Top PHP Frameworks & Libraries for security 59

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types incl...

Empowering People Ethically 🚀 — Matomo is hiring! Join us → https://matomo.org/jobs Matomo is the leading open-source alternative to Google Analytics, giving you...

This is a collection of tutorials for learning how to use Docker with various tools. Contributions welcome....

Damn Vulnerable Web Application (DVWA)

A curated list of resources for learning about application security

A minimalist, open source online pastebin where the server has zero knowledge of pasted data. Data is encrypted/decrypted in the browser using 256 bits AES....

MISP (core software) - Open Source Threat Intelligence and Sharing Platform

Pterodactyl® is a free, open-source game server management panel built with PHP, React, and Go. Designed with security in mind, Pterodactyl runs all game servers i...

Platform-Agnostic Security Tokens

Passbolt Community Edition (CE) API. The JSON API for the open source password manager for teams!

Laravel Eloquent roles and abilities.

Provides a tight integration of the Security component into the Symfony full-stack framework

Captcha for Laravel 5+

A Web app to manage your Two-Factor Authentication (2FA) accounts and generate their security codes

A database of PHP security advisories

PHP frontend for security.symfony.com

Symfony Security Component - Core Library

Symfony Security Component - CSRF Library

PHP Captcha library

XVWA is a badly coded web application written in PHP/MySQL that helps security enthusiasts to learn application security....

Symfony Security Component - HTTP Integration

Security, performance, marketing, and design tools — Jetpack is made by WordPress experts to make WP sites safer and faster, and help you grow your traffic....

A framework agnostic authentication & authorization system.

A php.ini scanner for best security practices

Symfony Security Component - Guard

WordPress static site generator for security, performance and cost benefits

FiercePhish is a full-fledged phishing framework to manage all phishing engagements. It allows you to track separate phishing campaigns, schedule sending of email...

OWASP Mutillidae II is a free, open-source, deliberately vulnerable web application providing a target for web-security training. This is an easy-to-use web hackin...

An authorization library that supports access control models like ACL, RBAC, ABAC in PHP .

Provides a complete security system for your web application

A PHP static analysis tool for finding errors and security vulnerabilities in PHP applications