Library PHP Tek 2026 Don't Get Pwned: OWASP Top 10 for the Lazy PHP Developer
Please enjoy this raw, unedited video while we continue to edit the final video.
Don't Get Pwned: OWASP Top 10 for the Lazy PHP Developer

Log in to watch this talk

You need to be logged in to access this video. If you don't have an account, purchase a virtual pass for the latest php[tek] conference to get access to the full video library.

Log In Get a Virtual Pass
Please enjoy this raw, unedited video while we continue to edit the final video.

Don't Get Pwned: OWASP Top 10 for the Lazy PHP Developer

Gunnard Engebreth Gunnard Engebreth PHP Tek 2026 Intermediate (some prior knowledge necessary) Standard (50 minutes)

Security doesn't have to be a full-time job. This talk breaks down each OWASP vulnerability with the minimum effort required to not get hacked. No academic theory – just "do this, don't do that" with practical PHP examples. I'll show you security quick wins, how to leverage your framework's built-in protections, and the security checks you can automate so you don't have to think about them again.

Up Next from PHP Tek 2026

Scaling Legacy PHP: Refactoring the Heart of the System Without Rewriting
Vijay Panwar · Standard (50 minutes)
Modernizing Legacy PHP Infrastructure: From Anywhere to Cloud-Native
Joe Ferguson · Standard (50 minutes)
It's Time To Talk About Signals
Julian Burr · Standard (50 minutes)
Taming Time in PHP: Best Practices and Gotchas
Scott Keck-Warren · Standard (50 minutes)