Upgrade to Pro — share decks privately, control downloads, hide ads and more …

90K reasons security is a must - PHPBenelux Edition

September 17, 2014

90K reasons security is a must - PHPBenelux Edition

We all have focussed on best practices and code quality over the past years, but we seemed to forgot the most important aspect of the web: security.
This talk gives a good overview on your first-line of defence in your code, how to ensure that new exploits and hacking techniques are covered with tests and how you build solid web applications that secured enough to keep script kiddies and wanna-be hackers away. I will also give some tips what to do when you're company becomes victim of cyber crimes.


September 17, 2014

More Decks by DragonBe

Other Decks in Technology


  1. SaniLse  data,  always <?php       $id  =  $_GET['id'];

          //  sanitise  tainted  data   $clean_id  =  filter_var($id,  FILTER_SANITIZE_NUMBER_INT);   $clean_id  =  filter_var($clean_id,  FILTER_VALIDATE_INT);   if  (0  <  $clean_id)  {          $stmt  =  $pdo-­‐>prepare(                  'SELECT  *  FROM  TABLE  WHERE  `id`  =  ?'          );          $stmt-­‐>bindParam(1,  $clean_id,  PDO::PARAM_INT);          $stmt-­‐>execute();   } 30
  2. 32

  3. 33