Website Hacked Report 2016 – Q1 : https://sucuri.net/website-security/website-hacked-report
Based on our data, the three CMS platforms most being affected are WordPress, Joomla! and Magento. This does not imply these platforms are more or less secure than others.
Hide your .git/config directory : https://laravel-news.com/2015/08/psa-hide-your-gitconfig-directory/
A lot of developers have horror stories about doing stupid things that cause security issues. A few years ago I was creating an open source app and accidentally committed and pushed up a config file containing my email login and password. It went completely unnoticed until a very nice guy emailed me and told me what I had done. Still to this day I have that weird feeling in my stomach when thinking about it. Major fail!
A simple batch to delete git files from project :
FOR /F “tokens=*” %%G IN (‘DIR /B /AD /S *.git*’) DO RMDIR /S /Q “%%G”
Learn to Hack, https://www.hacksplaining.com/
Comprehensive Security Training for Developers
Hacksplaining is the best and most complete way for developers to learn about the security vulnerabilities that threaten your business.