PHP 8 Web Application Security

سرفصل های دوره

PHP is one of the most widely-used web programming languages in the world. In this course, you'll learn to write more secure PHP code.

1. Course Overview

1. Course Overview

2. PHP Web Application Security

1. Version Check

2. Introduction

3. Is PHP Insecure

4. Security Principles

5. OWASP

6. Summary

03. Input Validation

01. Introduction

02. Online Shop

03. What Is Input

04. Hacking the Shop

05. Validating Mandatory Input

06. More Validation With PHP

07. The ctype Extension

08. The filter Extension

09. PHP 7+ Typing

10. Summary

04. Cross-site Scripting (XSS)

01. Introduction

02. Cracking the Shop

03. Anatomy of XSS

04. Same-origin Policy

05. Consequences of XSS

06. Types of XSS

07. Filtering Input

08. Escaping Output

09. Preventing XSS in JSON

10. Cross-site Script Inclusion (XSSI)

11. Browser XSS Protection

12. Understanding Content Security Policy (CSP)

13. Using Content Security Policy

14. Allowing Inline Code in CSP

15. Testing a Content Security Policy

16. Summary

05. SQL Injection

01. Introduction

02. Cracking the Shop

03. Famous SQL Injection Incidents

04. How SQL Injection Works

05. Vulnerable Code Patterns

06. Finding SQL Injection

07. Preventing SQL Injection

08. PHP Database Escaping Functions

09. Prepared Statements with PDO

10. Prepared Statements with MySQL

11. Prepared Statements with PostgreSQL

12. Prepared Statements with SQLite

13. Prepared Statements with Oracle

14. Prepared Statements with Microsoft SQL Server

15. Summary

6. State Management

1. Introduction

2. Cracking the Shop

3. Cookies Explained

4. Securing Cookies

5. Sessions with PHP

6. Session Attacks and Countermeasures

7. Securing PHP Sessions

8. HTTP Strict Transport Security (HSTS)

9. Summary

7. Cross-site Request Forgery (CSRF)

1. Introduction

2. Cracking the Shop

3. Cross-site Request Forgery Explained

4. CSRF Countermeasures

5. Token Creation with PHP

6. Clickjacking

7. Preventing Framing

8. Summary

8. Storing Passwords

1. Introduction

2. Hashing or Encryption

3. Hashing Algorithms

4. Cracking MD5

5. PHP Hashing Algorithms

6. PHP Password Hashing API

7. More Hashing

8. Summary

9. Error Handling

1. Introduction

2. Hacking the Shop

3. PHP Error Levels

4. PHP Error Configuration Settings

5. Custom Error Handling

6. Disabling Revealing Information

7. Summary

10. Conclusion

1. Introduction

2. OWASP Top Ten 1-5

3. OWASP Top Ten 6-10

4. Summary

139,000 تومان

خرید اشتراک افزودن به سبد خرید

خرید دانلودی فوری

در این روش نیاز به افزودن محصول به سبد خرید و تکمیل اطلاعات نیست و شما پس از وارد کردن ایمیل خود و طی کردن مراحل پرداخت لینک های دریافت محصولات را در ایمیل خود دریافت خواهید کرد.

تولید کننده: PluralSight