The Web Application Hacker's Handbook: Discovering and Exploiting Security Flaws
Rate this book
Clear rating
1 of 5 stars2 of 5 stars3 of 5 stars4 of 5 stars5 of 5 stars

The Web Application Hacker's Handbook: Discovering and Exploiting Security Flaws

4.0 of 5 stars 4.00  ·  rating details  ·  56 ratings  ·  7 reviews
This book is a practical guide to discovering and exploiting security flaws in web applications. The authors explain each category of vulnerability using real-world examples, screen shots and code extracts. The book is extremely practical in focus, and describes in detail the steps involved in detecting and exploiting each kind of security weakness found within a variety o...more
Paperback, 722 pages
Published October 1st 2007 by John Wiley & Sons
more details... edit details

Friend Reviews

To see what your friends thought of this book, please sign up.

Lists with This Book

Introduction to Algorithms by Thomas H. CormenThe C Programming Language by Brian W. KernighanSoftware Estimation by Steve McConnellClean Code by Robert C. MartinJoel on Software by Joel Spolsky
software-development
30th out of 30 books — 20 voters
The Web Application Hacker's Handbook by Dafydd StuttardA Bug Hunter's Diary by Tobias Klein
Books For the Aspiring Hacker
1st out of 2 books — 1 voter


More lists with this book...

Community Reviews

(showing 1-30 of 199)
filter  |  sort: default (?)  |  rating details
John Chilton
Jul 08, 2010 John Chilton rated it 3 of 5 stars
This book is a little long winded and a bit dry, so based just on the writing of the book I would have given it two stars. However the book shines in that it has an unconventional perspective and it stands by this perspective. It is written as guide to attacking applications, not securing them. I thought that would be a gimmick and each chapter would be 1/5 how to hack and 4/5 how to defend, but no quite the opposite is true. I am not sure it is the greatest approach to learning the material, bu...more
 · see review
Seth
Mar 09, 2009 Seth is currently reading it
Dafydd Stuttard (more commonly known as portswigger) is not only an expert in the field of web application penetration testing, but also excels at conveying highly technical concepts with eloquence.
 · see review
Elene Latsoshvili
Aug 16, 2010 Elene Latsoshvili rated it 5 of 5 stars
Shelves: programming
Loved the book. Maybe overdetailed in some parts, but it covers really lots and lots of things explained in a very good way :) a must-read for web application developers
 · see review
Erin
Jul 08, 2008 Erin rated it 3 of 5 stars
Useful for scoping, but omits finer details for obvious reasons. Almost all sections have examples that you will never see in the wild. Says, "Hack The Planet" on the back, so it's embarassing to carry around. Otherwise, a must-read... more for web app developers than auditors, though.
 · see review
William
Jan 24, 2011 William rated it 5 of 5 stars
Awesome book!
 · see review
John George
May 22, 2012 John George rated it 3 of 5 stars
Shelves: developer
Good reference books exposes you to various parts of a web application
 · see review
Jimmy O...
Aug 06, 2012 Jimmy O... rated it 3 of 5 stars
I never got a chance to finish this book.
 · see review
Gonka
May 05, 2013 Gonka marked it as to-read
Sandis
May 03, 2013 Sandis marked it as to-read
Abinash
Apr 10, 2013 Abinash marked it as to-read
Sergey
Apr 06, 2013 Sergey marked it as to-read
Pavel Pascari
Apr 05, 2013 Pavel Pascari marked it as to-read
Iyke
Apr 03, 2013 Iyke marked it as to-read
Daniela
Mar 28, 2013 Daniela marked it as to-read
Divya Kudalkar
Mar 28, 2013 Divya Kudalkar marked it as to-read
Daniel
Mar 20, 2013 Daniel marked it as to-read
Gemma
Mar 20, 2013 Gemma marked it as to-read
Owen Wang
Mar 18, 2013 Owen Wang marked it as to-read
Mohamed Ali
Mar 14, 2013 Mohamed Ali marked it as to-read
-d
Mar 03, 2013 -d marked it as to-read
Nima
Feb 17, 2013 Nima marked it as to-read
Shelves: pentesting
Eugeniy Bakin
Feb 07, 2013 Eugeniy Bakin marked it as to-read
Antti
Feb 04, 2013 Antti marked it as to-read
Chris
Feb 03, 2013 Chris marked it as to-read
« previous 1 3 4 5 6 7 next »

new topic
Discuss This Book

There are no discussion topics on this book yet. Be the first to start one »
Recommend it  |  Stats  |  Recent status updates

combine
Other Editions (1)

The Web Application Hacker's Handbook: Discovering and Exploiting Security Flaws (ebook)

Goodreads is hiring!

If you like books and love to build cool products, we may be looking for you.
Learn more »

Genres

Computer Science > Technical
3 users
Science > Computer Science
3 users
Computer Science > Programming
2 users
Internet > Web
2 users
See top shelves...

Books by Dafydd Stuttard

The Web Application Hacker's Handbook: Finding and Exploiting Security Flaws The Web Application Hacker's Handbook: Finding and Exploiting Security Flaws The Web Application Hacker's Handbook: Discovering and Exploiting Security Flaws The Web Application Hacker's Handbook: Finding and Exploiting Security Flaws
More…

Share This Book

Your website

Trivia About The Web Applicati...

No trivia or quizzes yet. Add some now »

© 2013 Goodreads Inc