Open Hub
Black Duck Open Hub

Tags : Browse Projects

Select a tag to browse associated projects and drill deeper into the tag cloud.

HTML Purifier

Compare

  Analyzed about 15 hours ago

HTML Purifier is a standards-compliant HTML filter library written in PHP. HTML Purifier will not only remove all malicious code (better known as XSS) with a secure yet permissive whitelist, it will also make sure your documents are standards compliant, something only acheivable with a comprehensive knowledge of W3C's specifications.

40.7K lines of code

0 current contributors

almost 3 years since last commit

22 users on Open Hub

Inactive
4.625
   
0 Reviews
I Use This
Mostly written in PHP
Licenses: lgpl
Tags filter html library php security standards_compliant tikiwiki w3c whitelist xhtml xss

owasp-esapi-java

Compare

Claimed by Open Web Application Securi... Analyzed 11 days ago

OWASP ESAPI for Java: Strong, Simple Security Controls for Java Developers Don’t write your own security controls! Reinventing the wheel when it comes to developing security controls for every web application or web service leads to wasted time and massive security holes. The OWASP Enterprise ... [More] Security API (ESAPI) Toolkits help software developers guard against security‐related design and implementation flaws. For more information, please visit our Wiki. You can view the latest version of our Javadocs here. You can see the status of what we are working on for the next release here. Other language versions: PHP .NET Python Classic ASP Cold Fusion Haskell [Less]

40.3K lines of code

8 current contributors

about 2 months since last commit

15 users on Open Hub

Moderate Activity
3.33333
   
1 Review
I Use This
Mostly written in Java
Licenses: bsd
Tags accesscontrol applicationsecurity authentication crosssitescripting csrf inputvalidation j2ee java owasp security sessionmanagement sqlinjection 3 more...

Greenbone Vulnerability Management (GVM) Framework

Compare

  Analyzed about 1 year ago

The Greenbone Vulnerability Management (GVM) is a framework of several services: - The Greenbone Vulnerability Manager (gvmd) is the central service that consolidates plain vulnerability scanning into a full vulnerability management solution. - The Greenbone Security Assistant (GSA) is the web ... [More] interface of GVM. - The main scanner OpenVAS Scanner is a full-featured scan engine that executes a continuously updated and extended feed of Network Vulnerability Tests (NVTs). - Complementary to the web interface, GVM-Tools allows batch processing / scripting via the Greenbone Management Protocol (GMP). [Less]

498K lines of code

32 current contributors

about 1 year since last commit

15 users on Open Hub

Activity Not Available
4.28571
   
1 Review
I Use This
Mostly written in C
Licenses: GNU_Gener..., gpl, gpl3_or_l...
Tags assetmanagement audit greenbone gvm network networksecurity opensource openvas penetrationtest penetrationtesting pentest pentesting 8 more...

PHPIDS

Compare

  Analyzed about 9 hours ago

PHPIDS (PHP-Intrusion Detection System) is a simple to use, well structured, fast and state-of-the-art security layer for your PHP based web application. The IDS neither strips, sanitizes nor filters any malicious input, it simply recognizes when an attacker tries to break your site and reacts in ... [More] exactly the way you want it to. Based on a set of approved and heavily tested filter rules any attack is given a numerical impact rating which makes it easy to decide what kind of action should follow the hacking attempt. This could range from simple logging to sending out an emergency mail to the development team, displaying a warning message for the attacker or even ending the user’s session. [Less]

50.1K lines of code

0 current contributors

over 6 years since last commit

14 users on Open Hub

Inactive
4.4
   
0 Reviews
I Use This
Mostly written in PHP
Licenses: lgpl3
Tags attacks csrf detection directory dt exploit filter hacking header ids injection injections 13 more...

PHPTAL

Compare

  Analyzed about 7 hours ago

PHPTAL is a PHP implementation of ZPT work. To be short, PHPTAL is a XML/XHTML template library for PHP. While most web developpers continue to use ASP/JSP/PHP tags as the core language of their templates, the Zope community came with a refreshing idea named TAL. The idea was to move ... [More] presentation actions inside XHTML attributes instead of using plain tags or elements. [Less]

23.6K lines of code

5 current contributors

over 1 year since last commit

10 users on Open Hub

Very Low Activity
4.625
   
0 Reviews
I Use This
Mostly written in PHP
Licenses: lgpl
Tags code_generators declarative design engine language library php php5 phptal template template_engine templates 5 more...

Nikto

Compare

  Analyzed about 14 hours ago

Nikto is an Open Source (GPL) web server scanner which performs comprehensive tests against web servers for multiple items, including over 3500 potentially dangerous files/CGIs, versions on over 900 servers, and version specific problems on over 250 servers. Scan items and plugins are frequently ... [More] updated and can be automatically updated (if desired). [Less]

9.87K lines of code

16 current contributors

about 2 months since last commit

5 users on Open Hub

Low Activity
2.5
   
0 Reviews
I Use This
Mostly written in Perl
Licenses: gpl
Tags hacking injection lfi penetrationtest penetrationtesting pentest pentester pentesting rfi scanner security server 8 more...

Arachni

Compare

  Analyzed about 1 month ago

Arachni is a feature-full, modular, high-performance Ruby framework aimed towards helping penetration testers and administrators evaluate the security of web applications.

237K lines of code

0 current contributors

12 months since last commit

4 users on Open Hub

Activity Not Available
4.0
   
1 Review
I Use This
Mostly written in Ruby
Licenses: No declared licenses
Tags ajax application disibuted dom foss hacking injection javascript lfi open pentest rfi 8 more...

phpSec

Compare

  Analyzed about 4 hours ago

A PHP security library. * Session handler * XSS filter * CSRF protection * Password hashing * Encrypting data * Random data generator * Yubikey - one time tokens * One time passwords

2.16K lines of code

0 current contributors

10 months since last commit

3 users on Open Hub

Very Low Activity
0.0
 
0 Reviews
I Use This
Mostly written in PHP
Licenses: mit
Tags cryptography csrf encryption hashing library otp password php random security xss yubikey

easyXDM

Compare

  Analyzed about 1 year ago

A javascript library that uses available techniques to to provide a means of transporting messages and/or method calls between windows in different domains. -------------------------------------- Formerly known as easyXSS -------------------------------------- The library is currently ... [More] implementing postMessage for browsers that supports this and will fall back to using the IFrame URL Technique for all others, including IE6. See the homepage for more information. -------------------------------------- Downloads are available at GitHub. [Less]

0 lines of code

0 current contributors

0 since last commit

2 users on Open Hub

Activity Not Available
0.0
 
0 Reviews
I Use This
Mostly written in language not available
Licenses: mit
Tags browser communication cross-document crossdocumentmessages crossdomain cross-domain crosssite cross-site crosssitescripting easyxdm iframe interface 6 more...

Ronin

Compare

  Analyzed 2 months ago

Ronin is a Ruby platform for exploit development and security research. Ronin allows for the rapid development and distribution of code, exploits or payloads over many common Source-Code-Management (SCM) systems.

33.6K lines of code

0 current contributors

11 months since last commit

2 users on Open Hub

Activity Not Available
0.0
 
0 Reviews
I Use This
Mostly written in Ruby
Licenses: gpl3, lgpl3
Tags asm attacks console crawler csrf developerfriendly distributed documentation exploit exploits framework free 44 more...