Hacking Exposed Web 2.0 shows how hackers perform reconnaissance, choose their entry point, and Web 2.0 services based attacks, and reveals the detailed response and defense techniques. Real-world case studies illustrate social networking site weaknesses, cross-site attack methods, migration vulnerabilities, and IE7 shortcomings. Plug security holes in Web 2.0 implementations the proven Hacking Exposed wayLearn how hackers target and abuse vulnerable Web 2.0 applications, browsers, plug-ins, online databases, user inputs, and HTML formsPrevent Web 2.0-based SQL, XPath, XQuery, LDAP, and avoid command injection attack, XXE, directory traversal, and buffer overflow exploits Learn XSS and Cross-Site Request Forgery methods attackers use to bypass browser security controls Fix vulnerabilities in Outlook Express and Acrobat Reader add-onsUse input validators and XML classes to reinforce ASP and. NET security Eliminate unintentional exposures in ASP.NET AJAX (Atlas), Direct Web Remoting, Sajax, and GWT Web applicationsMitigate ActiveX security exposures using SiteLock, code signing, and secure and improve controlsFind Adobe Flash vulnerabilities and DNS rebinding attacks