Alternatives and similar repositories for php-security-pitfalls:

Users that are interested in php-security-pitfalls are comparing it to the libraries listed below

• funkatron / phpsecinfo
  PhpSecInfo provides an equivalent to the phpinfo() function that reports security information about the PHP environment, and offers sugge…
  ☆46Updated 13 years ago
• Te-k / phpscanner
  Php Scanner for malicious files (/!\ this tool is not maintained anymore)
  ☆35Updated 8 years ago
• emanuil / php-reaper
  PHP tool to scan ADOdb code for SQL Injections
  ☆31Updated 8 years ago
• padraic / xss
  Examples from The Hitchhiker's Guide To Cross-Site Scripting (XSS)
  ☆44Updated 12 years ago
• nikic / Phuzzy
  Fuzzer for PHP internal functions
  ☆31Updated 13 years ago
• psecio / versionscan
  A PHP version scanner for reporting possible vulnerabilities
  ☆254Updated 5 years ago
• shieldfy / waf-detector
  small script to detect web application firewall on any website
  ☆42Updated 8 years ago
• Firehed / Security
  Security tools for PHP
  ☆22Updated 3 years ago
• httpoxy / php-fpm-httpoxy-poc
  A PoC for exploiting Guzzle's HTTP_PROXY untrusted read
  ☆54Updated 8 years ago
• oliverklee / pixy
  Pixy is a scanner static code analysis tools that scans PHP applications for security vulnerabilities.
  ☆140Updated last year
• freak3dot / smart-honeypot
  PHP Script demonstrating a smart honey pot.
  ☆17Updated 10 years ago
• CCSIR / PHP-EXIF-Backdoors-generator-using-custom-shellcode
  PHPEB is a small tool that generates and stores obfuscated shellcode in user specified EXIF handlers.
  ☆79Updated 7 years ago
• guelfoweb / wp-waf
  [PHP] WordPress Application Firewall
  ☆34Updated 11 years ago
• lowjoel / phortress
  A PHP static code analyser for potential vulnerabilities
  ☆28Updated 10 years ago
• alekseykorzun / php-audit
  phpAudit is a simple shell script that scans PHP files for possible security risks.
  ☆26Updated 11 years ago
• echo-devim / litewaf
  Lightweight In-App Web Application Firewall for PHP
  ☆43Updated 4 years ago
• dberliner / php-backdoor
  A standalone PHP backdoor for use on *nix and Windows systems.
  ☆50Updated 8 years ago
• v-p-b / DangerousPHPFunctions
  Growing list of potentially dangerous PHP functions
  ☆52Updated 5 years ago
• ircmaxell / php-security-scanner
  A static security scanner for PHP
  ☆96Updated 9 years ago
• neuroo / apache-scalp
  Scalp! is a log analyzer for the Apache web server that aims to look for security problems
  ☆57Updated 3 years ago
• r4v / php-exploits
  ☆9Updated 6 years ago
• PowerScript / GetDataReport
  Get information client with getdatareport (Plugin)
  ☆25Updated 8 years ago
• numanozdemircom / webcop-firewall
  WebCOP Firewall is advanced and PHP based web application firewall. Doesnt ask for root privileges.
  ☆25Updated 6 years ago
• portcullislabs / bsql-hacker
  BSQL Hacker aims for experienced users as well as beginners who want to automate SQL Injections (especially Blind SQL Injections).
  ☆31Updated 10 years ago
• stivalet / PHP-Vulnerability-test-suite
  Collection of vulnerable and fixed PHP synthetic test cases
  ☆60Updated last year
• avicoder / Exif-XSS
  PHP Demo for xss using Exif metadeta.
  ☆9Updated 9 years ago
• hack-all-the-things / charsetinspect
  A script that inspects multi-byte character sets looking for characters with specific user-defined properties
  ☆26Updated 8 years ago
• OWASP / phpsec
  OWASP PHP Security Project - THIS PROJECT IS INACTIVE AND MAY CONTAIN SECURITY FLAWS
  ☆197Updated 9 years ago
• penafieljlm / burp-tracer
  Allows you to trace where inputs are reflected back to the user.
  ☆37Updated 7 years ago
• dionach / CodeIgniterXor
  CodeIgniter <=2.1.4 session cookie decryption vulnerability
  ☆39Updated 8 years ago