Web

The latest Web app attacks and countermeasures from world-renowned practitioners

Protect your Web applications from malicious attacks by mastering the weapons and thought processes of today's hacker. Written by recognized security practitioners and thought leaders, Hacking Exposed Web Applications, Third Edition is fully updated to cover new infiltration methods and countermeasures. Find out how to reinforce authentication and authorization, plug holes in Firefox and IE, reinforce against injection attacks, and secure Web 2.0 features. Integrating security into the Web development lifecycle (SDL) and into the broader enterprise information security program is also covered in this comprehensive resource.

• Get full details on the hacker's footprinting, scanning, and profiling tools, including SHODAN, Maltego, and OWASP DirBuster
• See new exploits of popular platforms like Sun Java System Web Server and Oracle WebLogic in operation
• Understand how attackers defeat commonly used Web authentication technologies
• See how real-world session attacks leak sensitive data and how to fortify your applications
• Learn the most devastating methods used in today's hacks, including SQL injection, XSS, XSRF, phishing, and XML injection techniques
• Find and fix vulnerabilities in ASP.NET, PHP, and J2EE execution environments
• Safety deploy XML, social networking, cloud computing, and Web 2.0 services
• Defend against RIA, Ajax, UGC, and browser-based, client-side exploits
• Implement scalable threat modeling, code review, application scanning, fuzzing, and security testing procedures

If you are a designer who knows HTML, CSS, and JavaScript, you can easily learn how to make native iPhone, iPod touch, and iPad apps—and distribute them worldwide via the App Store.

When combined with an Objective-C framework, web standards can be used to format and style content for iOS, using native controls and behaviors for an authentic Apple user experience.
 
The Web Designer’s Guide to iOS Apps shows how to create apps using NimbleKit, the Objective-C framework featured on the Apple Development Tools web site. With it you’ll learn how to:

• Download and install the free software for creating iOS apps

• Use Xcode to manage project assets, test apps, and package binary files

• Implement standard iOS elements and behaviors for familiar Apple mobile user experiences

• Enhance your app designs with HTML5 and CSS3

• Build a foundation for designing web apps that can be delivered to other smartphones and mobile devices

This book contains tips, tricks, and techniques to make new and existing PHP applications much faster and less resource-hungry. Author Armando Padilla looks at all major sections of the PHP application stack—from server hardware to database and web server performance. PHP program application performance is the center of this book, and Padilla shows you how to improve performance by best practices, proper design, and best-of-breed tools.

Padilla starts out by establishing performance testing and benchmarking methodology using common open source and browser-based testing tools. He then discusses best practices for PHP development, and also explains refactoring existing code, both with performance in mind. In addition to best coding practices, this book will teach you how to use and tweak Opcode caches such as APC, XCache, and eAccelerator.

Padilla then highlights how to support the efficient running of PHP applications, tweaks and settings by taking advantage of the GNU/Linux and Microsoft Windows operating systems to improve hosting performance and reliability. Additional tips on web server improvements and database administration help round out the picture. Finally, Padilla presents some hardware example configurations tuned for high performance.

What you’ll learn

• How to improve the performance of existing PHP applications
• How to maximize the performance of existing operating systems and databases
• How to refactor existing PHP code for better performance
• How to identify and rectify bottlenecks in PHP code
• How to take advantage of variable caching to increase performance
• Strategies for selecting server hardware for best performance

Who this book is for

This books will appeal to established PHP developers who wish to write new, complex applications or want to rearchitect existing ones. Developers of other languages such as Ruby, Python, and VB.NET will also have an interest in the techniques for tuning the performance of web servers, databases, and operating systems.

The ultimate guide to creating and managing websites using Microsoft Expression Web 4.

“Even if you’re already a seasoned Drupal user of CCK, Views, or Panels, I’ve no doubt that this book will provide you with several new techniques and methods for getting the most out of these extremely essential modules. It certainly has for me.”

—Dries Buytaert, founder and project lead of Drupal, and CTO of Acquia 

With Drupal, Web professionals can create full-featured Web sites with just a few clicks. Drupal’s core is compact and well documented, but much of Drupal’s immense power lies elsewhere—in external modules. Drupal’s Building Blocks is an authoritative tutorial, reference, and cookbook for Drupal’s most valuable modules.

