Menu
I'm trying to choose a framework that provides really good security of web applications, protects against as much of OWASP Top-10 as possible, such as:
the thing is I've tried researching really heavily: Cakephp, Zend, Yii, Code Igniter, Kohana and some have basic authentication, maybe a little authorization, but nothing for any application that needs solid code-security.
Is most of the vulnerability types above currently secured by only writing custom code in these frameworks?
This is kinda my first experience with using frameworks, everything up til this point has been custom php web apps. My whole thought for php-frameworks was it was going to be easy to protect against these vulnerabilities, given it isn't natively, why use one? Or is there a framework out there I'm not looking at which is better than those listed above for strong web app security? Thanks
969
Phalcon is a full-stack PHP framework whose source code is written in the C programming language. Using the framework doesn't require knowledge of C as it uses PHP classes and its namespaces. Phalcon is one of the fastest PHP frameworks available. It's very lightweight and uses an MVC architecture.
PHP vs Laravel are both well-suited frameworks for building PHP based web apps with effective solutions. With PHP, the development solutions might comparatively be more straightforward, and on the other hand, Laravel offers more variety in terms of tools and resources, making it reliable.
I'd also say try CodeIgniter.
Also CodeIgniter is easy to use if you're working with a framework for the first time and has a great user guide which is really easy to understand.
Edit: Since I'm still getting upvotes here in 2019, please check https://laravel.com/
151
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With
