Join me in this discussion based on the first hand experiences from someone who both protects WordPress sites and writes exploits for fun, what not to do when programming a secure site. I will discuss the tactics the attackers use to exploit code, the most common ways developers introduce insecure code to a site, and what you can do to help avoid these issues. You will learn, from the many security failures I have seen what not to do when adding a new feature to a site’s code.
Required skill set
Basic knowledge of programming (PHP), Knowledge of the HTTP stack.
Technical requirement
It will benefit if you have some plugin or other source code to review (such as your own plugins if you are an plugin author/developer).