Laracon DB
Laracon DB
Stephen Rees-Carter Stephen Rees-Carter
@valorin
Has spoken at:
2020
Laracon EU
2022
Laracon Online
2023
Laracon US
2023
Laracon AU
2024
Laravel Live DK
2024
Laracon AU
And has done the following talks:
Th1nk Lik3 a H4cker (2023, 2024)
security
interactive
best-practices
vulnerability-testing
hacking

An interactive security demonstration where the speaker guides the audience through various security vulnerabilities in Laravel applications. The talk showcases common security issues like password brute forcing, insecure direct object references, cross-site scripting through markdown, and environment file exposure. The audience participates by attempting to hack a live demo application using their phones while learning about security best practices and common pitfalls.

CSRF is dead (2020)
security
cookies
browser-features
csrf-protection
laravel-configuration

A comprehensive talk about CSRF (Cross-Site Request Forgery) attacks and Same-Site Cookies in Laravel applications. The speaker explains how CSRF attacks work, demonstrates different Same-Site Cookie attributes (Strict, Lax, None), and discusses how Laravel implements Same-Site Cookie protection. The talk includes live demonstrations and explains why CSRF protection remains important despite new browser security features.

Bulletproof Coding: Essential Security (2024)

Keep Thinking Like a Hacker (2022)
No video available