Logo de PHP

Goals


- Implement secure PHP applications

Program

XSS (Cross Site Scripting)
CSRF (: Cross Site Request Forgery)
SQL
RFI / LFI (Remote / Local File Inclusion) injection attacks

Risks related to forms
Methods of sending data
Asynchronous requests (AJAX)
Validation of entries
Management of uploads
Encryption: interest, methods

Practical workshop:  Validation of form data – Upload management – Security of a form authentication

Persistent data management
Use of cookies and sessions
Cookie
security Session security

Practical workshop: Various examples of the use of cookies and sessions

Prevention of common vulnerabilities
Security of data backups in BDD
Security of access to the DB

Practical workshop: Store / retrieve secure data

Php.ini directives
Protection of folders by htaccess
Access rights of folders on the web server
Security audits
Available Frameworks

Duration

2 days

Price

£ 1301

Audience

PHP Developers

Prerequisites

Have followed the PHP initiation + deepening training or equivalent knowledge

Reference

PHP681-F

Sessions

Contact us for more informations about session date