Michal Špaček
My trainings
Public trainings
Come to my public trainings, everybody's welcome:
- PHP application security March 12–13, 2019 Prahanow 2 days
- HTTPS for developers and admins March 14, 2019 Praha
Trainings in Prague are held regularly in the middle of March, June, September, and December, in other cities irregularly.
In-house trainings
Any public training can also be turned into an in-house training. As an extra, I offer these in-house-only courses:
Looking for Introduction to PHP, Classes and objects in PHP? I've handed them over to Martin Hujer. I've discontinued Web application performance, Martin Michálek runs a similar training.
My articles
Yesterday I checked Czech websites in “Collection #1” and others (like “Collection #2” to “Collection #5”, “BigDB”), today I've checked Slovak sites. We're neighboring countries and historically have a lot in common, many Czech users have accounts on Slovak sites as well, so it seemed like a good idea.
Last week was all about the 773 million records data breach, nicknamed “Collection #1”. It's a few years old compilation of previous data leaks but it's still interesting to check which Czech websites (and Slovak, too) are present in this and other databases (like “Collection #2” to “Collection #5”, “BigDB”).
fbclid Roughly two weeks ago, Facebook started adding a tracking parameter, fbclid (Facebook click id?), to all external links users share. And I didn't like it so I'm hiding it.
My talks
Favorites
- HTTP hlavičky, Subresource Integrity a spol. chrání vaše návštěvníky před bezpečnostními chybami
- XSS PHP CSP ETC OMG WTF BBQ, o Cross-Site Scriptingu a Content Security Policy
- Hlava není na hesla, použijte na ně raději password manager
- HTTPS, co, proč, jak, zač, nač, kdy, kde, s kým a proti komu
- Webová bezpečnost, popis několika základních útoků i méně známých triků
- Jak jsme zlepšili zabezpečení Slevomatu a jak byste měli udělat to samé
- Zahashovat heslo, uložit, …, profit!, o správném hashování hesel
Upcoming talks
…at your event or conference, let me know!
Talks
XSS PHP CSP ETC OMG WTF BBQ
January 14, 2019, PHP UserGroup Dresden Meetup I/2019 – CTF & Security (45 minutes)
Posilujeme defenzivu s Michalem Špačkem aneb Branky, body, bezpečnost
November 29, 2018, Livesport Talk VII (30 minutes)
Úniky dat, co to vůbec je a jak na ně reagovat
November 15, 2018, WebTop100 2018 (25 minutes)
Cracking passwords, or why use password_hash()
October 28, 2018, phpCE 2018 (50 minutes)
Vyhledávejte na netu jako MacGyver
October 6, 2018, LinuxDays 2018 (50 minutes)
Me answering questions
Michal Špaček z Report URI o smyslu práce, potenciálu i prokrastinaci
January 15, 2019, StartupJobs
Blokování webů a stránek
June 4, 2016, Český rozhlas Online Plus
Na 11. srazu Na volné noze
June 4, 2016, 11. sraz Na volné noze
Webový vývojář musí mít hackerské myšlení
May 30, 2016, Kyberbezpečnost.cz
Hlavní je používat hlavu, ale ne na hesla
May 3, 2016, Host Radiožurnálu