Certified Secure PHP Developer (CSPD)

About The Course

The course will present security guidelines and considerations in PHP Web Applications Development. Participants will learn basics of application security, how to enforce security on a PHP based application in the code level, and security best practices to be followed in each phases of software development life cycle. The course revolves around testing and fixing of issues filed under OWASP TOP 10.

Objectives of the course

Upon completion of this course, participants will be able to:

  • Understand the need for security
  • Understand the security threats
  • Design and develop secured PHP applications
  • Design & develop application using ESAPI (Enterprise Security API by OWASP)

Who should attend this course?

  • PHP developers wishing to improve their security skills
  • Testers who wants to improve their security skills
  • Development & System Architects wishing to improve their security skills and awareness

Table of Contents

Session 1: Introduction
Session 2: Threat Modeling
Session 3: Understanding Testing Setup
Session 4: Web Application Attacks & Countermeasures
Session 5: Web Application Scanners
Session 6: Security Frameworks
Session 7: PHP Specific Countermeasures
Session 8: Web Server Security Best Practices (Apache)
Session 9: Database Security Best Practices (MySQL Server)
Session 10: Secure Development Lifecycle
Session 11: Testing Web Services
Session 12: Source Code Analysis

Register for a training

Previous TrainingCSJD
Next TrainingSource Code Analysis
Abdulaziz Alanmed , Aramco

Faculty is outstanding instructor who simplified this course into an interactive course.

Azam Al Fayor, Personnal Department, Aramco

Faculty is great, knowledgeable, approachable instructor. I enjoyed & learnt a lot from the course & from him. My only suggestion is to give the course structure (i:e break time & time –table) before hands.

Sultan Almutairi, Aramco

Faculty has well established his credibility by showing real cases, that demonstrated his great knowledge

Joseph Chacko, Analyst Programmer- IndusInd bank

It is very good experience to learn Web Security and the teacher is very Technically sound and the classes are very good.

Snehal Sunil Gajare

Trainer faculty was great, knowledgeable, approachable instructor. We learned a lots of different new topics from the course.

Mohan Nirkhede

It should be of four days so that more examples can be explained.