Client-Side Attacks and Defense - Softcover

Reseña del editor

Client-Side Attacks and Defense offers background networks against its attackers. The book examines the forms of client-side attacks and discusses different kinds of attacks along with delivery methods including, but not limited to, browser exploitation, use of rich internet applications, and file format vulnerabilities. It also covers defenses, such as antivirus and anti-spyware, intrusion detection systems, and end-user education.
The book explains how to secure Web browsers, such as Microsoft Internet Explorer, Mozilla Firefox, Google Chrome, Apple Safari, and Opera. It discusses advanced Web attacks and advanced defenses against them. Moreover, it explores attacks on messaging, Web applications, and mobiles. The book concludes with a discussion on security measures against client-side attacks, starting from the planning of security.
This book will be of great value to penetration testers, security consultants, system and network administrators, and IT auditors.

• Design and implement your own attack, and test methodologies derived from the approach and framework presented by the authors
• Learn how to strengthen your network's host- and network-based defense against attackers' number one remote exploit―the client-side attack
• Defend your network against attacks that target your company's most vulnerable asset―the end user

Contraportada

Individuals wishing to attack a company’s network have found a new path of least resistance—the end-user. A client- side attack is one that uses the inexperience of the end-user to create a foothold in the user’s machine and therefore the network. Client-side attacks are everywhere and hidden in plain sight. Common hiding places are malicious Web sites and spam. A simple click of a link will allow the attacker to enter. This book presents a framework for defending your network against these attacks in an environment where it might seem impossible.

The most current attacks are discussed along with their delivery methods, such as browser exploitation, use of rich Internet applications, and file format vulnerabilities. The severity of these attacks is examined along with defenses against them, including antivirus and anti-spyware, intrusion detection systems, and end-user education.

Individuals wishing to attack a company’s network have found a new path of least resistance—the end-user. A client- side attack is one that uses the inexperience of the end-user to create a foothold in the user’s machine and therefore the network. Client-side attacks are everywhere and hidden in plain sight. Common hiding places are malicious Web sites and spam. A simple click of a link will allow the attacker to enter. This book presents a framework for defending your network against these attacks in an environment where it might seem impossible.

The most current attacks are discussed along with their delivery methods, such as browser exploitation, use of rich Internet applications, and file format vulnerabilities. The severity of these attacks is examined along with defenses against them, including antivirus and anti-spyware, intrusion detection systems, and end-user education.