+ 3
Work in security of Website
Hi everybody ! I have a question ; to know and understand the principals attacks on Website, like XSS or SQL, do I need to do more than the PHP lesson in SoloLearn ? And do you a website or application to learn this ? Thanks !
6 Antworten
+ 9
IMO you do not need to be a security expert to learn that sanitize your input and use prepared statements is not just a matter of good practices. :^)
Buuuuuuuut, it seems like you want to learn PHP just to get an idea about SQLJ and XSS, if this is the case, that's fine... you're doing stuff in the right way, learning a programming language won't never be a waste of time... but let me just point out that SQL might be a bit more useful once you found a SQLJ vulnerability... that's because generally you don't have to deal with the PHP bad-written file, you just have to insert some malicious queries.
Also, XSS is a bit more related to the client-side stuff and Javascript can come to help.
For other kind of vulnerabilities, learn PHP and SQL might be a very good idea.
+ 2
Try Google XSS game if you want to test your knowledge:
https://xss-game.appspot.com
+ 2
www.cybrary.it
this is the best free courses website i could ever find
+ 1
Thank you
0
https://www.root-me.org/?lang=en
https://www.hackthissite.org/pages/index/index.php
Here’s two great sites for testing what you know.