ndench
commented
2 years ago Thanks @valorin, I'd really love to see this at a future Meetup!
Open valorin opened 2 years ago
ndench
commented
2 years ago Thanks @valorin, I'd really love to see this at a future Meetup!
valorin
commented
2 years ago Happy to do it whenever, it's a lot of fun. 😁
Presenter name: Stephen Rees-Carter Talk name: Think Like a Hacker Talk length: 30minutes Socials: https://twitter.com/valorin Talk synopsis: Laravel comes with many secure options enabled by default, and a bunch of helpful features that you can use to secure the rest. This helpfulness is a double-edged sword though, and you can easily begin to overlook the security implications of using specific features and end up writing insecure code without even realising it. There are plenty of guides and checklists online, such as the OWASP Top Ten, to teach you about web app security, however since a lot of people learn better by doing, we’re going to hack into a Laravel app to learn how to secure it! We will target a vulnerable Laravel application, attacking common weaknesses and misconfigurations to compromise the app. After every attack, we will make the required changes to fix the vulnerability, and then attempt the attack again, hopefully unsuccessfully this time! The goal is to think like a hacker, learning what types of vulnerabilities exist and how they are exploited, so we can write secure code and protect our apps from attack.
Note: I will need to use my laptop to present.