Log in to watch this talk
You need to be logged in to access this video. If you don't have an account, purchase a virtual pass for the latest php[tek] conference to get access to the full video library.
Incident Response for Web Applications: When Your App Gets Hacked
Modern web applications remain one of the most targeted attack surfaces, and PHP applications are frequently exploited due to insecure coding practices, outdated dependencies, weak authentication mechanisms, and misconfigured servers. When a compromise occurs, organizations often struggle to identify the attack vector, contain the breach, preserve forensic evidence, and restore services without repeating the same mistakes. This session provides a practical, real-world approach to responding to security incidents affecting PHP-based web applications. The presentation will walk through the full incident response lifecycle, including detection, triage, containment, eradication, recovery, and post-incident analysis. Using realistic attack scenarios and lessons learned from real-world incidents, the session will demonstrate how to analyze logs, identify indicators of compromise, investigate malicious web shells, preserve evidence, coordinate communication, and implement remediation strategies. The discussion will also cover secure coding practices, web application monitoring, threat detection, and preventive controls that reduce the likelihood and impact of future attacks. This presentation is designed for cybersecurity professionals, incident responders, developers, application security teams, and IT leaders seeking actionable guidance for handling modern web application breaches effectively.
Guman Chauhan