Defensive Programming for PHP

Course Description

PHP applications are prone to vulnerabilities common in all web applications. Due to the characteristics of the platform, PHP applications can be affected by a set of very specific issues that do not apply to other environments. This course focuses on teaching defensive programming techniques for safely using PHP in your web applications to thwart attacks and reduce the risks of information breaches.

Course Themes

  • Introduce defensive programming and configuration techniques for PHP-specific security issues
  • Demonstrate methods to secure web application data flow
  • Prescribe ways to protect against cross-site request forgery
  • Recommend effective tactics to implement secure SQL access, secure file upload and access, password handling, and secure PHP configuration

Learning Objectives

  • Apply defensive programming techniques to mitigate PHP-specific security issues
  • Apply defensive techniques to mitigate common web vulnerabilities
  • Implement system access based on best practices
  • Implement secure configuration based on best practices
  • Confidently architect PHP applications securely


Delivery Format: eLearning

Duration: 1 Hour

Level: Advanced

Intended Audience:

  • Developers
  • QA Engineers
  • Architects
  • Application Security Specialists

Competencies: Understanding of the PHP programming language