{"title":"Andres Andreu","description":null,"products":[{"product_id":"professional-pen-testing-for-web-applications-book-andres-andreu-9780471789666","title":"Professional Pen Testing for Web Applications","description":"There is no such thing as \"perfect security\" when it comes to keeping all systems intact and functioning properly. Good penetration (pen) testing creates a balance that allows a system to be secure while simultaneously being fully functional. With this book, you'll learn how to become an effective penetrator (i.e., a white hat or ethical hacker) in order to circumvent the security features of a Web application so that those features can be accurately evaluated and adequate security precautions can be put in place.    After a review of the basics of web applications, you'll be introduced to web application hacking concepts and techniques such as vulnerability analysis, attack simulation, results analysis, manuals, source code, and circuit diagrams. These web application hacking concepts and techniques will prove useful information for ultimately securing the resources that need your protection.    What you will learn from this book  * Surveillance techniques that an attacker uses when targeting a system for a strike  * Various types of issues that exist within the modern day web application space  * How to audit web services in order to assess areas of risk and exposure  * How to analyze your results and translate them into documentation that is useful for remediation  * Techniques for pen-testing trials to practice before a live project    Who this book is for    This book is for programmers, developers, and information security professionals who want to become familiar with web application security and how to audit it.    Wrox Professional guides are planned and written by working programmers to meet the real-world needs of programmers, developers, and IT professionals. Focused and relevant, they address the issues technology professionals face every day. They provide examples, practical solutions, and expert education in new technologies, all designed to help programmers do a better job.","brand":"WoB","offers":[{"title":"- \/ - \/ -","offer_id":50590847172881,"sku":"","price":0.0,"currency_code":"GBP","in_stock":true},{"title":"GB \/ LIKE_NEW \/ INTERNAL","offer_id":50590847271185,"sku":"GOR014008231","price":0.0,"currency_code":"GBP","in_stock":false},{"title":"GB \/ VERY_GOOD \/ INTERNAL","offer_id":51892524679441,"sku":"GOR005401116","price":0.0,"currency_code":"GBP","in_stock":false},{"title":"GB \/ NEW \/ INGRAM","offer_id":52149343617297,"sku":"NLS9780471789666","price":0.0,"currency_code":"GBP","in_stock":true},{"title":"US \/ GOOD \/ SBYB","offer_id":52515591848209,"sku":"CIN0471789666G","price":0.0,"currency_code":"GBP","in_stock":false},{"title":"US \/ NEW \/ INGRAM","offer_id":53149837328657,"sku":"NIN9780471789666","price":0.0,"currency_code":"GBP","in_stock":false}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0784\/4072\/6801\/files\/0471789666.jpg?v=1750943081"},{"product_id":"ciso-playbook-book-andres-andreu-9781032762074","title":"The CISO Playbook","description":"A CISO is the ultimate guardian of an organization's digital assets. As a cybersecurity leader ,a CISO must possess a unique balance of executive leadership, technical knowledge, strategic vision, and effective communication skills. The ever-evolving cyberthreat landscape demands a resilient, proactive approach coupled with a keen ability to anticipate attack angles and implement protective security mechanisms. Simultaneously, a cybersecurity leader must navigate the complexities of balancing security requirements with business objectives, fostering a culture of cybersecurity awareness, and ensuring compliance with regulatory frameworks.  The CISO Playbook aims to provide nothing but real-world advice and perspectives to both up-and-coming cybersecurity leaders as well as existing ones looking to grow. The book does not approach cybersecurity leadership from the perspective of the academic, or what it should be, but more from that which it really is. Moreover, it focuses on the many things a cybersecurity leader needs to “be” given that the role is dynamic and ever-evolving, requiring a high level of adaptability.  