Skip to Main Content (Press Enter)
Real-World Bug Hunting by Peter Yaworski
Add Real-World Bug Hunting to bookshelf
Add to Bookshelf

Look Inside

Real-World Bug Hunting

A Field Guide to Web Hacking

A Field Guide to Web Hacking

By Peter Yaworski

By Peter Yaworski

By Peter Yaworski

By Peter Yaworski

Best Seller
Paperback $39.95

Jul 09, 2019 | ISBN 9781593278618

Ebook $23.99

Jul 09, 2019 | ISBN 9781593278625

All Formats
+
    Real-World Bug Hunting by Peter Yaworski
    Paperback $39.95
    Jul 09, 2019 | ISBN 9781593278618

    Buy from Other Retailers:

    See All Formats (1) +
    • $39.95

      Jul 09, 2019 | ISBN 9781593278618

      Buy from Other Retailers:

    • Jul 09, 2019 | ISBN 9781593278625

      Buy from Other Retailers:

    Buy the Ebook:

    About Real-World Bug Hunting

    Learn how people break websites and how you can, too.

    Real-World Bug Hunting is the premier field guide to finding software bugs. Whether you’re a cyber-security beginner who wants to make the internet safer or a seasoned developer who wants to write secure code, ethical hacker Peter Yaworski will show you how it’s done.

    You’ll learn about the most common types of bugs like cross-site scripting, insecure direct object references, and server-side request forgery. Using real-life case studies of rewarded vulnerabilities from applications like Twitter, Facebook, Google, and Uber, you’ll see how hackers manage to invoke race conditions while transferring money, use URL parameter to cause users to like unintended tweets, and more.

    Each chapter introduces a vulnerability type accompanied by a series of actual reported bug bounties. The book’s collection of tales from the field will teach you how attackers trick users into giving away their sensitive information and how sites may reveal their vulnerabilities to savvy users. You’ll even learn how you could turn your challenging new hobby into a successful career. You’ll learn:

  • How the internet works and basic web hacking concepts
  • How attackers compromise websites
  • How to identify functionality commonly associated with vulnerabilities
  • How to find bug bounty programs and submit effective vulnerability reports

    • Real-World Bug Hunting is a fascinating soup-to-nuts primer on web security vulnerabilities, filled with stories from the trenches and practical wisdom. With your new understanding of site security and weaknesses, you can help make the web a safer place–and profit while you’re at it.

    About Real-World Bug Hunting

    Learn how people break websites and how you can, too.

    Real-World Bug Hunting is the premier field guide to finding software bugs. Whether you’re a cyber-security beginner who wants to make the internet safer or a seasoned developer who wants to write secure code, ethical hacker Peter Yaworski will show you how it’s done.

    You’ll learn about the most common types of bugs like cross-site scripting, insecure direct object references, and server-side request forgery. Using real-life case studies of rewarded vulnerabilities from applications like Twitter, Facebook, Google, and Uber, you’ll see how hackers manage to invoke race conditions while transferring money, use URL parameter to cause users to like unintended tweets, and more.

    Each chapter introduces a vulnerability type accompanied by a series of actual reported bug bounties. The book’s collection of tales from the field will teach you how attackers trick users into giving away their sensitive information and how sites may reveal their vulnerabilities to savvy users. You’ll even learn how you could turn your challenging new hobby into a successful career. You’ll learn:

  • How the internet works and basic web hacking concepts
  • How attackers compromise websites
  • How to identify functionality commonly associated with vulnerabilities
  • How to find bug bounty programs and submit effective vulnerability reports

    • Real-World Bug Hunting is a fascinating soup-to-nuts primer on web security vulnerabilities, filled with stories from the trenches and practical wisdom. With your new understanding of site security and weaknesses, you can help make the web a safer place–and profit while you’re at it.

    Product Details

    Category: Science & Technology

    Paperback | $39.95
    Published by No Starch Press
    Jul 09, 2019 | 264 Pages | ISBN 9781593278618

    Category: Science & Technology

    Ebook | $23.99
    Published by No Starch Press
    Jul 09, 2019 | 264 Pages | ISBN 9781593278625

    YOU MAY ALSO LIKE

    Praise

    “I am quite sure that [this book is] going to be one of the most recommended books for web app pen-testing. If it is not already.”
    —Sudo Realm

    “A brilliant resource for anyone who aspires to be a professional bug hunter.”
    —Dana Epp, Security Boulevard

    Looking for More Great Reads?
    21 Books You’ve Been Meaning to Read
    Back to Top

    Visit other sites in the Penguin Random House Network

    Raise kids who love to read

    Raise kids who love to read

    Today's Top Books

    Want to know what people are actually reading right now?

     An online magazine for today’s home cook

    An online magazine for today’s home cook