Security: Process, code & hands-on training
Web security threats are real, and your site is probably vulnerable to attack. In this full-day 8-hour session you'll learn how to make your site and processes secure. The training begins with a review of the most common kinds of vulnerabilities found in Drupal sites. We'll then break them down and focus on the specific ways to address those problems in both site configuration and code. The day will end with a practical, hands-on site review where attendees will have time to review a Drupal site to identify and fix vulnerabilities individually.
Language: English
Duration: 8 hours
Style: hands-on training
Minimum attendees: 15
Maximum attendees: 30
Prerequisities
- Familiarity with Drupal site building
- Some Drupal programming or PHP knowledge required
Goals
- Understanding web security risks
- Spotting exploitable code
- Exploiting vulnerabilities
- Knowing correct usage of Drupal's APIs and best practices
Agenda
- Web security risks
- Common vulnerabilities and how to exploit
- How to fix vulnerabilities and correct usage of Drupal's APIs and best practices
- Hands-on site auditing
Difficulty level
Intermediate to Advanced
Trainers
Ezra Gildesgame
Ben Jeavons
Carl Wiedmann