Web Security Training

phparchitect's picture
2014-09-22 20:00 - 2014-09-26 23:00 America/New_York
Event type: 
Training (free or commercial)

A crash course in Web & PHP Security practices that teaches you everything you need to know to begin protecting yourself from malicious users. This 10 hour live online instructor-led class covers the top security attacks, how to detect them, how to protect yourself from them, and how to recover if you are breached. It also covers PHP specific security topics such as best practices for protecting user sessions and handling user logins & passwords.

The class at a minimum will cover the following topics, and will always be updated with any up-to-date web security vulnerabilities that emerge:

  • Secure PHP Configuration & Filesystems
  • Securing Users
    • User Session Best Practices
    • Secondary Security Measures
    • 2-factor authentication
      Forgot Password handling
  • Basic Web Security
    • Brute Force Attacks
    • Encryption/Hashing of Passwords
    • Access Control
    • Man in the Middle Attacks
  • Common Web Attacks
    • Cross Site Request Forgery (CSRF)
    • Cross Site Scripting Attacks (XSS)
      • via Reflection, Storage, and DOM
    • Click-Jacking
  • Other Web Vulnerabilities
    • SQL Injection
    • Code Injection
    • Command Line Injection
    • File Upload Attacks
    • Session Hijacking
  • Preparation
    • Pre-emptive measures
    • Prepared reactions

Drupal Dojo

Group organizers

Group events

Add to calendar

Group notifications

This group offers an RSS feed. Or subscribe to these personalized, sitewide feeds: