Goals
- Implement secure PHP applications
Program
XSS (Cross Site Scripting)
CSRF (: Cross Site Request Forgery)
SQL
RFI / LFI (Remote / Local File Inclusion) injection attacks
Risks related to forms
Methods of sending data
Asynchronous requests (AJAX)
Validation of entries
Management of uploads
Encryption: interest, methods
Practical workshop: Validation of form data – Upload management – Security of a form authentication
Persistent data management
Use of cookies and sessions
Cookie
security Session security
Practical workshop: Various examples of the use of cookies and sessions
Prevention of common vulnerabilities
Security of data backups in BDD
Security of access to the DB
Practical workshop: Store / retrieve secure data
Php.ini directives
Protection of folders by htaccess
Access rights of folders on the web server
Security audits
Available Frameworks
Duration
2 days
Price
£ 1301
Audience
PHP Developers
Prerequisites
Have followed the PHP initiation + deepening training or equivalent knowledge
Reference
PHP681-F
Sessions
Contact us for more informations about session date