Home » Press Releases Jeremiah Grossman Pens Book De ...

Press Releases by JavaScriptSearch


Jeremiah Grossman Pens Book Detailing Cross-Site Scripting Exploits and Attacks


WhiteHat Founder and CTO Co-authors Book about a Pervasive Vulnerability Threat with Website Security Industry Luminaries

August 1, 2007; 01:56 AM

WhiteHat Security announced the availability of Jeremiah Grossman's book -- Cross-Site Scripting Attacks: XSS Exploits and Attacks. The book offers a detailed definition of the attack, how it is executed and defensive measures available to address the most prevalent website vulnerability today -- XSS. Grossman has teamed up with respected industry experts Seth Fogie, Robert Hansen, Anton Rager and Petko D. Petkov to provide an all-encompassing view of this attack and how it can be prevented effectively.

The book discusses the concepts, methodology, and technology that make XSS a significant concern. How significant? As recently as April 2007, WhiteHat Security's Website Security Statistics Report demonstrated that XSS is the most common attack today, affecting eight out of 10 websites. The authors explore various types of XSS attacks, how they are implemented, used, and abused. Real-world examples of XSS malware show how it is a dangerous risk that exposes Internet users to remote access, sensitive data theft, and monetary losses. The book closes by examining the ways developers can guard against XSS vulnerabilities in their web applications, and how users can avoid becoming victims.

The authors are undisputed industry experts who provide a real-world glimpse into XSS. Readers are exposed to independent, bleeding-edge research, code listings and exploits that can not be found anywhere else. Grossman and Hansen will be holding a book signing to promote the new release during this year's Black Hat Briefings in Las Vegas on August 1st at 12:30 p.m. at the BreakPoint Bookstore near the Black Hat registration booth. The signing is immediately following Grossman's highly anticipated presentation, "Hacking Intranet Websites from the Outside (Take 2) - Fun with and without JavaScript malware," on Wednesday, August 1st from 11:15 - 12:30 p.m.

"The prevalence of XSS has a serious affect on website security; this book provides a much needed deep technical look into a very dangerous attack," said Grossman. "I'm thrilled to have had the opportunity to work alongside such stellar subject matter experts and hope this book continues the ongoing industry dialogue regarding vulnerabilities and remediation."

WhiteHat Security will also hold drawings for free copies of the book at its booth (#5) on August 1 and 2. Attendees may stop by the booth to register for the drawing as well as learn more about WhiteHat Sentinel, the company's complete website vulnerability management solution.

Cross-Site Scripting Attacks: XSS Exploits and Attacks, published by Syngress, is currently available on Amazon.com for $59.95 and is targeted toward web developers, security practitioners, and managers.

About the publisher

Syngress Publishing (http://www.syngress.com/), headquartered in Rockland, Massachusetts, is an independent publisher of print and electronic reference materials for Information Technology professionals seeking skill enhancement and career advancement. Distributed throughout Europe, Asia, and the U.S. and Canada, Syngress titles have been translated into twenty languages. The Company's pioneering customer support program, [email protected], extends the value of every Syngress title with regular information updates and customer-driven author forums. For more information on Syngress products, contact Amy Pedersen at 781-681-5151 or email [email protected]. Syngress books are distributed in the United States and Canada by O'Reilly Media, Inc.

About WhiteHat Security, Inc.

Headquartered in Santa Clara, California, WhiteHat Security is a leading provider of website vulnerability management services. WhiteHat delivers turnkey solutions that enable companies to secure valuable customer data, comply with industry standards and maintain brand integrity. WhiteHat Sentinel, the company's flagship service, is the only solution that incorporates expert analysis and industry-leading technology to provide unparalleled coverage to protect critical data from attacks. For more information about WhiteHat Security, please visit our website, http://www.whitehatsec.com/.

Advertisement

Partners

Related Resources

Other Resources

arrow