This is some of the best PHP code on the internet. I have searched for so many hours on Google for someone, anyone, to tell me how to write actually secure PHP, and not throw me some out-of-date guide from 2008 that can be hacked in 60 seconds. I literally spent 7 hours one day, until my hands cracked open and bled from the heat of laptop's keyboard trying to find something, to no avail. I've contacted authors of every PHP security book I could find, checked OWASP, whatever. Between this, Paragonie's blog, and maybe a random few blog posts here and there, there is nothing else.
We're about 2 years out from cybersecurity deteriorating so much that this repo looks like a genius idea that was years ahead of it's time but every day we get a little closer.
Quick post for anyone who comes by this repo.
This is some of the best PHP code on the internet. I have searched for so many hours on Google for someone, anyone, to tell me how to write actually secure PHP, and not throw me some out-of-date guide from 2008 that can be hacked in 60 seconds. I literally spent 7 hours one day, until my hands cracked open and bled from the heat of laptop's keyboard trying to find something, to no avail. I've contacted authors of every PHP security book I could find, checked OWASP, whatever. Between this, Paragonie's blog, and maybe a random few blog posts here and there, there is nothing else.
We're about 2 years out from cybersecurity deteriorating so much that this repo looks like a genius idea that was years ahead of it's time but every day we get a little closer.
SOURCE: security manager at Accenture