International PHP Conference
The Conference for PHP and Web Development

Stranger Danger: Finding Security Vulns Before They Find You!

Session
Until February 17:
✓ Save up to 723€✓ Workshop-Day for free
✓ Group discount
Register now
Bis 17. Februar:
✓ Bis zu 723 € sparen✓ Workshop-Tag gratis
✓ Kollegenrabatt
Jetzt anmelden
Until conference starts:
✓ 2-in-1 conference package
✓ Group discount
✓ Extra specials for freelancers
Register now
Bis Konferenzbeginn:
✓ 5-Tages-Special
✓ Kollegenrabatt
✓ Special Discount für Freelancer
Jetzt anmelden
Infos
Thursday, October 28 2021
09:15 - 10:00
Room:
Forum 7

Open-source modules and the ecosystem are undoubtedly awesome. However, they also represent an undeniable and massive risk. You’re introducing someone else’s code into your system, often with little or no scrutiny. The wrong package can introduce critical vulnerabilities into your application, exposing your application and your user’s data. This talk will use a sample application, Goof, which uses various vulnerable dependencies, which we will exploit as an attacker would. For each issue, we’ll explain why it happened, show its impact, and – most importantly – see how to avoid or fix it.

This Session belongs to the Diese Session gehört zum Programm vom MunichMünchen program. Take me to the program of . Hier geht es zum Programm von Berlin Berlin .

Take me to the full program of Zum vollständigen Programm von Munich München .

This Session Diese Session belongs to the gehört zum Programm von MunichMünchen program. Take me to the current program of . Hier geht es zum aktuellen Programm von Berlin Berlin or oder Munich München .

Stay tuned!

Behind the Tracks of IPC

PHP Core & Coding
Best practices & applications

General Web Development
Broader web development topics

DevOps & Continuous Delivery
Learn about DevOps and transform your development pipeline

Software Architecture
All about PHP frameworks, concepts &
environments

Web Security
All about
web security

Software Quality
More about software testing tools &
strategies

Agile & Company Culture
Getting agile right is so important

Content Management Systems
Sessions on content management systems

#slideless (pure coding)
See how technology really works