Developing Websites with PHP Training Course

This training course is designed to prepare participants for the role of a professional web designer (occupation code: 213202 according to the Standards of Professional Qualifications), with a focus on “HTML and CSS in web design.” It also includes a programming component that addresses problem-solving using JavaScript and PHP.

The program is structured on the expectation that participants will develop the ability to create and design websites using HTML4/HTML5 alongside Cascading Style Sheets (CSS2/CSS3/CSS4). Throughout the process of building a website, learners will apply HTML tags to organise text, images, tables, and interactive forms on web pages, as well as establish connections through links to other pages and external sites. In parallel, Cascading Style Sheets 2.0 will be used to style and format web content in line with specific client requirements.

Upon completion, participants will be well-positioned to pursue opportunities within service-oriented companies specialising in web design or to establish their own consulting practice as self-employed professionals. The course content focuses on the practical aspects of website creation using HTML and CSS, ensuring a solid foundation for real-world application.

This instructor-led, live training in New Zealand (online or on-site) is designed for data scientists and software engineers who wish to use AdaBoost to develop boosting algorithms for machine learning with Python.

By the end of this training, participants will be able to:

• Set up the necessary development environment to begin building machine learning models with AdaBoost.
• Understand the ensemble learning approach and how to implement adaptive boosting.
• Learn how to build AdaBoost models to enhance machine learning algorithms in Python.
• Apply hyperparameter tuning to improve the accuracy and performance of AdaBoost models.

In this instructor-led, live training in New Zealand, participants will learn how to implement advanced PHP programming tools and techniques.

By the end of this training, participants will be able to:

• Grasp advanced concepts in PHP programming.
• Establish consistency and resolve complex problems using PHP programming.
• Explore additional ways to build more flexible software using PHP.

This instructor-led, live training in New Zealand (online or on-site) is designed for engineers who wish to leverage open-source tools to automate the build, test, and deployment processes for PHP applications and services.

By the end of this training, participants will be able to:

• Install and configure a range of open-source tools to enable continuous integration, testing, and deployment.
• Understand the advantages and disadvantages of employing different open-source CI tools such as GitLab CI and Jenkins.
• Combine CI tools with open-source solutions for both unit testing and integration testing of PHP applications.

Even experienced programmers do not necessarily master all the security features offered by their development platforms, nor are they always aware of the various vulnerabilities relevant to their work. This course is designed for developers working with both Java and PHP, equipping them with essential skills to make their applications resilient against modern Internet-based attacks.

The course explores the layers of the Java security architecture, covering access control, authentication, authorisation, secure communication, and a range of cryptographic functions. It also introduces various APIs that can be used to secure PHP code, such as OpenSSL for cryptography and HTML Purifier for input validation. On the server side, best practices are provided for hardening and configuring the operating system, web container, file system, SQL server, and PHP itself. Special emphasis is placed on client-side security, addressing security issues related to JavaScript, Ajax, and HTML5.

General web vulnerabilities are examined through examples aligned with the OWASP Top Ten, illustrating various injection attacks, script injections, session handling attacks, insecure direct object references, file upload issues, and more. The course also covers language-specific problems and runtime environment issues in both Java and PHP, grouped into standard vulnerability categories such as missing or improper input validation, incorrect use of security features, flawed error and exception handling, time- and state-related problems, code quality issues, and mobile code-related vulnerabilities.

Participants will have the opportunity to experiment with the discussed APIs, tools, and configuration effects firsthand. Each vulnerability introduction is supported by hands-on exercises that demonstrate the consequences of successful attacks, guide learners on how to fix the bugs, apply mitigation techniques, and make use of various extensions and tools.

Participants attending this course will

• Understand fundamental concepts of security, IT security, and secure coding
• Learn about web vulnerabilities beyond the OWASP Top Ten and how to avoid them
• Gain knowledge of client-side vulnerabilities and secure coding practices
• Learn how to utilise various security features within the Java development environment
• Develop a practical understanding of cryptography
• Learn how to apply various security features in PHP
• Understand security concepts related to web services
• Gain practical experience using security testing tools
• Learn about common coding mistakes and how to avoid them
• Stay informed about recent vulnerabilities in Java and PHP frameworks and libraries
• Access resources and further reading materials on secure coding practices

Audience

Developers

This course equips PHP developers with essential skills to build applications resilient against modern internet-based attacks. Web vulnerabilities are explored through PHP-focused examples that extend beyond the OWASP Top Ten, covering a range of injection attacks, script injections, session handling exploits in PHP, insecure direct object references, file upload issues, and more. PHP-specific vulnerabilities are introduced and categorised under standard vulnerability types such as missing or improper input validation, incorrect error and exception handling, misuse of security features, and time- and state-related issues. For the latter, we examine attacks like open_basedir circumvention, denial-of-service via magic floats, and hash table collision attacks. In each scenario, participants will become familiar with the most critical techniques and functions needed to mitigate these risks.

