The Suburban Chicago PHP & Web Development Meetup

The comic Exploits of a Mom from XKCD demonstrates exactly why you should be careful about SQL injection

You can get a signed 9″x3.81″ poster of this strip in the XKCD store

There was no way we could cover everything I wanted to talk about in just two hours, so I made a web application security handout (PDF) for everybody. If you didn’t make it to the Meetup, be sure to download a copy.

Dave’s slides on cross-site scripting (XSS) and cross-site request forging:

Mike Creuzer’s slides on SQL Injection:

Dan Day gave an impromptu demo of the Burp Suite

Thanks to Viveli for hosting this month’s event, and they’ve offered to have us back for January! See you then, and happy holidays!

This was a talk given at Google, covering the kinds of security issues websites are facing these days.