Lets Hack a Website

Craig Francis (18.Oct.2017 at 19:15, 50 min)
Talk at PHPSW @ Bath Digital Festival: Security in Web Applications (English - UK)

Rating: 4 of 5

We will look at the most (intentionally) insecure website ever created, and work out how many ways we can hack it - discussing each approach, with a quick demo, along with ways to fix the problems.


If you want to run this insecure website on your own computer (it's PHP based), then feel free to checkout/download this repository:


I'd advise you to not look in the "/public/security/answers/" folder until after the talk - only because it covers everything I'll be talking about.


Who are you?

Claim talk

Talk claims have been moved to the new Joind.in site.

Please login to the new site to claim your talk

Comments closed.


Rating: 4 of 5

18.Oct.2017 at 20:42 by Ismael Velasco (7 comments) via Web2 LIVE

Enjoyed the whistlestop tour. Good recap and reminder.

Rating: 3 of 5

18.Oct.2017 at 21:24 by Lucia Velasco (36 comments) via Web2 LIVE

I really enjoyed this! Absolutely a one stop shop for the beginner developer - everyone has committed these crimes earlier in their career! A lot of content for the amount of time (not that that's a bad thing!) - I would have enjoyed some section titles and at least one mandatory cat picture for a brain break! Thank you.

© Joind.in 2019