SektionEins

Tools

            

Areas

Navigation

Spotlight

PHP Security Poster

The PHP Security Poster which contains the most important aspects of configuring PHP securely and writing secure PHP code is now available in english for free.

Advisories

Secure your web applications!

Secure? Contact us!

Internet-based business-critical applications are constantly on the rise. The goal for every company is to ensure both user-friendliness and security from outsiders’ attacks. But still, as independent studies show, more than 50% of all current security problems can be found in web applications.

Based in Cologne, Germany, SektionEins operates internationally as a security consultant company. We offer full service in the area of web-based application security. This includes vendor-independent consulting, training, and in particular web application audits conducted in close collaboration with our clients.

Our business activities include of a wide range of server-side programming languages (Java, PHP, Ruby, Perl) as well as client-side technologies (JavaScript, AJAX, Flash, AIR, …). We posses specialized know how in the area of PHP.

We actively support the Open Source community with help in securing their projects.

Suhosin, our open source and free PHP hardening patch, offers various options to secure PHP-based applications, their PHP core, and its users against several known and unknown security problems within the application itself and its PHP core.

Furthermore, SektionEins is conducting bleeding edge security research.

News

01.10.09
SektionEins will present on 05.11.09 at the POC 2009 security conference in Seoul about exploiting vulnerabilities in PHP, PHP applications and web application firewalls.

Agenda

17.11.09
Session “Web 2.0 Security Revisited” as well as “Sichere Programmierung mit dem Zend Framework (Updated)” International PHP Conference, Karlsruhe (Germany)
05.11.09
Session “Shocking News in PHP Exploitation” POC 2009, Seoul
02.10.09
Session “10 Sicherheitsprobleme die gerne mit dem Zend Framework gebaut werden” PHP User Group Cologne, Cologne (Germany)
29.07.09
Session “State of the Art Post Exploitation in Hardened PHP Environments” Black Hat USA, Las Vegas
08.07.09
Session “State of the Art Post Exploitation in Hardened PHP Environments” SyScan Taipei, Taipei
03.07.09
Session “State of the Art Post Exploitation in Hardened PHP Environments” SyScan Singapore, Singapore
12.06.09
Session “Secure Programming with the Zend Framework” Dutch PHP Conference, Amsterdam (Netherlands)
11.06.09
Workshop “Crash Course PHP Security” Dutch PHP Conference, Amsterdam (Netherlands)
26.05.09
Session “Sichere Applikationen auf Basis des Zend-Frameworks” as well as “Bytekit – Ein Werkzeug zur Arbeit mit PHP Bytecode” International PHP Conference (Spring Edition), Berlin (Germany)
29.12.08
Session “SWF and the Malware Tragedy” 25C3, Berlin (Germany)

Contact us

SektionEins GmbH
Eupener Straße 150
50933 Köln
Germany
Phone: +49.221.29282933
Phone: +49.221.29282934
Fax: +49.221.29282935
Contact form