Security Libraries

An automatic SQL injection and database takeover tool.

An integrated penetration testing tool for web applications.

A modern, portable, easy to use crypto library.

PHP 5.x support for `random_bytes()` and `random_int()`

A minimalist, open source online pastebin where the server has zero knowledge of pasted data. Data is encrypted/decrypted in the browser using 256 bits AES.

Secure PHP Encryption Library.

A library of PHP unserializable payloads along with a tool to generate them.

All in one tool for Information Gathering and Vulnerability Scanning

Informative site with EoL dates of everything

This package ensures that your application doesn't have installed dependencies with known security vulnerabilities.

A database of PHP security advisories

PHP frontend for security.symfony.com

Easy to use cryptographic framework for data protection: secure messaging with forward secrecy and secure data storage. Has unified APIs across 14 platforms.

Security provides an infrastructure for sophisticated authorization systems, which makes it possible to easily separate the actual authorization logic from so called user providers that hold the us...

JSON Object Signing and Encryption library for PHP.

Security CSRF (cross-site request forgery) component provides a class CsrfTokenManager for generating and validating CSRF tokens.

Security provides an infrastructure for sophisticated authorization systems, which makes it possible to easily separate the actual authorization logic from so called user providers that hold the us...

CrimeFlare - This tools can help you to see the real IP behind CloudFlare protected websites

A php.ini scanner for best security practices

Security Component - Guard

Id obfuscation based on Knuth's multiplicative hashing method.

The Security component provides a complete security system for your web application.

High-level cryptography interface powered by libsodium

Web Application Firewall (WAF) package for Laravel

Sodium Compat is a pure PHP polyfill for the Sodium cryptography library (libsodium)

A library for generating random numbers and strings

PHP Secure Configuration Checker

PHPIDS (PHP-Intrusion Detection System) is a simple to use, well structured, fast and state-of-the-art security layer for your PHP based web application

phpcs-security-audit is a set of PHP_CodeSniffer rules that finds vulnerabilities and weaknesses related to security in PHP code

A library that tries to preventing Cross-Site Scripting (XSS) attacks by blacklisting.

Let's Encrypt/ACME Command Line client written in PHP

Laravel and Lumen Source Code Encrypter

A package that adds security related headers to HTTP response.

Damn Vulnerable Web Services is an insecure web application with multiple vulnerable web service components that can be used to learn real world web service vulnerabilities.

PHPStan rules for detecting usage of deprecated classes, methods, properties, constants and traits.

Honeypot spam prevention for Laravel applications

CMS auto detect and exploit.

Obfuscate your data by generating reversible, non-sequential, URL-safe identifiers.

[OUTDATED] Two-factor authentication for Symfony applications 🔐 (bunde version �?4). Please use version 5 from https://github.com/scheb/2fa.

A (unofficial) WordPress plugin reporting PHP and JavaScript errors to Sentry.

An experimental object oriented SSH api in PHP

PHP Malware Finder

Secure API Toolkit

PHP CORS (Cross-origin resource sharing) middleware.

Certainty - CA-Cert Automation for PHP Projects

Laravel Security was created by, and is maintained by Graham Campbell, and is a voku/anti-xss wrapper for Laravel, using graham-campbell/security-core

sqlscan is quick web scanner for find an sql inject point

This repository contains the sources of OXID eShop Community Edition Core Component.

Fast, general Elliptic Curve Cryptography library. Supports curves used in Bitcoin, Ethereum and other cryptocurrencies (secp256k1, ed25519, ..)

🔒 Password Exposed Helper Function - Check if a password has been exposed in a data breach.

WordPress plugin that provides instant switching between user accounts.

Laravel Sail plugin to enable SSL (HTTPS) connection with Nginx.

WPHunter A Wordpress Vulnerability Scanner

WebVulScan - a web application vulnerability scanner

Easily anonymize sensitive data through eloquent queries

PHP malware detector

A multitool library offering access to recommended security related libraries, standardised implementations of security defences, and secure implementations of commonly performed tasks.

CIDRAM: Classless Inter-Domain Routing Access Manager.

CORS Middleware for Lumen micro-framework

A petite library of encryption functions for PHP

Cryptographic component from Zend Framework

Laravel Automated Vulnerability Scanner

TCrypto is a simple and flexible PHP 5.3+ in-memory key-value storage library

A simple php (lumen) app for sharing sensitive text (basically like onetimesecret), but with full end-to-end AES-256-GCM encryption so even the server has no access to the data, and developed with ...

Security issues for Magento have left a big question mark in the community of online stores

Fetches random integers from random.org instead of using PHP's PRNG implementation

Quickly and easily secure HTML text.

Panel de gestión de cryptos multiusuario

Password manager featuring client-side encryption, vaults, folders and more.

Strong cryptography tools and password hashing

SЁCU is a public API to store self-destructing data payloads with url shortener and handle anonymous chat-rooms.

Create cryptographically secure pseudo-random numbers, and manage big integers

Ransomware with automatic Coinbase Commerce integration created in C# (Console) and PHP

A PHP utility for managing secrets in the cloud using AWS KMS and DynamoDB

Windows and macOS Hardening Interface to make security more accessible.

Explore the world of cyber security.

A pure PHP secure communications library.