Alternatives and similar repositories for phply

Users that are interested in phply are comparing it to the libraries listed below

• oliverklee / pixy
  Pixy is a scanner static code analysis tools that scans PHP applications for security vulnerabilities.
  ☆142Updated 2 years ago
• olivo / TaintPHP
  Taint Analysis for PHP
  ☆45Updated 9 years ago
• OneSourceCat / phpvulhunter
  A tool that can scan php vulnerabilities automatically using static analysis methods
  ☆488Updated 7 years ago
• ripsscanner / rips
  RIPS - A static source code analyser for vulnerabilities in PHP scripts
  ☆362Updated 9 years ago
• GoSecure / php7-opcache-override
  Security-related PHP7 OPcache abuse tools and demo
  ☆316Updated 3 years ago
• ircmaxell / php-cfg
  A Control Flow Graph implementation in PHP
  ☆247Updated 4 months ago
• fate0 / xmark
  A PHP7 extension that can hook most functions/classes and parts of opcodes
  ☆243Updated 4 years ago
• shengqi158 / pyvulhunter
  python audit tool 审计 注入 inject
  ☆182Updated 9 years ago
• cwi-swat / php-analysis
  PHP language analyses in Rascal
  ☆29Updated last month
• felixgr / pytaint
  ☆34Updated 12 years ago
• designsecurity / progpilot
  A static analysis tool for security
  ☆359Updated 5 months ago
• robocoder / rips-scanner
  RIPS - A static source code analyser for vulnerabilities in PHP scripts
  ☆324Updated 4 years ago
• fate0 / prvd
  PHP Runtime Vulnerability Detection
  ☆483Updated 6 years ago
• beched / php_disable_functions_bypass
  procfs-based PHP sandbox bypass
  ☆133Updated 7 years ago
• lcatro / PHP_Source_Audit_Tools
  PHP 白盒分析工具,结合AST 和数据流跟踪分析代码,达到自动化白盒审计功能
  ☆148Updated 7 years ago
• stivalet / PHP-Vulnerability-test-suite
  Collection of vulnerable and fixed PHP synthetic test cases
  ☆66Updated 2 years ago
• lowjoel / phortress
  A PHP static code analyser for potential vulnerabilities
  ☆28Updated 11 years ago
• bedirhan / wivet
  Web Input Vector Extractor Teaser
  ☆133Updated 4 years ago
• zsxsoft / fval
  PHP Fval(say F-word to eval) extension used to disable unsafe functions/eval with E_FATAL.
  ☆17Updated 8 years ago
• zerothoughts / spring-jndi
  Proof of concept exploit, showing how to do bytecode injection through untrusted deserialization with Spring Framework 4.2.4
  ☆116Updated 6 years ago
• tgianko / deemon
  Deemon is a tool to detect CSRF in web applications. Deemon has been used for the paper "Deemon: Detecting CSRF with Dynamic Analysis and…
  ☆75Updated 7 years ago
• chaitin / sqlchop
  [DEPRECATED]A novel SQL injection detection engine built on top of SQL tokenizing and syntax analysis.
  ☆253Updated last year
• niexinming / python_hook
  ☆51Updated 7 years ago
• malteskoruppa / phpjoern
  Parser utility to generate ASTs from PHP source code suitable to be processed by Joern.
  ☆37Updated 5 years ago
• das-lab / TAP
  TAP: A Static Analysis Model for PHP Vulnerabilities Based on Token and Deep Learning Technology
  ☆14Updated 5 years ago
• WhaleShark-Team / ChromeHeadlessInterface
  ☆23Updated 8 years ago
• zsxsoft / my-ctf-challenges
  My CTF Challenges
  ☆215Updated last month
• PavelJurasek / PHPWander
  ☆23Updated 6 years ago
• phith0n / realworldctf
  My Real World CTF challenges
  ☆115Updated 6 years ago
• hi-WenR0 / MLCheckWebshell
  ☆106Updated 8 years ago