Alternatives and similar repositories for phply

Users that are interested in phply are comparing it to the libraries listed below

• oliverklee / pixy
  Pixy is a scanner static code analysis tools that scans PHP applications for security vulnerabilities.
  ☆140Updated last year
• olivo / TaintPHP
  Taint Analysis for PHP
  ☆45Updated 9 years ago
• ircmaxell / php-cfg
  A Control Flow Graph implementation in PHP
  ☆243Updated last month
• OneSourceCat / phpvulhunter
  A tool that can scan php vulnerabilities automatically using static analysis methods
  ☆487Updated 7 years ago
• ripsscanner / rips
  RIPS - A static source code analyser for vulnerabilities in PHP scripts
  ☆354Updated 8 years ago
• GoSecure / php7-opcache-override
  Security-related PHP7 OPcache abuse tools and demo
  ☆311Updated 2 years ago
• fate0 / xmark
  A PHP7 extension that can hook most functions/classes and parts of opcodes
  ☆243Updated 3 years ago
• felixgr / pytaint
  ☆34Updated 11 years ago
• beched / php_disable_functions_bypass
  procfs-based PHP sandbox bypass
  ☆133Updated 6 years ago
• shengqi158 / pyvulhunter
  python audit tool 审计 注入 inject
  ☆181Updated 9 years ago
• designsecurity / progpilot
  A static analysis tool for security
  ☆339Updated 5 months ago
• robocoder / rips-scanner
  RIPS - A static source code analyser for vulnerabilities in PHP scripts
  ☆317Updated 3 years ago
• bedirhan / wivet
  Web Input Vector Extractor Teaser
  ☆132Updated 3 years ago
• tgianko / deemon
  Deemon is a tool to detect CSRF in web applications. Deemon has been used for the paper "Deemon: Detecting CSRF with Dynamic Analysis and…
  ☆75Updated 6 years ago
• nikic / php-ast
  Extension exposing PHP 7 abstract syntax tree
  ☆952Updated 9 months ago
• stivalet / PHP-Vulnerability-test-suite
  Collection of vulnerable and fixed PHP synthetic test cases
  ☆61Updated last year
• fate0 / prvd
  PHP Runtime Vulnerability Detection
  ☆483Updated 5 years ago
• lcatro / PHP_Source_Audit_Tools
  PHP 白盒分析工具,结合AST 和数据流跟踪分析代码,达到自动化白盒审计功能
  ☆147Updated 7 years ago
• jasonsheh / SiteScan
  A tool help get the basic information of one site
  ☆109Updated 6 years ago
• niexinming / python_hook
  ☆51Updated 6 years ago
• juokaz / pyhp
  PyHP is an implementation of the PHP language with JIT support using the RPython technology.
  ☆79Updated 8 years ago
• vstinner / pysandbox
  WARNING: pysandbox is BROKEN BY DESIGN, please move to a new sandboxing solution (run python in a sandbox, not the opposite!)
  ☆374Updated 5 years ago
• zsxsoft / my-ctf-challenges
  My CTF Challenges
  ☆214Updated 4 months ago
• malteskoruppa / phpjoern
  Parser utility to generate ASTs from PHP source code suitable to be processed by Joern.
  ☆35Updated 5 years ago
• chaitin / sqlchop
  [DEPRECATED]A novel SQL injection detection engine built on top of SQL tokenizing and syntax analysis.
  ☆254Updated last year
• zerothoughts / spring-jndi
  Proof of concept exploit, showing how to do bytecode injection through untrusted deserialization with Spring Framework 4.2.4
  ☆116Updated 5 years ago
• derickr / vld
  ☆474Updated 2 weeks ago
• opensec-cn / chip
  a simple tool to detect potential security threat in php code
  ☆314Updated 8 months ago
• cwi-swat / php-analysis
  PHP language analyses in Rascal
  ☆28Updated 6 months ago
• LandGrey / dnstricker
  A simple dns resolver of dns-record and web-record log server for pentesting
  ☆133Updated 7 years ago