Course Catalog / Learning Path / PHP Developer

PHP Developer

Overview

The PHP learning path includes a variety of  security courses that will vary depending on whether you are seeking core, advanced or elite paths. It is designed to provide PHP developers with a solid foundation of security features necessary to develop server-side web application logic.

The PHP learning path offers secure coding best practices to develop back-end web services connection components and support front-end developers. Learners will be able to apply these security best practices to the entire web application development life cycle from concept stage to delivery and post launch.

Core

  • AWA 101 Fundamentals of Application Security
  • AWA 102 Secure Software Concepts
  • COD 102-108 Fundamentals of SDLC Security Series (7)
  • COD 153 Fundamentals of Secure AJAX Code
  • ENG 205 Fundamentals of Threat Modeling

Advanced

  • COD 255 Creating Secure Code – Web API Foundations
  • COD 256 Creating Secure Code – Ruby on Rails
  • COD 259 Node.js Threats and Vulnerabilities
  • COD 261-266 Secure Scripting Series (6)
  • COD 281-284Creating Secure Java Code Series (4)
  • COD 361-364 Creating Secure HTML5 Code Series (4)
  • DES 202-205 Fundamentals of Cryptography Series
  • DES 222-231 Applying OWASP 2017: Mitigations Series (10)
  • TST 222-231 Testing for OWASP 2017 Series (10)

Elite

  • DES 101 Fundamentals of Secure Architecture
  • DES 212 Architecture Risk Analysis and Remediation
  • DES 311 Creating Secure Application Architecture
  • ENG 191-195 Integrating the MS SDL into your SDLC Series (5)
  • ENG 211 How to Create Application Security Design Requirements
  • ENG 311 Attack Surface Analysis & Reduction
  • ENG 312 How to Perform a Security Code Review
Ready to Demo? Questions about learning paths? Contact Us!

Learning Path Details

Number of Courses: 55

Total Duration: 27 hours

Total CPE Credits: 32

The Courses

View All Courses     Download Learning Path Catalog     Download Course Catalog

COD 266 – Secure Ruby Scripting (NEW)

15 Minutes

COD 265 – Secure Python Scripting (NEW)

15 Minutes

COD 108 – Software Operations and Maintenance (NEW)

10 Minutes

COD 107 – Secure Software Deployment (NEW)

10 Minutes

COD 106 – The Importance of Software Integration and Testing (NEW)

15 Minutes

COD 105 – Secure Software Development (NEW)

20 Minutes

COD 104 – Designing Secure Software (NEW)

15 Minutes

COD 103 – Creating Software Security Requirements (NEW)

10 Minutes

COD 102 – The Role of Software Security (NEW)

10 Minutes

TST 231 – Testing for OWASP 2017: Insufficient Logging & Monitoring

10 Minutes
Advanced

TST 230 – Testing for OWASP 2017: Use of Components with Known Vulnerabilities

10 Minutes
Advanced

TST 229 – Testing for OWASP 2017: Insecure Deserialization

10 Minutes
Advanced

TST 228 – Testing for OWASP 2017: Cross Site Scripting (XSS)

15 Minutes
Advanced

TST 227 – Testing for OWASP 2017: Security Misconfiguration

10 Minutes
Advanced

TST 226 – Testing for OWASP 2017: Broken Access Control

10 Minutes
Advanced

TST 225 – Testing for OWASP 2017: XML External Entities

10 Minutes
Advanced

TST 224 – Testing for OWASP 2017: Sensitive Data Exposure

12 Minutes
Advanced

TST 223 – Testing for OWASP 2017: Broken Authentication

12 Minutes
Advanced

TST 222 – Testing for OWASP 2017: Injection

15 Minutes
Advanced

ENG 312 – How to Perform a Security Code Review

60 Minutes
Elite

ENG 311 – Attack Surface Analysis & Reduction

60 Minutes
Elite

ENG 211 – How to Create Application Security Design Requirements

60 Minutes
Advanced

ENG 205 – Fundamentals of Threat Modeling

60 Minutes
Advanced

ENG 195 – Implementing the Microsoft SDL Threat Modeling Tool

20 Minutes
Core

ENG 193 – Implementing the Microsoft SDL Optimization Model

25 Minutes
Core

ENG 192- Implementing the Agile Microsoft SDL

20 Minutes
Core

DES 311 – Creating Secure Application Architecture

120 Minutes
Advanced

DES 231 – Applying OWASP 2017: Mitigating Insufficient Logging & Monitoring Vulnerabilities

12 Minutes
Advanced

DES 230 – Applying OWASP 2017: Mitigating Use of Components with Known Vulnerabilities

12 Minutes
Advanced

DES 229 – Applying OWASP 2017: Mitigating Insecure Deserialization

12 Minutes
Advanced

DES 226 – Applying OWASP 2017: Mitigating Broken Access Control

12 Minutes
Advanced

DES 225 – Applying OWASP 2017: Mitigating XML External Entities

12 Minutes
Advanced

DES 224 – Applying OWASP 2017: Mitigating Sensitive Data Exposure

12 Minutes
Advanced

DES 222 – Applying OWASP 2017: Mitigating Injection

12 Minutes
Advanced

DES 212 – Architecture Risk Analysis & Remediation

60 Minutes
Advanced

DES 205 – Message Integrity Cryptographic Functions

45 Minutes
Advanced

DES 204 – Role of Cryptography in Application Development

15 Minutes
Advanced

DES 203 – Cryptographic Components: Randomness, Algorithms, and Key Management

15 Minutes
Advanced

DES 202 – Cryptographic Suite Services: Encoding, Encrypting & Hashing

45 Minutes

DES 101 – Fundamentals of Secure Architecture

60 Minutes
Core

COD 364 – Securing HTML5 Connectivity

20 Minutes
Elite

COD 363- Securing HTML5 Data

20 Minutes
Elite

COD 362 – HTML5 Built in Security Features

20 Minutes
Elite

COD 361 – HTML5 Secure Threats

15 Minutes
Elite

COD 315 – Creating Secure PHP Code (Update Coming Soon)

120 Minutes
Elite

COD 264 – Secure Perl Scripting (NEW)

15 Minutes
Advanced

COD 263- Secure Bash Scripting (NEW)

15 Minutes
Advanced

COD 262 – Fundamentals of Shell and Interpreted Language Security (NEW)

30 Minutes
Advanced

COD 261 – Threats to Scripts (NEW)

30 Minutes
Advanced

COD 259 – Node.js Threats & Vulnerabilities

30 Minutes
Advanced

COD 256 – Creating Secure Code: Ruby on Rails Foundations

90 Minutes
Advanced

COD 255 – Creating Secure Code: Web API Foundations

120 Minutes
Advanced

COD 153 – Fundamentals of Secure Ajax Code (Update Coming Soon)

35 Minutes
Core

AWA 102 – Secure Software Concepts

30 Minutes
Core

AWA 101 – Fundamentals of Application Security (UPDATED)

30 Minutes
Core