PHP is the most popular language on backend development(e.g., Facebook, Yahoo and Wikipedia). Somehow the PHP application is vulunerable if developer is not familiar enough with PHP because of the charaterstic of PHP. In this course, we will review the source code in the view of attacker to dig out the vulnerabilities of web application.
In the course, you will learn what is the key point during code review. Understanding how vulnerability appear through the analysis of common application, library, and CVEs. You will be able to develop your exploit tool based on these knowledge.
- What is code review
- Case study
- Develop exploit
- To battle
OWASP Top 10 web vulnerability
PHP development experience
Laptop
蔡政達 aka Orange Tsai
Member of CHROOT and HITCON
Speaker at domestic and international conferences including HITCON, AVTOKYO and WOOYUN
CTF champions at home and abroad
Discovered 0-Day exploits in Microsoft IE, Django, Yahoo, etc.
Specializes in hacking skills, web security and network penetration