2012: Finding vulnerabilities in PHP code

This is a very old talk. The tools here are very outdated, and there are many more, much better alternatives to static analysis of PHP code these days. Nevertheless, it was a great opportunity to research and discuss such topics back in 2012, and I am grateful that I had these opportunities to practice my public speaking.

This is a talk given at the Open Programming Miniconf at 2012 in Ballarat, Vic. It is about analysing code without actually executing it, in order to identify possible code injection vulnerabilities. The miniconf was organised by Christopher Neugebauer.

Video of Presentation #

YouTube Link

Slides used in Presentation #

Please click the image below to view the presentation in your browser (HTML5 slides).