Whether it's petty defacing or full-scale cyber robbery, hackers are moving to the Web along with everyone else. Organizations using Web-based business applications are increasingly at risk. Web Hacking: Attacks and Defense is a powerful guide to the latest information on Web attacks and defense. Security experts Stuart McClure (lead author of Hacking Exposed), Saumil Shah, and Shreeraj Shah present a broad range of Web attacks and defense.Features include: * Overview of the Web and what hackers go after * Complete Web application security methodologies * Detailed analysis of hack techniques * Countermeasures * What to do at development time to eliminate vulnerabilities * New case studies and eye-opening attack scenarios * Advanced Web hacking concepts, methodologies, and tools "How Do They Do It?"sections show how and why different attacks succeed, including: * Cyber graffiti and Web site defacements * e-Shoplifting * Database access and Web applications * JavaT application servers; how to harden your JavaT Web Server * Impersonation and session hijacking * Buffer overflows, the most wicked of attacks * Automated attack tools and wormsAppendices include a listing of Web and database ports, cheat sheets for remote command execution, and source code disclosure techniques.Web Hacking informs from the trenches. Experts show you how to connect the dots - how to put the stages of a Web hack together so you can best defend against them. Written for maximum brain absorption with unparalleled technical content and battle-tested analysis, Web Hacking will help you combat potentially costly security threats and attacks.