SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, se…

File Upload widget with multiple file selection, drag&drop support, progress bar, validation and preview images, audio and video for jQuery. Supports cross-domain, chunked and resumable file upload…

The Symfony PHP framework

Empowering People Ethically 🚀 — Matomo is hiring! Join us → https://matomo.org/jobs Matomo is the leading open-source alternative to Google Analytics, giving you complete control and built-in priva…

PHP Static Analysis Tool - discover bugs in your code without running it!

Prior to making any Submission(s), you must sign an Adobe Contributor License Agreement, available here at: https://opensource.adobe.com/cla.html. All Submissions you make to Adobe Inc. and its aff…

This is a webshell open source project

Multi-purpose proxy service management system

AV 电影管理系统， avmoo , javbus , javlibrary 爬虫，线上 AV 影片图书馆，AV 磁力链接数据库，Japanese Adult Video Library,Adult Video Magnet Links - Japanese Adult Video Database

A spec compliant, secure by default PHP OAuth 2.0 Server

The Roundcube Webmail suite

A PHP static analysis tool for finding errors and security vulnerabilities in PHP applications

Real-time monitoring of IT components and services, such as networks, servers, VMs, applications and the cloud.

Community-based GPL-licensed network monitoring system

Simple, modern & fast web-based email client

一个好玩的Web安全-漏洞测试平台

方糖全栈路线图2023，为「从螺丝钉到一人企业」补全技能栈

一个想帮你总结所有类型的上传漏洞的靶场

Zephir is a compiled high-level language aimed to ease the creation of C-extensions for PHP

Vanilla is a powerfully simple discussion forum you can easily customize to make as unique as your community.

Collection of CTF Web challenges I made

Laravel Snappy PDF

基于 ThinkPHP6&8 的极简后台管理系统，内置注解权限、异步多任务、应用插件生态等，支持类 PaaS 更新公共模块和应用插件，插件可本地化定制开发。

ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.

A database of PHP security advisories

WDScanner平台目前实现了如下功能：分布式web漏洞扫描、客户管理、漏洞定期扫描、子域名枚举、端口扫描、网站爬虫、暗链检测、坏链检测、网站指纹搜集、专项漏洞检测、代理搜集及部署等功能。

Webshell && Backdoor Collection

Common PHP webshells you might need for your Penetration Testing assignments or CTF challenges. Do not host the file(s) on your server!

一个关于PHP的代码审计项目