security-checklist / php-security-check-list
PHP Security Check List [ EN ] π β£οΈ
β296Updated 5 years ago
Alternatives and similar repositories for php-security-check-list:
Users that are interested in php-security-check-list are comparing it to the libraries listed below
- This will assist you in the finding of potentially vulnerable PHP code. Each type of grep command is categorized in the type of vulnerabiβ¦β350Updated 3 weeks ago
- Penetration Testing Notes and Playbook (PTP)β174Updated 6 years ago
- A collection of useful Serverless functions I use when pentestingβ382Updated 2 years ago
- This code is vulnerable to SQL Injection and having SQLite database. For SQLite database, SQL Injection payloads are different so it is fβ¦β160Updated 3 years ago
- Burp Suite extension to discover assets from HTTP response.β224Updated 2 months ago
- OSINT scanning tool which discovers and maps directories found in javascript files hosted on a website.β225Updated 6 years ago
- Python3 Burp History parsing tool to discover potential SQL injection points. To be used in tandem with SQLmap.β468Updated 5 years ago
- Toolset for detecting reflected xss in websitesβ112Updated 6 years ago
- Sample vulnerable code and its exploit codeβ189Updated 4 years ago
- Bodhi - Client-side Vulnerability Playgroundβ118Updated 3 years ago
- Tulpar - Web Vulnerability Scannerβ200Updated 5 years ago
- Wordlist for content(directory) bruteforce discovering with Burp or dirsearchβ214Updated 5 months ago
- Pentest/BugBounty progress control with scanning modulesβ281Updated 4 years ago
- CollabOzark is a simple tool which helps the researchers track SSRF, RCE, Blind XSS, XXE, External Resource Access payloads triggers.β137Updated 5 years ago
- Fuzzing Payloads to Assist in Web Application Testing.β166Updated 5 years ago
- Awesome PHP Security Resources πΆππβ985Updated last year
- Find known vulnerabilities in WordPress plugins and themes using Burp Suite proxy. WPScan like plugin for Burp.β180Updated 5 years ago
- From XSS to RCE 2.75 - Black Hat Europe Arsenal 2017 + Extrasβ425Updated 5 years ago
- Local File Inclusion Exploitation Tool (mirror)β124Updated 8 years ago
- exploit for ImageMagick's uninitialized memory disclosure in gif coderβ280Updated 7 years ago
- β325Updated 7 years ago
- A better version of my xssfinder tool - scans for different types of xss on a list of urls.β186Updated 5 years ago
- SQLiPy is a Python plugin for Burp Suite that integrates SQLMap using the SQLMap API.β254Updated 9 months ago
- Red Teaming :: Penetration Testing :: Offensive Security :: OSCP :: OSCE :: CheatSheets :: Tools :: etc...β145Updated 6 years ago
- β276Updated 2 years ago
- HTTP.ninjaβ149Updated last year
- Nano is a family of PHP web shells which are code golfed for stealth.β441Updated 5 years ago
- Facebook Bug Bountiesβ102Updated 4 years ago
- π€ Security Trivia that rare people know.β160Updated 5 years ago
- Bypassing disabled exec functions in PHP (c) CRLFβ401Updated 4 years ago