A database of PHP security advisories
-
Updated
May 14, 2024 - PHP
A database of PHP security advisories
Python script to detect vulnerabilities inside PHP source code using static analysis, based on regex
OWSAP Damn Vulnerable Web Sockets (DVWS) is a vulnerable web application which works on web sockets for client-server communication.
Damn Vulnerable Web Application Docker container
Added Laravel functionality to Enlightn Security Checker. Adds a command to check for, and optionally emails you, vulnerabilities when they affect you.
Manage all logistical information for a pentest including clients, contacts, employees, findings, projects, scoping, and vulnerabilities.
simple code directory brute
Ruggedy Vulnerability Management App
My publically disclosed vulnerability reports.
Provides information if your SilverStripe application uses dependencies with known vulnerabilities.
Automated Tools Pentest
Legacy CLI, please upgrade to https://github.com/debricked/cli
A collection of simple vulnerable web apps for testing vulnerability scanners or educational purposes.
A PHP/MySQL application (with dockerized version) demonstrating common yet dangerous web app vulnerabilities, along with their fixes
VulDB PHP scripts to fetch data via API
Permission handling for Laravel 6.0 and up
Most vulnerable PHP website to carry pentesting.
laraSec is a Laravel package that will scan your composer dependencies and alerts you about potention security vulnerabilities.
"InsecureTrust_Bank: Educational repo demonstrating web app vulnerabilities like SQL injection & XSS for security awareness. Use responsibly.
Add a description, image, and links to the vulnerabilities topic page so that developers can more easily learn about it.
To associate your repository with the vulnerabilities topic, visit your repo's landing page and select "manage topics."