tolgadevsec / PHP-Security-Cheatsheet

Related projects: ⓘ

• vanilla / htmlawed
  Composer-compatible fork of the htmLawed library to purify & filter HTML.
  ☆40Updated 11 months ago
• lightswitch05 / php-version-audit
  Audit your PHP version for known CVEs and patches
  ☆113Updated this week
• yukisov / php-owasp-zap-v2
  PHP client API for OWASP ZAP 2
  ☆22Updated 8 years ago
• cyrus-and / fracker
  PHP function tracker
  ☆241Updated 5 months ago
• nikic / php-crater
  Like crater, but for PHP
  ☆70Updated 3 years ago
• fakhrizulkifli / Defeating-PHP-GD-imagecreatefromjpeg
  Proof-of-concept to exploit the flaw in the PHP-GD built-in function, imagecreatefromjpeg()
  ☆143Updated 9 years ago
• DivineOmega / password_exposed
  🔒 Password Exposed Helper Function - Check if a password has been exposed in a data breach.
  ☆213Updated 2 years ago
• psecio / versionscan
  A PHP version scanner for reporting possible vulnerabilities
  ☆254Updated 4 years ago
• adrianhuna / PHPCity
  City metaphor visualization for PHP projects
  ☆35Updated 3 years ago
• Firehed / Security
  Security tools for PHP
  ☆22Updated 3 years ago
• voku / Simple-PHP-Code-Parser
  ❤ Simple PHP Code Parser | A simple data structure from your PHP code.
  ☆46Updated 2 months ago
• gilbitron / EasyCSRF
  A simple, standalone CSRF protection library
  ☆91Updated 2 years ago
• ollyxar / php-malware-detector
  PHP malware detector
  ☆131Updated 5 years ago
• p-chess / chess
  PHP Chess engine
  ☆41Updated this week
• canvural / php-openapi-faker
  Library to generate fake data for OpenAPI request/response/schemas
  ☆93Updated 10 months ago
• DragonBe / hibp
  A composer package to verify if a password was previously used in a breach using Have I Been Pwned API.
  ☆128Updated last year
• theodo / php-sql-injection-detection-ide-plugin
  PHPStorm IDE plugin to highlight potential SQL Injections patterns in PHP. It supports Doctrine, EntityManager and MySQL Extension.
  ☆19Updated 4 years ago
• ecmchow / ip-analyzer
  IP lookup service
  ☆26Updated last year
• micc83 / mailamie
  🌈 Mailamie is a simple SMTP catch all server for testing written in PHP.
  ☆77Updated last year
• voku / PHPDoctor
  🏥 PHPDoctor: Check files, full directories or strings for missing or bad PHPDoc types.
  ☆53Updated 7 months ago
• 0xbigshaq / php7-internals
  Research about the Zend Engine
  ☆257Updated 4 years ago
• symfonycorp / security-checker-action
  The PHP Security Checker
  ☆151Updated 7 months ago
• psecio / secure_dotenv
  A secure .env handler with encrypted key/value storage
  ☆117Updated 8 months ago
• emanuil / php-reaper
  PHP tool to scan ADOdb code for SQL Injections
  ☆31Updated 8 years ago
• psecio / canary
  Canary: Input Detection and Response
  ☆30Updated 5 years ago
• northox / stupid-password
  A library to prevent the use of easily guessed/bruteforced password and an alternative to Cracklib
  ☆24Updated 5 years ago
• GramThanos / php-csrf
  Single PHP library file for protection over Cross-Site Request Forgery
  ☆62Updated 11 months ago
• nikic / PHP-Fuzzer
  Experimental fuzzer for PHP libraries
  ☆415Updated 8 months ago
• mattsparks / blns-php
  A PHP class to easily work with the Big List of Naughty Strings.
  ☆59Updated 4 years ago
• marcocesarato / PHP-Malware-Collection
  Collection of php malware/backdoors/shell
  ☆30Updated 3 years ago