Client-Side Attacks and Defense

Client-Side Attacks and Defense offers background networks against its attackers. The book examines the forms of client-side attacks and discusses different kinds of attacks along with delivery methods including, but not limited to, browser exploitation, use of rich internet applications, and file format vulnerabilities. It also covers defenses, such as antivirus and anti-spyware, intrusion detection systems, and end-user education. The book explains how to secure Web browsers, such as Microsoft Internet Explorer, Mozilla Firefox, Google Chrome, Apple Safari, and Opera. It discusses advanced Web attacks and advanced defenses against them. Moreover, it explores attacks on messaging, Web applications, and mobiles. The book concludes with a discussion on security measures against client-side attacks, starting from the planning of security. This book will be of great value to penetration testers, security consultants, system and network administrators, and IT auditors.

IntroductionChapter 1: Background on AttacksChapter 2: A Closer Look at Client-Side AttacksChapter 3: A History of Web BrowsersChapter 4: The Problem with BrowsersChapter 5: Exploring and Exploiting Active ContentChapter 6: Browser DefensesChapter 7: E-mail Client AttacksChapter 8: E-mail Client DefensesChapter 9: Web ApplicationsChapter 10: Web Applications and Client DefensesChapter 11: Other Client-Side Attack TargetsChapter 12: MalwareChapter 13: Client-Side CountermeasuresChapter 14: The Road Ahead