of practical recipes to help you set up, configure, and use ZAP to protect your vital systems from adversaries of every description. If youre interested in cybersecurity or already working as a cybersecurity professional, this book will give you mastery of this popular security tool.</p><p>Youll start with an overview of ZAP and understand how to set up a basic lab environment for the hands-on activities covered in the rest of the book. As you progress, youll go through a myriad of step-by-step recipes detailing various types of exploits and vulnerabilities in web applications, as well as advanced techniques such as Java deserialization.</p><p>By the end of this Zap book, youll be able to install and deploy ZAP, conduct basic to advanced web application penetration attacks, use the tool for mobile and API testing, install and deploy a BOAST server that works with ZAP, and build ZAP into a continuous integration and continuous delivery (CI/CD) pipeline, among many other things.</p><h4>What you will learn</h4><ul><li>Install ZAP on different operating systems or environments</li><li>Find out how to crawl, passively scan, and actively scan web apps</li><li>Discover authentication and authorization exploits</li><li>Explore cryptography and test for business logic flaws</li><li>Conduct client-side testing, or A/B testing</li><li>Build an OAST server that can be used to conduct out-of-band attacks</li><li>Extend ZAP with add-ons, and build and configure your own</li></ul><h4>Who This Book Is For</h4><p>This book is for cybersecurity professionals, such as ethical hackers, application security engineers, and DevSecOps engineers. Students interested in web security, cybersecurity enthusiasts, and anyone from the open source cybersecurity community will find this book useful. A basic understanding of cybersecurity will be helpful to get the most out of this book.</p><h4>Table of Contents</h4><ol><li>Getting Started with OWASP Zed Attack Proxy (ZAP</li><li>Navigating around the UI</li><li>Configuring, Crawling, Scanning, and Reporting</li><li>Authentication Testing</li><li>Authorization Testing</li><li>Testing of Session Management</li><li>Validating (Data) Inputs - Part 1</li><li>Validating (Data) Inputs - Part 2</li><li>Testing for Error Handling</li><li>Testing for Weak Cryptography</li><li>Business Logic Testing</li><li>Client-Side (A/B) Testing</li><li>Advanced Techniques and Other Musings</li><li>Creating Extensions and Add-Ons</li></ol>(*_*)9781801810159_<p><strong>Dive into security testing and web app scanning with ZAP, a powerful OWASP security tool</strong></p><p><strong>Purchase of the print or Kindle book includes a free PDF eBook</strong></p><h4>Key Features</h4><ul><li>Master ZAP to protect your systems from different cyber attacks</li><li>Learn cybersecurity best practices using this step-by-step guide packed with practical examples</li><li>Implement advanced testing techniques, such as XXE attacks and Java deserialization, on web applications</li></ul><h4>Book Description</h4><p>Maintaining your cybersecurity posture in the ever-changing, fast-paced security landscape requires constant attention and advancements. This book will help you safeguard your organization using the free and open source OWASP Zed Attack Proxy (ZAP) tool, which allows you to test for vulnerabilities and exploits with the same functionality as a licensed tool.</p><p>Zed Attack Proxy Cookbook contains a vast array of practical recipes to help you set up, configure, and use ZAP to protect your vital systems from various adversaries. If youre interested in cybersecurity or working as a cybersecurity professional, this book will help you master ZAP.</p><p>Youll start with an overview of ZAP and understand how to set up a basic lab environment for hands-on activities over the course of the book. As you progress, youll go through a myriad of step-by-step recipes detailing various types of exploits and vulnerabilities in web applications, along with advanced techniques such as Java deserialization.</p><p>By the end of this ZAP book, youll be able to install and deploy ZAP, conduct basic to advanced web application penetration attacks, use the tool for API testing, deploy an integrated BOAST server, and build ZAP into a continuous integration and continuous delivery (CI/CD) pipeline.</p><h4>What you will learn</h4><ul><li>Install ZAP on different operating systems or environments</li><li>Explore how to crawl, passively scan, and actively scan web apps</li><li>Discover authentication and authorization exploits</li><li>Conduct client-side testing by examining business logic flaws</li><li>Use the BOAST server to conduct out-of-band attacks</li><li>Understand the integration of ZAP into the final stages of a CI/CD pipeline</li></ul><h4>Who this book is for</h4><p>This book is for cybersecurity professionals, ethical hackers, application security engineers, DevSecOps engineers, students interested in web security, cybersecurity enthusiasts, and anyone from the open source cybersecurity community looking to gain expertise in ZAP. Familiarity with basic cybersecurity concepts will be helpful to get the most out of this book.</p>...9781801810159_Packt Publishinglibro_electonico_16c5c757-e826-36a3-b11b-717fc59bdccd_9781801810159;9781801810159_9781801810159Nestor NInglésMéxicohttps://getbook.kobo.com/koboid-prod-public/packt-epub-b16d492f-7c6a-4935-a30b-500656fe836e.epub2023-03-10T00:00:00+00:00Packt Publishing