Has anybody else tried it?
I bought since, according to the description, it had a section on web services/soap.
That chapter is disappointing: it's just 10 pages, and the first 5 are wasted describing what web services/soap are; why?
I want to know how to break web services, if I need to know what they are I can look up that information in a lot of other places.
The rest of the book is a fair, if not very up to date, introduction to security testing, with an appendix on tools that can be used.
Has anybody read and can recommend more advanced books?
Honestly, I have found that the best place to find out stuff about secutiry testing is messing around on some, light, hacker forums. Of course you won't get really, really gorey details here, but you do get an idea of how some of these guys are operating.
This is actually where I learned the majority of stuff that I know about web security. Then it's just a matter of applying that to a testing framework.