\u201cWhat could I have done to avoid being hacked?\u201d is a question you\u2019ll often hear after a site is hacked. In some cases the answer is complicated, but a lot of the time it\u2019s relatively simple and there are many checklists and guides online outlining the ways sites can be hacked, plus how to secure them. However, a lot of people learn better from seeing and doing than reading (often boring) checklists. So rather than look at checklists on slides for 30 minutes, we\u2019re going to hack into WordPress instead!<\/p>\r\n\r\n\r\n\r\n
We will target a vulnerable installation of WordPress and attack the usual weaknesses to compromise the site. After every attack we perform, we will make the required changes to block the attack, and then attempt to compromise the site again, hopefully unsuccessfully this time! The goal is to think like a hacker, learning what types of vulnerabilities exist and how they are exploited, so we can better protect our sites and block hackers before they get in. By the end of the talk, we should have a secure site and an incredibly frustrated hacker.<\/p>\r\n","protected":false},"excerpt":{"rendered":"
\u201cWhat could I have done to avoid being hacked?\u201d is a question you\u2019ll often hear after a site is hacked. In some cases the answer is complicated, but a lot of the time it\u2019s relatively simple and there are many checklists and guides online outlining the ways sites can be hacked, plus how to secure them. By the end of the talk, we should have a secure site and an incredibly frustrated hacker.<\/p>\n","protected":false},"author":15297809,"featured_media":0,"template":"","meta":{"_crdt_document":"","jetpack_post_was_ever_published":false,"_wcpt_session_time":1582353900,"_wcpt_session_duration":3000,"_wcpt_session_type":"session","_wcpt_session_slides":"","_wcpt_session_video":"","_wcpt_speaker_id":[13721],"footnotes":""},"session_track":[13412],"session_category":[144],"class_list":["post-13726","wcb_session","type-wcb_session","status-publish","hentry","wcb_track-track-2","wcb_session_category-development"],"jetpack_sharing_enabled":true,"jetpack_likes_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/paZ9pM-3zo","session_date_time":{"date":"February 22, 2020","time":"1:45 pm"},"session_speakers":[{"id":"13721","slug":"stephen-rees-carter","name":"Stephen Rees-Carter","link":"https:\/\/asia.wordcamp.org\/2020\/speaker\/stephen-rees-carter\/"}],"session_cats_rendered":"Development","_links":{"self":[{"href":"https:\/\/asia.wordcamp.org\/2020\/wp-json\/wp\/v2\/sessions\/13726","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/asia.wordcamp.org\/2020\/wp-json\/wp\/v2\/sessions"}],"about":[{"href":"https:\/\/asia.wordcamp.org\/2020\/wp-json\/wp\/v2\/types\/wcb_session"}],"version-history":[{"count":2,"href":"https:\/\/asia.wordcamp.org\/2020\/wp-json\/wp\/v2\/sessions\/13726\/revisions"}],"predecessor-version":[{"id":15526,"href":"https:\/\/asia.wordcamp.org\/2020\/wp-json\/wp\/v2\/sessions\/13726\/revisions\/15526"}],"speakers":[{"embeddable":true,"href":"https:\/\/asia.wordcamp.org\/2020\/wp-json\/wp\/v2\/speakers\/13721"}],"author":[{"embeddable":true,"href":"https:\/\/asia.wordcamp.org\/2020\/wp-json\/wporg\/v1\/users\/valorin"}],"wp:attachment":[{"href":"https:\/\/asia.wordcamp.org\/2020\/wp-json\/wp\/v2\/media?parent=13726"}],"wp:term":[{"taxonomy":"wcb_track","embeddable":true,"href":"https:\/\/asia.wordcamp.org\/2020\/wp-json\/wp\/v2\/session_track?post=13726"},{"taxonomy":"wcb_session_category","embeddable":true,"href":"https:\/\/asia.wordcamp.org\/2020\/wp-json\/wp\/v2\/session_category?post=13726"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}