Investigate a hacked WordPress website, and learn what the hacker has left behind, which tools will help find the vulnerability and point of entrance, how to seal up the most common problem areas, and how to set up notifications to help you spot a hack more quickly in the future. Even though we will be going through a WordPress website, most of the tools discussed are applicable to any website.
Changing the engine that runs a large PHP application is fraught with hidden dangers but comes with large rewards. In this talk, I'll detail the process Box went through to safely make the transition to running our production site on top of HHVM.
2015 is an exciting year for PHP. With PHP 7 soon to be released, and HHVM getting complete enough to run most existing PHP apps well, you have two amazingly fast options for running your PHP code. In this session I will cover the performance and new features of PHP 7.
This session will expose you to a broad range of web security vulnerabilities and their solutions. We'll cover the basics such as XSS, CSRF, SQL Injection, and clickjacking. We will also go into depth on issues of session management, password security, two-factor authentication, and much much more!