Select a tag to browse associated projects and drill deeper into the tag cloud.
The Metasploit Framework is a development platform for creating security tools and exploits. The framework is used by network security professionals to perform penetration tests, system administrators to verify patch installations, product vendors to perform regression testing, and security ... [More]
PHPIDS (PHP-Intrusion Detection System) is a simple to use, well structured, fast and state-of-the-art security layer for your PHP based web application. The IDS neither strips, sanitizes nor filters any malicious input, it simply recognizes when an attacker tries to break your site and reacts in ... [More]
OWASP ESAPI for Java: Strong, Simple Security Controls for Java Developers Don’t write your own security controls! Reinventing the wheel when it comes to developing security controls for every web application or web service leads to wasted time and massive security holes. The OWASP Enterprise ... [More]
Ronin is a Ruby platform for exploit development and security research. Ronin allows for the rapid development and distribution of code, exploits or payloads over many common Source-Code-Management (SCM) systems.
A PHP security library. * Session handler * XSS filter * CSRF protection * Password hashing * Encrypting data * Random data generator * Yubikey - one time tokens * One time passwords
This is a fork from the small 'ctracker.php' script written by Christian Knerr to add more (and better) tracking functionalities (e.g. log all attacks into database for analysis purposes). This script also stops some attacks by checking POST data for suspicious content (e.g. some spam attack ... [More]
OWASP ESAPI for PHP: Strong, Simple Security Controls for PHP Developers Don’t write your own security controls! Reinventing the wheel when it comes to developing security controls for every web application or web service leads to wasted time and massive security holes. The OWASP Enterprise ... [More]
secure_action is a ruby on rails plugin which makes it easy to defend your site against assumed logged in attacks, also called CSRF(cross site request forgery) attacks. In an assumed logged in attack, a malicious site assumes the visitor is logged into a target site. The malicious site crafts a ... [More]
Mainly meant for private and semi-professional developers who need some help in securing small php applications against some of the top-10 attacks on web software. Security increase to avoid: XSS (Cross Site Scripting) SQL-Injection CSRF (Cross Site Request Forgery) Session-Fixation ... [More]
Copyright © 2013 Black Duck Software, Inc. and its contributors, Some Rights Reserved. Unless otherwise marked, this work is licensed under a Creative Commons Attribution 3.0 Unported License . Ohloh ® and the Ohloh logo are trademarks of Black Duck Software, Inc. in the United States and/or other jurisdictions. All other trademarks are the property of their respective holders.