{"id":669,"date":"2019-06-29T00:39:45","date_gmt":"2019-06-28T14:39:45","guid":{"rendered":"https:\/\/2019.brisbane.wordcamp.org\/?post_type=wcb_session&#038;p=669"},"modified":"2019-08-31T15:13:20","modified_gmt":"2019-08-31T05:13:20","slug":"think-like-a-hacker-and-secure-wordpress-in-30-minutes-live-on-stage","status":"publish","type":"wcb_session","link":"https:\/\/brisbane.wordcamp.org\/2019\/session\/think-like-a-hacker-and-secure-wordpress-in-30-minutes-live-on-stage\/","title":{"rendered":"Think Like a Hacker and Secure WordPress in 30 minutes, live on stage"},"content":{"rendered":"\n<figure class=\"wp-block-embed-youtube wp-block-embed is-type-video is-provider-youtube wp-embed-aspect-16-9 wp-has-aspect-ratio\"><div class=\"wp-block-embed__wrapper\">\n<span class=\"embed-youtube\" style=\"text-align:center; display: block;\"><iframe loading=\"lazy\" class=\"youtube-player\" width=\"640\" height=\"360\" src=\"https:\/\/www.youtube.com\/embed\/tN7KsiW8zJE?version=3&#038;rel=1&#038;showsearch=0&#038;showinfo=1&#038;iv_load_policy=1&#038;fs=1&#038;hl=en-AU&#038;autohide=2&#038;wmode=transparent\" allowfullscreen=\"true\" style=\"border:0;\" sandbox=\"allow-scripts allow-same-origin allow-popups allow-presentation allow-popups-to-escape-sandbox\"><\/iframe><\/span>\n<\/div><\/figure>\n\n\n\n<p>\u201cWhat could I have done to avoid being hacked?\u201d is a question you\u2019ll often hear after a site is hacked. In some cases the answer is complicated, but a lot of the time it\u2019s relatively simple and there are many checklists and guides online outlining the ways sites can be hacked, plus how to secure them. However, a lot of people learn better from seeing and doing than reading (often boring) checklists. So rather than look at checklists on slides for 30 minutes, we\u2019re going to hack into WordPress instead!<\/p>\n\n\n\n<p>We will target a vulnerable installation of WordPress and attack the usual weaknesses to compromise the site. After every attack we perform, we will make the required changes to block the attack, and then attempt to compromise the site again, hopefully unsuccessfully this time! The goal is to think like a hacker, learning what types of vulnerabilities exist and how they are exploited, so we can better protect our sites and block hackers before they get in. By the end of the talk, we should have a secure site and an incredibly frustrated hacker.<\/p>\n\n\n\n<figure class=\"wp-block-embed-wordpress wp-block-embed is-type-wp-embed is-provider-wordcamp-brisbane-2019\"><div class=\"wp-block-embed__wrapper\">\nhttps:\/\/2019.brisbane.wordcamp.org\/speaker\/stephen-rees-carter\/\n<\/div><\/figure>\n","protected":false},"excerpt":{"rendered":"<p>\u201cWhat could I have done to avoid being hacked?\u201d is a question you\u2019ll often hear after a site is hacked. In some cases the answer is complicated, but a lot of the time it\u2019s relatively simple and there are many &hellip; <a href=\"https:\/\/brisbane.wordcamp.org\/2019\/session\/think-like-a-hacker-and-secure-wordpress-in-30-minutes-live-on-stage\/\">Continue reading <span class=\"assistive-text\">Think Like a Hacker and Secure WordPress in 30 minutes, live on stage<\/span>  <span class=\"meta-nav\">&rarr;<\/span><\/a><\/p>\n","protected":false},"author":15297809,"featured_media":0,"template":"","meta":{"jetpack_post_was_ever_published":false,"_wcpt_session_time":1566610200,"_wcpt_session_duration":3000,"_wcpt_session_type":"session","_wcpt_session_slides":"","_wcpt_session_video":"","_wcpt_speaker_id":[667],"footnotes":""},"session_track":[1287474],"session_category":[1287482],"class_list":["post-669","wcb_session","type-wcb_session","status-publish","hentry","wcb_track-smaller-room-room-401","wcb_session_category-development-advanced"],"jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/paNZQR-aN","jetpack_likes_enabled":true,"session_date_time":{"date":"August 24, 2019","time":"11:30 AM"},"session_speakers":[{"id":"667","slug":"stephen-rees-carter","name":"Stephen Rees-Carter","link":"https:\/\/brisbane.wordcamp.org\/2019\/speaker\/stephen-rees-carter\/"}],"session_cats_rendered":"Development - Advanced","_links":{"self":[{"href":"https:\/\/brisbane.wordcamp.org\/2019\/wp-json\/wp\/v2\/sessions\/669","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/brisbane.wordcamp.org\/2019\/wp-json\/wp\/v2\/sessions"}],"about":[{"href":"https:\/\/brisbane.wordcamp.org\/2019\/wp-json\/wp\/v2\/types\/wcb_session"}],"version-history":[{"count":3,"href":"https:\/\/brisbane.wordcamp.org\/2019\/wp-json\/wp\/v2\/sessions\/669\/revisions"}],"predecessor-version":[{"id":6014,"href":"https:\/\/brisbane.wordcamp.org\/2019\/wp-json\/wp\/v2\/sessions\/669\/revisions\/6014"}],"speakers":[{"embeddable":true,"href":"https:\/\/brisbane.wordcamp.org\/2019\/wp-json\/wp\/v2\/speakers\/667"}],"author":[{"embeddable":true,"href":"https:\/\/brisbane.wordcamp.org\/2019\/wp-json\/wporg\/v1\/users\/valorin"}],"wp:attachment":[{"href":"https:\/\/brisbane.wordcamp.org\/2019\/wp-json\/wp\/v2\/media?parent=669"}],"wp:term":[{"taxonomy":"wcb_track","embeddable":true,"href":"https:\/\/brisbane.wordcamp.org\/2019\/wp-json\/wp\/v2\/session_track?post=669"},{"taxonomy":"wcb_session_category","embeddable":true,"href":"https:\/\/brisbane.wordcamp.org\/2019\/wp-json\/wp\/v2\/session_category?post=669"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}