A CISO's career is touched from many differing angles, by many different people and roles. A healthy selection of these entities, from executive recruiters to salespeople to venture capitalists, is included to provide real-world value to the reader. To augment these, the book covers many areas that a cybersecurity leader needs to understand, from the pre-interview stage to the first quarter and from security operations to the softer skills such as storytelling and communications.  The book wraps up with a focus on techniques and knowledge areas, such as financial literacy, that are essential for a CISO to be effective. Other important areas, such as understanding the adversaries' mindset and self-preservation, are covered as well. A credo is provided as an example of the documented commitment a cybersecurity leader must make and remain true to.","brand":"WoB","offers":[{"title":"- \/ - \/ -","offer_id":51018759045393,"sku":"","price":0.0,"currency_code":"GBP","in_stock":true},{"title":"US \/ NEW \/ INGRAM","offer_id":51018761634065,"sku":"NIN9781032762074","price":0.0,"currency_code":"GBP","in_stock":false},{"title":"GB \/ NEW \/ GARDNERS","offer_id":52110990737681,"sku":"NGR9781032762074","price":0.0,"currency_code":"GBP","in_stock":true},{"title":"GB \/ NEW \/ INGRAM","offer_id":52619520606481,"sku":"NLS9781032762074","price":0.0,"currency_code":"GBP","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0784\/4072\/6801\/files\/1032762071.jpg?v=1750751869"},{"product_id":"ciso-playbook-book-andres-andreu-9781032757964","title":"The CISO Playbook","description":"A CISO is the ultimate guardian of an organization's digital assets. As a cybersecurity leader ,a CISO must possess a unique balance of executive leadership, technical knowledge, strategic vision, and effective communication skills. The ever-evolving cyberthreat landscape demands a resilient, proactive approach coupled with a keen ability to anticipate attack angles and implement protective security mechanisms. Simultaneously, a cybersecurity leader must navigate the complexities of balancing security requirements with business objectives, fostering a culture of cybersecurity awareness, and ensuring compliance with regulatory frameworks.  The CISO Playbook aims to provide nothing but real-world advice and perspectives to both up-and-coming cybersecurity leaders as well as existing ones looking to grow. The book does not approach cybersecurity leadership from the perspective of the academic, or what it should be, but more from that which it really is. Moreover, it focuses on the many things a cybersecurity leader needs to “be” given that the role is dynamic and ever-evolving, requiring a high level of adaptability.  A CISO's career is touched from many differing angles, by many different people and roles. A healthy selection of these entities, from executive recruiters to salespeople to venture capitalists, is included to provide real-world value to the reader. To augment these, the book covers many areas that a cybersecurity leader needs to understand, from the pre-interview stage to the first quarter and from security operations to the softer skills such as storytelling and communications.  The book wraps up with a focus on techniques and knowledge areas, such as financial literacy, that are essential for a CISO to be effective. Other important areas, such as understanding the adversaries' mindset and self-preservation, are covered as well. A credo is provided as an example of the documented commitment a cybersecurity leader must make and remain true to.","brand":"WoB","offers":[{"title":"- \/ - \/ -","offer_id":51233472938257,"sku":"","price":0.0,"currency_code":"GBP","in_stock":true},{"title":"US \/ NEW \/ INGRAM","offer_id":51233474052369,"sku":"NIN9781032757964","price":0.0,"currency_code":"GBP","in_stock":false},{"title":"GB \/ NEW \/ INGRAM","offer_id":52608681017617,"sku":"NLS9781032757964","price":0.0,"currency_code":"GBP","in_stock":true}],"thumbnail_url":"\/\/cdn.shopify.com\/s\/files\/1\/0784\/4072\/6801\/files\/1032757965.jpg?v=1750919206"},{"product_id":"ciso-playbook-book-andres-andreu-9781041200567","title":"The CISO Playbook","description":"Guiding security leaders and executives who hold the privilege of defending modern organizations, “The CISO Playbook - The Adversarial Mindset” is a leadership-focused blueprint for outmaneuvering adversaries that iterate relentlessly. In an era where attackers view corporate defenders as “dumb, weak, and ineffective” due to organizational drag and over-reliance on static tools, this book empowers leaders to reclaim the initiative by adopting a true adversarial mindset.  