Today is programming developer must be able to efficiently understand the concept of secure coding techniques to develop a secure application. In order to provide a total secure solutions from operating system level to application level. This course provides all those necessary skills for programming developer to understand how to write a secure PHP Application technique of major systems. In this course, you will learn current web application threats and how to add security to your PHP Web applications and PHP Open source CMS/Blog (Wordpress). It is assumed that you have been coding PHP Web applications for at least a year, so it won t cover the basics of the language (either conventions or syntax). The goal is to make you more aware of what you should be doing to secure the Web applications you are building.
PHP Secure Coding
1. Introduction to Web Security
– Challenges
– Open Web Application Project (OWASP)
– Documents and Standard
– OWASP Top 10
2. Injection Flaw
– SQL Injection
– Common Defence
– Regular Expression
– Parameterized Query
– Case Study
3. Broken Authentication
– Attack Vector
– Session Hijack
– Common Defence
– Case Study
4. Sensitive Data Exposure
– Attack Vector
– Common Defence
– Case Study
5. XML External Entities (XXE)
– XXE Injection
– Common Defence
6. Broken Access Control
– Horizontal Access Control
– Vertical Access Control
– Common Defence
– Auth and Authorization Framework
7. Security Misconfiguration
– Common Defence
– Secure Header Project
– Case Study
8. Cross-Site Scripting(XSS)
– Understanding XSS
– Common Defence
– Case Study
9. Insecure Deserialization
– Serialization and Deserialization
– Common Defence
– Case Study
10. Using Components with known vulnerability
– Exploitation Database
– Common Defence
– OSS Bill of Material
11. Insufficience Logging and monitoring
– Common Defence
– Incident Response
– App Sensor
Our website uses both essential and non-essential cookies to analyze use of our products and services. This agreement applies to non-essential cookies only. By accepting, you are agreeing to third parties receiving information about your usage and activities. If you choose to decline this agreement, we will continue to use essential cookies for the operation of the website. View Policy