The authors are Drupal insiders who’ve spent years creating and supporting these modules—Earl Miles, developer of the Views and Panels modules, and Lynette Miles, Drupal documentation team member. They’ve brought together indispensable information you won’t find anywhere else, as well as extensive sample “recipe” code designed for easy adaptation and reuse. Learn how to

• Use Content Construction Kit (CCK) to customize your data input forms around your needs
• Improve site flexibility with Drupal’s node system
• Add optional field types, including PHP-based fields
• Customize themes to display data more attractively and legibly
• Build powerful Views query displays
• Integrate with SQL databases
• Customize Views with relationships, arguments, and filters
• Optimize query performance
• Add custom styles with the Panels module
• Maintain full control over sites as you deploy into production

This book will help you create more powerful, flexible, usable, and manageable Web sites—whether you’re a Web developer, designer, administrator, architect, or consultant.

The accompanying Web site contains all examples, code, and themes presented in this book.

InDesign CS5 opens the door to a new world: with the addition of exciting animation tools and deeper multimedia support. It's now a viable interactive authoring tool. Designers want to create engaging interactive content, but may resist making the transition from page layout to timeline-based thinking. But now it's much easier: InDesign CS5's new interactive features are intuitive and easy to learn. And once they've mastered those tools in the familiar world of InDesign, they'll find that Flash isn't scary after all. Designers already know how to add text, graphics, and geometric shapes to a page in InDesign, it's a short walk to adding interactive features. Before they know it, they're creating Flash content.

Arm yourself to destroy UI and JavaScript bugs

• Expand your toolkit by learning to use Firebug to help you monitor, debug, develop and edit web pages on the fly
• Create your own Firebug extensions and learn about popular third-party extensions
• Covers JavaScript, AJAX, and CSS development
• Covers all of Firebug's features
• Clear explanations with easy-to-follow examples of HTML and JavaScript

In Detail

With the advent of RIA (Rich Internet Applications), most web pages are driven by a combination of JavaScript, AJAX, CSS, and so on. Web developers and designers find it hard to debug and fix the issues that crop up on the client side. Firebug is a wonderful toolkit to have in your arsenal for handling all such issues. This book covers all of Firebug's features and will help you utilize its capabilities with maximum efficiency. AJAX development and debugging is not one of the easiest tasks; this book explains step-by-step, how to develop and debug AJAX components in your web page in a very easy way, thereby increasing your productivity. Topics like performance tuning of the web page are covered in detail.

This book discusses how to become more efficient in various aspects of web development by using Firebug. It is a very easy-to-understand, step-by-step guide that explains all the features of Firebug with concise and simple examples. With this book in hand, you will be able to deal with the painful areas of web development like JavaScript and AJAX debugging using Firebug.

The book takes you from the basics of Web Development like editing HTML and CSS on the fly to advanced features like AJAX, JSON, Monitoring, and Performance Tuning of web pages. It assumes that you have some very basic knowledge of HTML and JavaScript. For those of you with a sound knowledge of these technologies, this book can help you increase your productivity by using Firebug effectively, taking full advantage of its rich and powerful features and the console API. Towards the end, the book explains how to create your own powerful extensions for the Firebug community.

This practical guide will equip you with the skills to edit, debug, and monitor web pages using Firebug

What you will learn from this book

• Explore Firebug's tabs and their functions
• Understand how to use Firebug to inspect, edit, search, and play with the HTML source of the document
• Get to grips with useful tools and utilities provided by Firebug for CSS development
• Learn the command-line API and console API of Firebug and debugging JavaScript
• Modify the values of properties and constants of any DOM object using Firebug
• Discover various ways to analyze the performance of your web application on the browser
• Learn how to track XmlHttpRequest and Response as well as debugging AJAX calls
• Tips and tricks to experiment with the features that Firebug provides
• Explore Firebug extensions like YSlow, FireCookie, and Page Speed that are useful for development and Performance tuning
• Develop a Firebug extension and learn how to set up a development environment, file, and directory structure for it

Approach

A step-by-step description of each key feature is provided with the help of simple, easy-to-understand examples. There are plenty of useful screenshots in each chapter. Every chapter contains information as well as tips and tricks to draw your attention towards some useful information or reference. Each aspect of web development like CSS or JavaScript is handled independently so that you can refer to those modules in which you are interested.

Who this book is written for

This book is written for frontend web developers building software and pages using HTML, CSS, JavaScript, and AJAX, who want to learn Firebug for the reasons outlined above. The book assumes that readers have a very basic knowledge of HTML, JavaScript, and CSS. The examples in the book can be understood by someone who has just been introduced to web development.