Think like a hacker: Secure Drupal Code: Part One
Note, this is a 2.5 hour mini-training on security and not 3 separate sessions
Drupal is a powerful tool, but for many reasons sites are released with security vulnerabilties. In this technical session, Cash Williams, lead of security audits for Acquia's Professional Services, and Drupal Security Team member Ben Jeavons will break down popular security risks on the web and cover writing secure Drupal code.
- Security risks you should be worried about
- Common security mistakes found when auditing sites
- Thinking like a hacker
- XSS, CSRF and access bypass
- Automation tools: static code reviews, pen-testing, reporting