lowjoel / phortress
A PHP static code analyser for potential vulnerabilities
☆26Updated 9 years ago
Related projects: ⓘ
- PHP tool to scan ADOdb code for SQL Injections☆31Updated 8 years ago
- PHP Unserialize Check - Burp Scanner Extension☆18Updated 6 years ago
- Fuzzer for PHP internal functions☆31Updated 12 years ago
- Examples from The Hitchhiker's Guide To Cross-Site Scripting (XSS)☆45Updated 12 years ago
- CodeIgniter <=2.1.4 session cookie decryption vulnerability☆39Updated 8 years ago
- Duncan - Blind SQL injector skeleton☆56Updated 2 years ago
- Growing list of potentially dangerous PHP functions☆52Updated 5 years ago
- Static Analysis for Detecting Side-Channel Vulnerabilities in PHP applications (Work-In-Progress)☆15Updated 7 years ago
- Proof-of-concept to exploit the flaw in the PHP-GD built-in function, imagecreatefromjpeg()☆143Updated 9 years ago
- Demo project how to bypass the disable_functions security control of PHP on Linux☆25Updated 5 years ago
- Collection of vulnerable and fixed PHP synthetic test cases☆57Updated 11 months ago
- Scalp! is a log analyzer for the Apache web server that aims to look for security problems☆57Updated 3 years ago
- A script that inspects multi-byte character sets looking for characters with specific user-defined properties☆25Updated 8 years ago
- Abusing fts3_tokenizer☆10Updated 8 years ago
- Audit your PHP version for known CVEs and patches☆113Updated this week
- OWASP WAP - Web Application Protection Project☆11Updated 5 years ago
- Elasticsearch 1.4.0 < 1.4.2 Remote Code Execution exploit and vulnerable container☆32Updated 6 years ago
- SSRF Protection Library for PHP - http://safecurl.fin1te.net☆73Updated last year
- ☆24Updated this week
- XSS Weaponization☆34Updated 10 years ago
- A PoC for exploiting Guzzle's HTTP_PROXY untrusted read☆53Updated 8 years ago
- Reflective/DOM XSS scanner built on casperJS☆81Updated 9 years ago
- ☆19Updated this week
- An adaptive, intelligent XSS fuzzer that learns how the response is reflected and carefully crafts an XSS payload to match☆41Updated 11 years ago
- Find exploitable PHP files by parameter fuzzing and function call tracing☆58Updated 7 years ago
- Immunio's XSS Fuzzer tool☆25Updated 8 years ago
- Repo for proof of concept exploits and tools.☆56Updated 3 years ago
- Memcache hacking tool.☆47Updated 7 years ago
- Security advisories by SBA Research.☆22Updated last month
- Simple socket-based gateway to the Burp Collaborator☆33Updated 7 years ago