security-checklist / php-security-check-list
PHP Security Check List [ EN ] π β£οΈ
β295Updated 4 years ago
Related projects: β
- This will assist you in the finding of potentially vulnerable PHP code. Each type of grep command is categorized in the type of vulnerabiβ¦β345Updated 6 years ago
- β376Updated this week
- Sample vulnerable code and its exploit codeβ187Updated 3 years ago
- A series of python scripts for generating weird character combinations for bypassing web application firewalls (WAF) and XSS blockersβ273Updated 5 years ago
- Nano is a family of PHP web shells which are code golfed for stealth.β431Updated 4 years ago
- Bypassing disabled exec functions in PHP (c) CRLFβ400Updated 3 years ago
- Tulpar - Web Vulnerability Scannerβ197Updated 4 years ago
- A deliberately vulnerable web application for learning web application security.β118Updated 6 months ago
- β207Updated this week
- Fuzzing Payloads to Assist in Web Application Testing.β165Updated 5 years ago
- RIPS - A static source code analyser for vulnerabilities in PHP scriptsβ310Updated 2 years ago
- π€ Security Trivia that rare people know.β155Updated 4 years ago
- β317Updated 6 years ago
- Python3 Burp History parsing tool to discover potential SQL injection points. To be used in tandem with SQLmap.β464Updated 4 years ago
- OWASP VBScan is a Black Box vBulletin Vulnerability Scannerβ323Updated 5 years ago
- A collection of web pages, vulnerable to command injection flaws.β172Updated last year
- exploit for ImageMagick's uninitialized memory disclosure in gif coderβ279Updated 7 years ago
- kadimus is a tool to check and exploit lfi vulnerability.β511Updated 4 years ago
- Some tools to automate recon - 003randomβ294Updated 6 years ago
- Penetration Testing Notes and Playbook (PTP)β173Updated 5 years ago
- OSINT scanning tool which discovers and maps directories found in javascript files hosted on a website.β220Updated 5 years ago
- Collection of vulnerable and fixed PHP synthetic test casesβ57Updated 11 months ago
- Toolset for detecting reflected xss in websitesβ109Updated 5 years ago
- β130Updated this week
- SQL Injection Payloads for Burp Suite, OWASP Zed Attack Proxy,...β225Updated 4 years ago
- Local File Inclusion Exploitation Tool (mirror)β121Updated 7 years ago
- β239Updated this week
- Red Teaming :: Penetration Testing :: Offensive Security :: OSCP :: OSCE :: CheatSheets :: Tools :: etc...β145Updated 5 years ago
- Fast subdomain bruteforce enumerator in PHP 7.1β34Updated 7 years ago
- List of considerations for commerce site auditing and security teams. This is summary of action points and areas that need to be built inβ¦β128Updated 3 years ago