security-checklist / php-security-check-list

Related projects ⓘ

Alternatives and complementary repositories for php-security-check-list

• dustyfresh / PHP-vulnerability-audit-cheatsheet
  This will assist you in the finding of potentially vulnerable PHP code. Each type of grep command is categorized in the type of vulnerabi…
  ☆346Updated 6 years ago
• incredibleindishell / CORS-vulnerable-Lab
  Sample vulnerable code and its exploit code
  ☆189Updated 3 years ago
• Bo0oM / PHP_imap_open_exploit
  Bypassing disabled exec functions in PHP (c) CRLF
  ☆400Updated 4 years ago
• ropnop / serverless_toolkit
  A collection of useful Serverless functions I use when pentesting
  ☆381Updated last year
• s0md3v / nano
  Nano is a family of PHP web shells which are code golfed for stealth.
  ☆435Updated 4 years ago
• Damian89 / xssfinder
  Toolset for detecting reflected xss in websites
  ☆109Updated 6 years ago
• TyrantSec / Fuzzing
  Fuzzing Payloads to Assist in Web Application Testing.
  ☆166Updated 5 years ago
• hexrom / PenetrationTesting-Playbook
  Penetration Testing Notes and Playbook (PTP)
  ☆174Updated 5 years ago
• neex / gifoeb
  exploit for ImageMagick's uninitialized memory disclosure in gif coder
  ☆278Updated 7 years ago
• redhuntlabs / BurpSuite-Asset_Discover
  Burp Suite extension to discover assets from HTTP response.
  ☆219Updated 3 years ago
• SolomonSklash / chomp-scan
  A scripted pipeline of tools to streamline the bug bounty/penetration test reconnaissance phase, so you can focus on chomping bugs.
  ☆394Updated 4 years ago
• RhinoSecurityLabs / SleuthQL
  Python3 Burp History parsing tool to discover potential SQL injection points. To be used in tandem with SQLmap.
  ☆465Updated 5 years ago
• JoshuaMart / AutoRecon
  Simple shell script for automated domain recognition with some tools
  ☆300Updated 4 years ago
• c0rv4x / project-black
  Pentest/BugBounty progress control with scanning modules
  ☆282Updated 4 years ago
• 003random / 003Recon
  Some tools to automate recon - 003random
  ☆295Updated 6 years ago
• hvqzao / liffy
  Local File Inclusion Exploitation Tool (mirror)
  ☆122Updated 7 years ago
• Varbaek / xsser
  From XSS to RCE 2.75 - Black Hat Europe Arsenal 2017 + Extras
  ☆423Updated 4 years ago
• ewilded / psychoPATH
  psychoPATH - an advanced path traversal tool. Features: evasive techniques, dynamic web root list generation, output encoding, site map-s…
  ☆270Updated 3 years ago
• weev3 / LKWA
  Lesser Known Web Attack Lab
  ☆330Updated 4 years ago
• cujanovic / Content-Bruteforcing-Wordlist
  Wordlist for content(directory) bruteforce discovering with Burp or dirsearch
  ☆212Updated last month
• b1n4ry4rms / RedTeam-Pentest-Cheatsheets
  Red Teaming :: Penetration Testing :: Offensive Security :: OSCP :: OSCE :: CheatSheets :: Tools :: etc...
  ☆148Updated 5 years ago
• P0cL4bs / kadimus
  kadimus is a tool to check and exploit lfi vulnerability.
  ☆514Updated 4 years ago
• trietptm / SQL-Injection-Payloads
  SQL Injection Payloads for Burp Suite, OWASP Zed Attack Proxy,...
  ☆226Updated 4 years ago