We have collection of more than 1 Million open source products ranging from Enterprise product to
small libraries in all platforms. We aggregate information from all open source repositories.
Search and find the best for your needs. Check out projects section.
Suhosin is an advanced protection system for PHP installations. It was designed to protect servers and users from known and unknown flaws in PHP applications and the PHP core. It comes in two independent parts, that can be used separately or in combination.
WHATA tool that uses local source tree to make requests to the url and search for path inclusion error messages. It's a common problem in PHP web applications that we've been hating to see. We hope this tool triggers no path disclosure flaws any more. See our article about path disclosure. http://yehg.net/lab/pr0js/view.php/path_disclosure_vulnerability.txt Report bugs/suggestions to inspathx at yehg dot net. WHYWeb application developers sometimes fail to add safe checks against authentications
It's a small library project for security of image handling on web applications such as photo galleries, forums, upload systems etc. The project links of PHP, JAVA and .NET implementations of secureimage library can be reached from this project site. JAVA SecureImage .NET SecureImage PHP SecureImage
SecureImage is a image validator that can be used for validating image files on upload systems (such as photo galleries,forums,etc ..) against the threads for XSS issues with IE and LFI attacks. For Internet Explorer; you can succesfully launch XSS attacks with malformed image files because of it's mime-type detection algorithm. Also the image files can contain some server-side payloads that can be used on exploiting of LFI vulnerabilities. This image validator class; first checks for if the ima
IntroductionPHP doesn't have any function or mechanism for CSRF vulnerabilities. Developers must implement their own functions to defend against this vulnerability. So, I have coded a small one-time-token library. Some features of secureToken : Provides strong entropy for brute-force attacks Provides reliable uniqueness Guarantees one time usage of issued token Provides distinction between sessions. Provides timeout restrictions Usage & Wiki LinksDownload : http://www.webguvenligi.org/software/a