Subscription

Explore Products

Best Sellers

New Releases

Books

Videos

Audiobooks

Learning Hub

Free Learning

You're reading from Applied Network Security Proven tactics to detect and defend against all kinds of network attack

Product type Paperback

Published in Apr 2017

Publisher

ISBN-13 9781786466273

Length 350 pages

Edition 1st Edition

Tools

Kali Linux

Concepts

Network Security

Authors (3):

Michael McLafferty

Warun Levesque

Arthur Salmon

View More author details

Table of Contents (18) Chapters

Preface

1. Introduction to Network Security

2. Sniffing the Network FREE CHAPTER

3. How to Crack Wi-Fi Passwords

4. Creating a RAT Using Msfvenom

5. Veil Framework

6. Social Engineering Toolkit and Browser Exploitation

7. Advanced Network Attacks

8. Passing and Cracking the Hash

9. SQL Injection

10. Scapy

11. Web Application Exploits

12. Evil Twins and Spoofing

13. Injectable Devices

14. The Internet of Things

15. Detection Systems

16. Advance Wireless Security Lab Using the Wi-Fi Pineapple Nano/Tetra

17. Offensive Security and Threat Hunting

Cross site scripting (XSS) attacks

These web application security vulnerabilities enable attackers to inject client-side script in web pages. They often occur when data enters through from an untrusted source, and also dynamic content that's sent to users without validation for malicious content. The implementation for these types of attacks ranges widely, but private transfer of cookies, sessions, sensitive data, and redirection are some things that cross-site scripting is capable of. XSS attacks are commonly either stored or reflected. Stored XSS is where user input is stored on the server, and then a victim is able to retrieve the stored data from the web app without that data being made safe to render in the browser. Reflected XSS is when user input is immediately returned by a web app in an error message, or any response with some or all input from the user, without that data being made safe to render...

The rest of the chapter is locked

A free Packt account unlocks extra newsletters, articles, discounted offers, and much more. Start advancing your knowledge today.

Unlock this book and the full library FREE for 7 days

Get unlimited access to 7000+ expert-authored eBooks and videos courses covering every tech area you can think of

Start free trial

Renews at $19.99/month. Cancel anytime

Authors (3)

Michael McLafferty

Michael McLafferty has been researching on cyber security and applied ethical hacking for over 6 years. His interest in cyber security started in 2010. At the time, he was creating search engine optimization scripts for various small businesses. His clients would also ask him to secure their websites, which led him to find his passion in cyber security instead of search engine optimization. In 2012, he became a private cyber security consultant for both individuals and small businesses. He would provide network and endpoint security advice as well as social engineering awareness training to employees and individuals. He is also a paid cyber security researcher, sponsored by local businesses to further the advancement of cyber security methods and applied knowledge. He is the co-founder of an open society of ethical hackers that meets weekly to discuss and apply new cyber security skills. They have full access to both a lab and cutting-edge ethical hacking equipment, to develop new methods in offensive security. He is also an inventor. He and his business partner have patents pending on various cyber security tools and software. They continue with their research with great passion and drive. He is committed to reshaping and setting new standards in the world of cyber security. With the level of collaboration from his colleagues, he firmly believes that they can achieve this.

See other products by Michael McLafferty

Salmon

Arthur Salmon is a lead security professional for Rex Technology Services, Las Vegas, NV. He is the program director of a community college for their cyber security program. Arthur currently holds a master's degree in network and communication management focusing on security. He is also finishing up his dissertation for a PhD in information security assurance. He has over 80 IT certifications, including his VMware VCP, Cisco CCNP:RnS/CCDP, and numerous CCNAs (RnS, security, design, voice, and video collaborations to name a few). He also holds other certifications from vendors, such as Microsoft, CompTIA, Juniper, Six Sigma, EMC, ISC2, Encase, and so on. Currently, hes awaiting results for his exams for ISC2 CISSP, CEH, and forensic investigator. He has worked in the IT sector for over 15 years. He is currently working on writing and collaborating new books, articles, or any other learning material.

See other products by Salmon

Warun Levesque

Warun Levesque has worked for various technical companies and projects over the past five years in information technology and network security. He began his academic path back in 2011, where his focus centered around mobile application development and web application programming. During this time, he worked on the development of many guides and educational resources contributing to the cyber security community. Warun has also accepted various contracts including one from a major IT Corporation to provide technical support and guidance to set up network and assistance for businesses nationwide. For the past couple of years, he has taken the role of a consultant for various companies, including institutional support for cyber security related training and classes. He is also the cofounder of a community of ethical hackers where he continues to learn and develop both his skills and effective guides for offensive, defensive, and mitigation in cyber security.

See other products by Warun Levesque