tolgadevsec / PHP-Security-Cheatsheet
This cheatsheet is an overview of techniques to prevent common vulnerabilities within PHP web applications
☆21Updated 2 years ago
Related projects: ⓘ
- Composer-compatible fork of the htmLawed library to purify & filter HTML.☆40Updated 11 months ago
- Audit your PHP version for known CVEs and patches☆113Updated this week
- PHP client API for OWASP ZAP 2☆22Updated 8 years ago
- PHP function tracker☆241Updated 5 months ago
- Like crater, but for PHP☆70Updated 3 years ago
- Proof-of-concept to exploit the flaw in the PHP-GD built-in function, imagecreatefromjpeg()☆143Updated 9 years ago
- 🔒 Password Exposed Helper Function - Check if a password has been exposed in a data breach.☆213Updated 2 years ago
- A PHP version scanner for reporting possible vulnerabilities☆254Updated 4 years ago
- City metaphor visualization for PHP projects☆35Updated 3 years ago
- Security tools for PHP☆22Updated 3 years ago
- ❤ Simple PHP Code Parser | A simple data structure from your PHP code.☆46Updated 2 months ago
- A simple, standalone CSRF protection library☆91Updated 2 years ago
- PHP malware detector☆131Updated 5 years ago
- PHP Chess engine☆41Updated this week
- Library to generate fake data for OpenAPI request/response/schemas☆93Updated 10 months ago
- A composer package to verify if a password was previously used in a breach using Have I Been Pwned API.☆128Updated last year
- PHPStorm IDE plugin to highlight potential SQL Injections patterns in PHP. It supports Doctrine, EntityManager and MySQL Extension.☆19Updated 4 years ago
- IP lookup service☆26Updated last year
- 🌈 Mailamie is a simple SMTP catch all server for testing written in PHP.☆77Updated last year
- 🏥 PHPDoctor: Check files, full directories or strings for missing or bad PHPDoc types.☆53Updated 7 months ago
- Research about the Zend Engine☆257Updated 4 years ago
- The PHP Security Checker☆151Updated 7 months ago
- A secure .env handler with encrypted key/value storage☆117Updated 8 months ago
- PHP tool to scan ADOdb code for SQL Injections☆31Updated 8 years ago
- Canary: Input Detection and Response☆30Updated 5 years ago
- A library to prevent the use of easily guessed/bruteforced password and an alternative to Cracklib☆24Updated 5 years ago
- Single PHP library file for protection over Cross-Site Request Forgery☆62Updated 11 months ago
- Experimental fuzzer for PHP libraries☆415Updated 8 months ago
- A PHP class to easily work with the Big List of Naughty Strings.☆59Updated 4 years ago
- Collection of php malware/backdoors/shell☆30Updated 3 years ago