Web Security

Are you handling user input correctly, storing passwords securely, and guarding against SQL Injection and other attacks?

Learn how to write secure code in our course in Web & PHP Security practices that teaches you everything you need to know to begin protecting yourself from malicious users. This 10 hour, live, online instructor-led class covers the most frequent security attacks, how to detect them, how to protect yourself from them, and how to recover if you are breached. It also covers PHP specific security topics such as best practices for protecting user sessions, working with cookies, and securely handling user logins & passwords.

3d book-web security anthologySign up for the September 2016 session and get a FREE digital copy of our new Web Security anthology!

The class will cover the following topics, and will always be updated with any up-to-date web security vulnerabilities that emerge:

  • Secure PHP Configuration & Filesystems
  • Securing Users
    • User Session Best Practices
    • Secondary Security Measures
    • 2-factor authentication
    • Forgotten Password handling
  • Basic Web Security
    • Filtering and Displaying User Input
    • Brute Force Attacks
    • Encryption/Hashing of Passwords
    • Access Control
    • Man in the Middle Attacks
  • Common Web Attacks
    • Cross Site Request Forgery (CSRF)
    • Cross Site Scripting Attacks (XSS)
      • via Reflection, Storage, and DOM
    • Click-Jacking
  • Other Web Vulnerabilities
    • SQL Injection
    • Code Injection
    • Command Line Injection
    • File Upload Attacks
    • Session Hijacking
  • Preparation
    • Preemptive measures
    • Prepared reactions


I have recommended this course to everyone I know.


Meet the Trainers for this class:

  1. Chris Cornutt
  2. Eli White
  3. Chris Tankersley
  4. Jeremy Kendall
Class Start date Duration
Introductions Sep 27, 2016 - 09:00 (9:00am) 1 hour
System & User Security Sep 28, 2016 - 09:00 (9:00am) 3 hours
CSRF & XSS Sep 29, 2016 - 09:00 (9:00am) 3 hours
Additional Concerns Sep 30, 2016 - 09:00 (9:00am) 3 hours

Please note: all times are in Eastern Time / New York (GMT -0500). Daylight savings apply where appropriate.