Harnessing the concept of Decision Advantage, the book moves beyond treating incidents as isolated technical events by thinking in adversary terms: objectives, constraints, and tradecraft. It bridges the gap between attacker methods and board-level risk, showing how to translate security outcomes into the language of economics, EBITDA, and revenue protection.  Operationalizing lessons from real-world campaigns like SolarWinds, Volt Typhoon, and Operation Aurora, the text connects tradecraft to operational reality. It introduces the unique metric of Time-to-Hazard Neutralization, moving past ticket metadata to focus on the verified removal of risk from the environment.  Spotlighting the rise of the “Artificial Adversary,” a central thread details how AI-enhanced human actors and autonomous systems act with malicious intent. From industrialized “vibe hacking” to active scanning and autonomous reconnaissance, the book reveals how AI accelerates the attacker’s OODA loop and how CISOs must respond by compressing their own defensive cycles.  Translating theoretical models into repeatable methods, the text provides strategies for terrain engineering, deception, and resilience-centric incident response. Written for CISOs, deputies, and security leaders, it serves those who both brief members of C-Suites and boards and also run outcome-based programs. Instead of remaining a reactive enforcer, readers will find a blueprint for becoming a proactive Enterprise Risk Leader. Navigating this shift ultimately rewards the disciplined observation required to outthink the opponent.","brand":"WoB","offers":[{"title":"GB \/ NEW \/ GARDNERS","offer_id":53517860667665,"sku":"NGR9781041200567","price":0.0,"currency_code":"GBP","in_stock":false}]},{"product_id":"ciso-playbook-book-andres-andreu-9781041200550","title":"The CISO Playbook","description":"Guiding security leaders and executives who hold the privilege of defending modern organizations, “The CISO Playbook - The Adversarial Mindset” is a leadership-focused blueprint for outmaneuvering adversaries that iterate relentlessly. In an era where attackers view corporate defenders as “dumb, weak, and ineffective” due to organizational drag and over-reliance on static tools, this book empowers leaders to reclaim the initiative by adopting a true adversarial mindset.  Harnessing the concept of Decision Advantage, the book moves beyond treating incidents as isolated technical events by thinking in adversary terms: objectives, constraints, and tradecraft. It bridges the gap between attacker methods and board-level risk, showing how to translate security outcomes into the language of economics, EBITDA, and revenue protection.  Operationalizing lessons from real-world campaigns like SolarWinds, Volt Typhoon, and Operation Aurora, the text connects tradecraft to operational reality. It introduces the unique metric of Time-to-Hazard Neutralization, moving past ticket metadata to focus on the verified removal of risk from the environment.  Spotlighting the rise of the “Artificial Adversary,” a central thread details how AI-enhanced human actors and autonomous systems act with malicious intent. From industrialized “vibe hacking” to active scanning and autonomous reconnaissance, the book reveals how AI accelerates the attacker’s OODA loop and how CISOs must respond by compressing their own defensive cycles.  Translating theoretical models into repeatable methods, the text provides strategies for terrain engineering, deception, and resilience-centric incident response. Written for CISOs, deputies, and security leaders, it serves those who both brief members of C-Suites and boards and also run outcome-based programs. Instead of remaining a reactive enforcer, readers will find a blueprint for becoming a proactive Enterprise Risk Leader. Navigating this shift ultimately rewards the disciplined observation required to outthink the opponent.","brand":"WoB","offers":[{"title":"GB \/ NEW \/ GARDNERS","offer_id":53517874331921,"sku":"NGR9781041200550","price":0.0,"currency_code":"GBP","in_stock":false}]}],"url":"https:\/\/www.worldofbooks.com\/en-gb\/collections\/author-books-by-andres-andreu.oembed","provider":"World of Books ","version":"1.0","type":"link"}