security-checklist / php-security-check-listLinks
PHP Security Check List [ EN ] π β£οΈ
β296Updated 5 years ago
Alternatives and similar repositories for php-security-check-list
Users that are interested in php-security-check-list are comparing it to the libraries listed below
Sorting:
- Nano is a family of PHP web shells which are code golfed for stealth.β447Updated 5 years ago
- This will assist you in the finding of potentially vulnerable PHP code. Each type of grep command is categorized in the type of vulnerabiβ¦β358Updated 8 months ago
- Sample vulnerable code and its exploit codeβ190Updated 4 years ago
- Bypassing disabled exec functions in PHP (c) CRLFβ404Updated 5 years ago
- A series of python scripts for generating weird character combinations for bypassing web application firewalls (WAF) and XSS blockersβ277Updated 7 years ago
- Pentest/BugBounty progress control with scanning modulesβ282Updated 5 years ago
- Free web-application vulnerability and version scannerβ574Updated 8 months ago
- RIPS - A static source code analyser for vulnerabilities in PHP scriptsβ321Updated 3 years ago
- Damn Vulnerable Web Services is an insecure web application with multiple vulnerable web service components that can be used to learn reaβ¦β456Updated 3 years ago
- Proof-of-concept to exploit the flaw in the PHP-GD built-in function, imagecreatefromjpeg()β152Updated 10 years ago
- SQL Injection Payloads for Burp Suite, OWASP Zed Attack Proxy,...β235Updated 5 years ago
- CMS Detection and Exploit Kit based on Whatcms.org APIβ256Updated 11 months ago
- A web crawler (for bug hunting) that gathers more than you can imagine.β151Updated 2 years ago
- OWSAP Damn Vulnerable Web Sockets (DVWS) is a vulnerable web application which works on web sockets for client-server communication.β353Updated last week
- A collection of useful Serverless functions I use when pentestingβ391Updated 2 years ago
- List of considerations for commerce site auditing and security teams. This is summary of action points and areas that need to be built inβ¦β132Updated 5 years ago
- Find known vulnerabilities in WordPress plugins and themes using Burp Suite proxy. WPScan like plugin for Burp.β180Updated 6 years ago
- Commodity Injection Signatures, Malicious Inputs, XSS, HTTP Header Injection, XXE, RCE, Javascript, XSLTβ403Updated 6 months ago
- Burp-Automator: A Burp Suite Automation Tool with Slack Integration. It can be used with Jenkins and Selenium to automate Dynamic Applicaβ¦β481Updated 7 years ago
- exploit for ImageMagick's uninitialized memory disclosure in gif coderβ284Updated 8 years ago
- Damn Small XSS Scannerβ434Updated 4 years ago
- A static analysis tool for securityβ352Updated 3 months ago
- Lesser Known Web Attack Labβ331Updated 5 years ago
- From XSS to RCE 2.75 - Black Hat Europe Arsenal 2017 + Extrasβ424Updated 5 years ago
- π€ Security Trivia that rare people know.β162Updated 5 years ago
- Fast subdomain bruteforce enumerator in PHP 7.1β34Updated 8 years ago
- A black box, Ruby powered, Joomla vulnerability scannerβ273Updated 7 years ago
- Tulpar - Web Vulnerability Scannerβ203Updated 5 years ago
- Penetration Testing Playbook (PTP)β175Updated 6 years ago
- Exploits for various CVEsβ211Updated 5 years ago