Presentation I delivered on 27-MAY-2015 at the Boston PHP meetup (http://www.meetup.com/bostonphp/) for month 5 of the 200 Days of Code (http://200doc.org/) beginner track.
6. OWASP top ten
• A1-Injection
• A2-Broken Authentication and Session Management
• A3-Cross-Site Scripting (XSS)
• A4-Insecure Direct Object References
• A5-Security Misconfiguration
• A6-Sensitive Data Exposure
• A7-Missing Function Level Access Control
• A8-Cross-Site Request Forgery (CSRF)
• A9-Using Components with Known Vulnerabilities
• A10-Unvalidated Redirects and Forwards
11. –Larry Wall
“...we saw how everyone borrowed Perl
5 compatible regular expressions, and
we figured - well, you know, they're a
real big mess, and we're sorry, but
we're changing them now, now that
you've just borrowed them.”
13. PCRE functions• preg_filter — Perform a regular expression search and replace
• preg_grep — Return array entries that match the pattern
• preg_last_error — Returns the error code of the last PCRE regex
execution
• preg_match_all — Perform a global regular expression match
• preg_match — Perform a regular expression match
• preg_quote — Quote regular expression characters
• preg_replace_callback — Perform a regular expression search and
replace using a callback
• preg_replace — Perform a regular expression search and replace
• preg_split — Split string by a regular expression
14. PCRE functions• preg_filter — Perform a regular expression search and replace
• preg_grep — Return array entries that match the pattern
• preg_last_error — Returns the error code of the last PCRE regex
execution
• preg_match_all — Perform a global regular expression match
• preg_match — Perform a regular expression match
• preg_quote — Quote regular expression characters
• preg_replace_callback — Perform a regular expression search and
replace using a callback
• preg_replace — Perform a regular expression search and replace
• preg_split — Split string by a regular expression