COD 258 – Creating Secure PHP Web Applications

Course Overview


In this course, you will learn important concepts for secure PHP scripting. After completing this course, you will be able to use quotation marks correctly, discuss techniques for handling return codes and exceptions, canonicalize paths to identify the correct files, identify dangerous functions to avoid, apply techniques for preventing or mitigating different injection vulnerabilities, recognize that regular expressions must be handled carefully to avoid DoS attacks, and describe techniques to protect sensitive data in transit.

Topics covered:

  • Key defensive coding principles such as proper session management, error handling, authentication, authorization, data storage, and use of encryption
  • Avoiding and mitigating vulnerabilities such as SQL Injection (SQLi), Cross-Site Scripting (XSS), File Inclusion, Command Injection, Cross-Site Request Forgery (CSRF) and Null Byte attacks

Looking To Learn More?

Request more information on our courses and labs.

* required

Course Details

Course Number: COD 258
Course Duration: 30 minutes
Course CPE Credits: 0.5

NICE Work Role Category

Available Languages

  • English