security-checklist / php-security-check-list
PHP Security Check List [ EN ] π β£οΈ
β297Updated 5 years ago
Alternatives and similar repositories for php-security-check-list:
Users that are interested in php-security-check-list are comparing it to the libraries listed below
- This will assist you in the finding of potentially vulnerable PHP code. Each type of grep command is categorized in the type of vulnerabiβ¦β348Updated 6 years ago
- Sample vulnerable code and its exploit codeβ189Updated 3 years ago
- A small python script to check for Cross-Site Tracing (XST)β136Updated 9 years ago
- Nano is a family of PHP web shells which are code golfed for stealth.β439Updated 5 years ago
- CMS Detection and Exploit Kit based on Whatcms.org APIβ252Updated 3 months ago
- A series of python scripts for generating weird character combinations for bypassing web application firewalls (WAF) and XSS blockersβ273Updated 6 years ago
- Penetration Testing Notes and Playbook (PTP)β175Updated 6 years ago
- This code is vulnerable to SQL Injection and having SQLite database. For SQLite database, SQL Injection payloads are different so it is fβ¦β160Updated 3 years ago
- Some tools to automate recon - 003randomβ296Updated 6 years ago
- Bypassing disabled exec functions in PHP (c) CRLFβ401Updated 4 years ago
- From XSS to RCE 2.75 - Black Hat Europe Arsenal 2017 + Extrasβ425Updated 5 years ago
- β326Updated 7 years ago
- Tulpar - Web Vulnerability Scannerβ199Updated 5 years ago
- Toolset for detecting reflected xss in websitesβ112Updated 6 years ago
- Find known vulnerabilities in WordPress plugins and themes using Burp Suite proxy. WPScan like plugin for Burp.β180Updated 5 years ago
- RIPS - A static source code analyser for vulnerabilities in PHP scriptsβ312Updated 3 years ago
- Local File Inclusion Exploitation Tool (mirror)β123Updated 8 years ago
- exploit for ImageMagick's uninitialized memory disclosure in gif coderβ280Updated 7 years ago
- MassBleed SSL Vulnerability Scannerβ243Updated 4 years ago
- Wordlist for content(directory) bruteforce discovering with Burp or dirsearchβ212Updated 4 months ago
- SQLiPy is a Python plugin for Burp Suite that integrates SQLMap using the SQLMap API.β254Updated 8 months ago
- A little collection of fun and creative proof of concepts to demonstrate the potential impact of a security vulnerability.β164Updated 5 years ago
- kadimus is a tool to check and exploit lfi vulnerability.β526Updated 4 years ago
- Fast subdomain bruteforce enumerator in PHP 7.1β33Updated 7 years ago
- Pentest/BugBounty progress control with scanning modulesβ283Updated 4 years ago
- Exploits for various CVEsβ210Updated 4 years ago
- Burp Suite extension to discover assets from HTTP response.β221Updated last month
- SQL Injection Payloads for Burp Suite, OWASP Zed Attack Proxy,...β228Updated 5 years ago
- JShell - Get a JavaScript shell with XSS.β516Updated 5 years ago
- Fuzzing Payloads to Assist in Web Application Testing.β166Updated 5 years ago