Secure coding guide for Developers, Analysts and Architects

A practical guide to building hacking and securing your application

Whoami?

What you’ll learn

  • 7 Different issue types.
  • Basic security tips.
  • Security design patterns.
  • PHP.

Course Content

  • Introduction –> 4 lectures • 6min.
  • Basics of security –> 3 lectures • 20min.
  • Open redirects –> 2 lectures • 9min.
  • CSRF –> 2 lectures • 7min.
  • LFI –> 2 lectures • 2min.
  • RFI –> 2 lectures • 2min.
  • XXE –> 2 lectures • 4min.
  • XSS –> 2 lectures • 14min.
  • SSRF –> 2 lectures • 6min.
  • JWT Hacking –> 2 lectures • 5min.
  • Security design patterns –> 1 lecture • 1min.
  • Extra’s –> 1 lecture • 6min.

Auto Draft

Requirements

  • You need to be able to read simple PHP code.

Whoami?

My name is Wesley Thijs, I’ve been a PHP programmer for 3 years and I’ve worked with windev to create AS-400 GUI’s. I am nowhere near an expert in coding but I do know my security. As an ethical hacker, it is my mission to bring about a safer internet for all. I could do this alone but it’s much better to train the people who need it and build in security from the ground up.

 

What is this course?

This course has been designed to lift up the security of your applications by teaching you several issue types in a practical way.

We’ve set up an FTP server that can be used so you don’t even need to set up your own server, all you need is an FTP client to start building, hacking, and securing your labs.

To finish off, we dive into the basics of security and give you an overview of secure coding patterns.

What issues are covered? 

  1. Open redirects
  2. CSRF
  3. LFI
  4. RFI
  5. XXE
  6. XSS
  7. SSRF
  8. JWT hacking

Who is this for

We have designed and built this course to fit any modern-day company that is working on cybersecurity awareness from the ground up. This course can be offered to anyone in the software development team, including analysts and architects. It will solidify these techniques to anyone who has at least a reading-level understanding of PHP.

 

Requirements

1) You need to have a reading level understanding of PHP

2) An FTP client is required

Get Tutorial