Common Web Application Attacks and Countermeasures

Watch the first few minutes on us! If you'd like to watch the entire video and hundreds more like it, download code samples, access offline videos and skills assessments, and use the discussion forums, log in or purchase a subscription.


Ilya Pogrebensky


Hackers use a number of vectors to attack Web apps, including cross-site scripting (XSS), cross-site request forgery (CSRF), insecure direct object references, and security misconfiguration. This session goes deep on all four techniques, presents real-life examples in which they have been used, and offers techniques for defending against them so your Web app doesn't become the latest in a long line of casualties.

Table of Contents

{{toc.Position}} {{toc.Text}}

Related Links

  • {{link.LinkText}} (requires a paid subscription)


This course is part of the following series: