PHP Web Application Security
Pluralsight
Course Summary
PHP is one of the most widely-used web programming languages in the world. In this course, you'll learn to write more secure PHP code.
-
+
Course Description
Web applications are under attack every day. PHP, being one of the most widely-used programming languages on the web, is one of the main targets. Some oddities, especially those of older versions, facilitate some of the attacks. This course, PHP Web Application Security, helps developers to understand security risks, how vulnerabilities can be exploited, and how to avoid those attacks. First you'll learn about how to defend against cross-site scripting, including new approaches such as content security policy. Next, you'll learn about how cross-site request forgery works, why it works so well, and how you can implement protection using PHP. Finally, the course will wrap up by teaching you how to protect against SQL injection attacks, covering not only MySQL, but also other relevant databases PHP supports. By the end of this course, you'll have the knowledge to anticipate and defend against the major threats against web applications today.
-
+
Course Syllabus
Course Overview- 1m 54s
—Course Overview 1m 54sPHP Web Application Security- 19m 46s
—Introduction 2m 10s
—Is PHP Insecure? 5m 24s
—Security Principles 7m 16s
—OWASP 3m 27s
—Summary 1m 27sInput Validation- 40m 14sCross-site Scripting (XSS)- 1h 6mSQL Injection- 48m 2sState Management- 37m 17sCross-site Request Forgery (CSRF)- 37m 46sStoring Passwords- 24m 51sError Handling- 29m 50sConclusion- 12m 13s