Special attention is given to client-side security, addressing security concerns related to JavaScript, Ajax, and HTML5. A variety of PHP security-related extensions are introduced, including hash, mcrypt, and OpenSSL for cryptography, as well as Ctype, ext/filter, and HTML Purifier for input validation. Best practices for hardening are presented in the context of PHP configuration (setting php.ini), Apache, and server-level settings. Finally, an overview is provided of various security testing tools and techniques available to developers and testers, including security scanners, penetration testing frameworks, exploit packs, sniffers, proxy servers, fuzzing tools, and static source code analyzers.

Both the introduction of vulnerabilities and the configuration practices are reinforced through numerous hands-on exercises. These demonstrate the real-world impact of successful attacks, illustrate how to apply mitigation techniques, and introduce the use of various extensions and tools.

Participants attending this course will

• Understand fundamental concepts of security, IT security, and secure coding
• Learn about web vulnerabilities beyond the OWASP Top Ten and how to prevent them
• Gain knowledge of client-side vulnerabilities and secure coding practices
• Develop a practical understanding of cryptography
• Learn how to utilise various PHP security features
• Identify typical coding mistakes and learn how to avoid them
• Stay informed about recent vulnerabilities in the PHP framework
• Gain hands-on experience with security testing tools
• Access resources and further reading materials on secure coding practices

Audience

Developers

This instructor-led, live training in New Zealand (online or on-site) is designed for intermediate-level PHP developers who want to apply design patterns effectively in their projects.

By the end of this training, participants will be able to:

• Understand the purpose and benefits of design patterns.
• Identify and implement appropriate design patterns for common scenarios.
• Structure PHP applications using industry-recognised best practices.
• Integrate patterns into modern frameworks such as Symfony or Zend.

This instructor-led, live training in New Zealand introduces the fundamentals of Laravel and guides participants through building a Laravel-based web application.

This instructor-led, live training in New Zealand (available online or on-site) is designed for developers who wish to learn and apply Livewire to create modern, dynamic application interfaces.

By the end of this training, participants will be able to:

• Build and test Livewire components.
• Develop applications using the Livewire library.
• Create dynamic components within PHP.

This instructor-led, live training in New Zealand (online or on-site) is intended for web developers who want to leverage Laravel and Vue.js for full-stack web development.

By the end of this training, participants will be able to:

• Build web applications using Laravel and Vue.js.
• Integrate the Laravel backend API with Vue.js.
• Deploy a Laravel application.

This instructor-led, live training in New Zealand (available online or on-site) is tailored for developers who want to leverage Lumen to create Laravel-based microservices and applications.

By the end of this training, participants will be able to:

• Set up the necessary development environment to begin building microservices with Lumen.
• Understand the advantages of implementing microservices using Lumen and PHP.
• Execute and deploy microservices functions and operations using the Lumen framework.
• Secure and manage access to microservices architectures by implementing robust security layers.

This instructor-led, live training in New Zealand (available online or on-site) is designed for web developers who wish to build web applications using Magento 2.

By the end of this training, participants will be able to:

• Master Magento 2 development patterns, design patterns, and best practices.
• Create and customise themes in Magento 2.
• Implement customisations to Magento 2 functionality using extensions.

This instructor-led, live training in New Zealand (available online or on-site) is aimed at developers who wish to use PHP 8 to develop, build, and test complex enterprise-level web applications, such as e-commerce sites, CRM systems, WMS, and more.

By the end of this training, participants will be able to:

• Set up the necessary development environment to begin building web applications with PHP 8.
• Gain a deeper understanding of the new features in PHP 8 and how to implement them effectively.
• Refresh their knowledge of PHP fundamentals and pick up useful programming tips.
• Apply the new functions in PHP 8 to enhance the performance of web applications.
• Understand best practices for improving the security and stability of web applications using PHP 8.

This course is designed for experienced programmers who wish to explore key issues related to the use of design patterns and refactoring. Each participant will gain an understanding of the properties and practical examples of applying these patterns, enabling them to build and correct application code efficiently.

This instructor-led, live training (available online or on-site) is intended for web developers who wish to build middleware and web services using Laravel.

By the end of this training, participants will be able to:

• Use Laravel's PHP Artisan to generate code and components.
• Build RESTful APIs in Laravel that support browsing, reading, editing, adding, and deleting resources.
• Filter and sort results based on URL parameters using RESTful APIs.