PHP Security

Open-source PHP projects categorized as Security

Top 23 PHP Security Projects

  • Matomo

    Empowering People Ethically with the leading open source alternative to Google Analytics that gives you full control over your data. Matomo lets you easily collect data from websites & apps and visualise this data and extract insights. Privacy is built-in. Liberating Web Analytics. Star us on Github? +1. And we love Pull Requests!

    Project mention: 🔥Matomo 5 UPGRADE - A step-by-step GUIDE 🤌 | dev.to | 2024-01-04

    Matomo just released their major v5 upgrade with following key improvements:

  • DVWA

    Damn Vulnerable Web Application (DVWA)

    Project mention: If you're looking for resources pertaining to hands-on practical demonstrations of learned skills and tools/techniques, look no further. | /r/Kalilinux | 2023-11-15

    There's also a bunch of intentionally vulnerable Webapps and VMs aimed at demonstrating potential footholds and common exploits leading to owning of the host including but not limited to: bWAPP, Damn Vulnerable Web App, WebGoat, Metasploitable 3, Mutillidae, Juice Shop

  • WorkOS

    The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.

  • random_compat

    PHP 5.x support for random_bytes() and random_int()

  • awesome-appsec

    A curated list of resources for learning about application security

  • PrivateBin

    A minimalist, open source online pastebin where the server has zero knowledge of pasted data. Data is encrypted/decrypted in the browser using 256 bits AES.

    Project mention: PrivateBin | news.ycombinator.com | 2024-01-08
  • PHPSecLib

    PHP Secure Communications Library

    Project mention: How to install software on VPS through PHP? | /r/PHP | 2023-10-24

    I recommend using PHPSecLib which has a powerful SSH library that is far more versatile than the official PHP SSH extension.

  • MISP

    MISP (core software) - Open Source Threat Intelligence and Sharing Platform

    Project mention: A recent abrupt change in Internet SSH brute force attacks against us | news.ycombinator.com | 2024-02-24
  • InfluxDB

    Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

  • pfSense

    Main repository for pfSense

    Project mention: Open source software to limit/throttle network speed by program or process? | /r/opensource | 2023-12-09
  • Passbolt

    Passbolt Community Edition (CE) API. The JSON API for the open source password manager for teams!

    Project mention: Open Source alternatives to tools you Pay for | dev.to | 2023-12-08

    Passbolt - Open Source Alternative to 1Password

  • PHP Encryption

    Simple Encryption in PHP.

  • bouncer

    Laravel Eloquent roles and abilities.

  • PHPGGC

    PHPGGC is a library of PHP unserialize() payloads along with a tool to generate them, from command line or programmatically.

  • HTML Purifier

    Standards compliant HTML filter written in PHP

    Project mention: XSS Attack - Why strip_tags is not enough | dev.to | 2023-09-13

    HTML Purifier

  • SensioLabs Security Check

    A database of PHP security advisories

    Project mention: PHP libraries and tools | dev.to | 2023-10-18

    Local PHP Security Checker: PHP security vulnerabilities checker

  • Sentinel

    A framework agnostic authentication & authorization system. (by cartalyst)

  • IniScan

    A php.ini scanner for best security practices

  • wp2static

    WordPress static site generator for security, performance and cost benefits

    Project mention: How to Host WordPress for Free on Vercel: A Step-by-Step Guide | dev.to | 2023-12-20

    Download and Install WP2Static Plugin

  • Optimus

    🤖 Id obfuscation based on Knuth's multiplicative hashing method for PHP.

  • mutillidae

    OWASP Mutillidae II is a free, open-source, deliberately vulnerable web application providing a target for web-security training. This is an easy-to-use web hacking environment designed for labs, security enthusiasts, classrooms, CTF, and vulnerability assessment tool targets.

    Project mention: If you're looking for resources pertaining to hands-on practical demonstrations of learned skills and tools/techniques, look no further. | /r/Kalilinux | 2023-11-15

    There's also a bunch of intentionally vulnerable Webapps and VMs aimed at demonstrating potential footholds and common exploits leading to owning of the host including but not limited to: bWAPP, Damn Vulnerable Web App, WebGoat, Metasploitable 3, Mutillidae, Juice Shop

  • Halite

    High-level cryptography interface powered by libsodium

    Project mention: sodium_crypto_secretbox | /r/PHP | 2023-04-09
  • Latte

    ☕ Latte: the safest & truly intuitive templates for PHP. Engine for those who want the most secure PHP sites.

    Project mention: State of PHP templating | /r/PHP | 2023-04-25

    Have a look at Latte. It gives you a template engine that looks and feels a lot like PHP itself, rather than being a port of Python.

  • PHP-Auth

    Authentication for PHP. Simple, lightweight and secure.

    Project mention: PHPAuth String Encryption | /r/PHPhelp | 2023-12-06

    It may be helpful here to be specific about which "PHPAuth" project you're talking about. A quick google brings up at least 2 projects with similar names - https://github.com/PHPAuth/PHPAuth and https://github.com/delight-im/PHP-Auth - the latter has a recently opened issue about encryption of PII

  • TwoFactorAuth

    PHP library for Two Factor Authentication (TFA / 2FA) (by RobThree)

  • SaaSHub

    SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

NOTE: The open source projects on this list are ordered by number of github stars. The number of mentions indicates repo mentiontions in the last 12 Months or since we started tracking (Dec 2020). The latest post mention was on 2024-02-24.

PHP Security related posts

Index

What are some of the best open-source Security projects in PHP? This list will help you:

Project Stars
1 Matomo 18,810
2 DVWA 8,953
3 random_compat 8,149
4 awesome-appsec 5,964
5 PrivateBin 5,699
6 PHPSecLib 5,214
7 MISP 4,885
8 pfSense 4,566
9 Passbolt 4,258
10 PHP Encryption 3,705
11 bouncer 3,365
12 PHPGGC 2,967
13 HTML Purifier 2,946
14 SensioLabs Security Check 1,998
15 Sentinel 1,490
16 IniScan 1,470
17 wp2static 1,353
18 Optimus 1,254
19 mutillidae 1,138
20 Halite 1,111
21 Latte 1,051
22 PHP-Auth 1,029
23 TwoFactorAuth 998
SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com