Lets Hack a Website

Craig Francis (18.Oct.2017 at 19:15, 50 min)
Talk at PHPSW @ Bath Digital Festival: Security in Web Applications (English - UK)

Rating: 4 of 5

We will look at the most (intentionally) insecure website ever created, and work out how many ways we can hack it - discussing each approach, with a quick demo, along with ways to fix the problems.

--------------------------------------------------

If you want to run this insecure website on your own computer (it's PHP based), then feel free to checkout/download this repository:

https://github.com/craigfrancis/bad-website

I'd advise you to not look in the "/public/security/answers/" folder until after the talk - only because it covers everything I'll be talking about.

--------------------------------------------------

Who are you?

Claim talk

Talk claims have been moved to the new Joind.in site.

Please login to the new site to claim your talk

 
Comments closed.

Comments

Rating: 4 of 5

18.Oct.2017 at 20:42 by Ismael Velasco (5 comments) via Web2 LIVE

Enjoyed the whistlestop tour. Good recap and reminder.

Rating: 3 of 5

18.Oct.2017 at 21:24 by Lucia Velasco (19 comments) via Web2 LIVE

I really enjoyed this! Absolutely a one stop shop for the beginner developer - everyone has committed these crimes earlier in their career! A lot of content for the amount of time (not that that's a bad thing!) - I would have enjoyed some section titles and at least one mandatory cat picture for a brain break! Thank you.

© Joind.in 2018