Open Hub

Tags : Browse Projects

Select a tag to browse associated projects and drill deeper into the tag cloud.

HTML Purifier

Compare

  Analyzed 2 days ago

HTML Purifier is a standards-compliant HTML filter library written in PHP. HTML Purifier will not only remove all malicious code (better known as XSS) with a secure yet permissive whitelist, it will also make sure your documents are standards compliant, something only acheivable with a comprehensive knowledge of W3C's specifications.

40.7K lines of code

5 current contributors

8 months since last commit

21 users on Open Hub

Very Low Activity
4.625
   
0 Reviews
I Use This
Mostly written in PHP
Licenses: LGPL
Tags filter html library php security standards_compliant tikiwiki w3c whitelist xhtml xss

owasp-esapi-java

Compare

Claimed by Open Web Application Securi... Analyzed 11 days ago

OWASP ESAPI for Java: Strong, Simple Security Controls for Java Developers Don’t write your own security controls! Reinventing the wheel when it comes to developing security controls for every web application or web service leads to wasted time and massive security holes. The OWASP Enterprise ... [More] Security API (ESAPI) Toolkits help software developers guard against security‐related design and implementation flaws. For more information, please visit our Wiki. You can view the latest version of our Javadocs here. You can see the status of what we are working on for the next release here. Other language versions: PHP .NET Python Classic ASP Cold Fusion Haskell [Less]

32.1K lines of code

0 current contributors

over 2 years since last commit

15 users on Open Hub

Inactive
3.33333
   
1 Review
I Use This
Mostly written in Java
Licenses: BSD-4-Cla...
Tags accesscontrol applicationsecurity authentication crosssitescripting csrf inputvalidation j2ee java owasp security sessionmanagement sqlinjection 3 more...

OpenVAS

Compare

  Analyzed 26 minutes ago

OpenVAS is an open source remote security vulnerability scanner, designed to search for networked devices and computers, discover accessible ports and services, and to test for vulnerabilities on any such ports; plugins allow for further expansion.

458K lines of code

20 current contributors

about 10 hours since last commit

15 users on Open Hub

Very High Activity
4.2
   
1 Review
I Use This
Mostly written in C
Licenses: GPL-2.0+
Tags assetmanagement audit greenbone gvm network networksecurity opensource penetrationtest penetrationtesting pentest pentesting scanner 8 more...

PHPIDS

Compare

  Analyzed about 6 hours ago

PHPIDS (PHP-Intrusion Detection System) is a simple to use, well structured, fast and state-of-the-art security layer for your PHP based web application. The IDS neither strips, sanitizes nor filters any malicious input, it simply recognizes when an attacker tries to break your site and reacts in ... [More] exactly the way you want it to. Based on a set of approved and heavily tested filter rules any attack is given a numerical impact rating which makes it easy to decide what kind of action should follow the hacking attempt. This could range from simple logging to sending out an emergency mail to the development team, displaying a warning message for the attacker or even ending the user’s session. [Less]

50.1K lines of code

0 current contributors

about 4 years since last commit

14 users on Open Hub

Inactive
4.4
   
0 Reviews
I Use This
Mostly written in PHP
Licenses: LGPL-3.0
Tags attacks csrf detection directory dt exploit filter hacking header ids injection injections 13 more...

PHPTAL

Compare

  Analyzed 2 days ago

PHPTAL is a PHP implementation of ZPT work. To be short, PHPTAL is a XML/XHTML template library for PHP. While most web developpers continue to use ASP/JSP/PHP tags as the core language of their templates, the Zope community came with a refreshing idea named TAL. The idea was to move ... [More] presentation actions inside XHTML attributes instead of using plain tags or elements. [Less]

23.6K lines of code

0 current contributors

over 1 year since last commit

10 users on Open Hub

Very Low Activity
4.625
   
0 Reviews
I Use This
Mostly written in PHP
Licenses: LGPL
Tags code_generators declarative design engine language library php php5 phptal template template_engine templates 5 more...

Nikto

Compare

  Analyzed 3 days ago

Nikto is an Open Source (GPL) web server scanner which performs comprehensive tests against web servers for multiple items, including over 3500 potentially dangerous files/CGIs, versions on over 900 servers, and version specific problems on over 250 servers. Scan items and plugins are frequently ... [More] updated and can be automatically updated (if desired). [Less]

9.85K lines of code

17 current contributors

6 days since last commit

5 users on Open Hub

Moderate Activity
2.5
   
0 Reviews
I Use This
Mostly written in Perl
Licenses: GPL-2.0+
Tags hacking injection lfi penetrationtest penetrationtesting pentest pentester pentesting rfi scanner security server 8 more...

Arachni

Compare

  Analyzed 2 days ago

Arachni is a feature-full, modular, high-performance Ruby framework aimed towards helping penetration testers and administrators evaluate the security of web applications.

246K lines of code

3 current contributors

about 1 month since last commit

4 users on Open Hub

Low Activity
4.0
   
1 Review
I Use This
Mostly written in Ruby
Licenses: No declared licenses
Tags ajax application disibuted dom foss hacking injection javascript lfi open pentest rfi 8 more...

phpSec

Compare

  Analyzed 2 days ago

A PHP security library. * Session handler * XSS filter * CSRF protection * Password hashing * Encrypting data * Random data generator * Yubikey - one time tokens * One time passwords

2.16K lines of code

0 current contributors

about 3 years since last commit

3 users on Open Hub

Inactive
0.0
 
0 Reviews
I Use This
Mostly written in PHP
Licenses: MIT
Tags cryptography csrf encryption hashing library otp password php random security xss yubikey

easyXDM

Compare

  Analyzed over 7 years ago

A javascript library that uses available techniques to to provide a means of transporting messages and/or method calls between windows in different domains. -------------------------------------- Formerly known as easyXSS -------------------------------------- The library is currently ... [More] implementing postMessage for browsers that supports this and will fall back to using the IFrame URL Technique for all others, including IE6. See the homepage for more information. -------------------------------------- Downloads are available at GitHub. [Less]

4.76K lines of code

2 current contributors

almost 8 years since last commit

2 users on Open Hub

Activity Not Available
0.0
 
0 Reviews
I Use This
Mostly written in JavaScript
Licenses: MIT
Tags browser communication cross-document crossdocumentmessages crossdomain cross-domain crosssite cross-site crosssitescripting easyxdm iframe interface 6 more...

Ronin

Compare

  Analyzed 29 minutes ago

Ronin is a Ruby platform for exploit development and security research. Ronin allows for the rapid development and distribution of code, exploits or payloads over many common Source-Code-Management (SCM) systems.

32.2K lines of code

0 current contributors

over 3 years since last commit

2 users on Open Hub

Inactive
0.0
 
0 Reviews
I Use This
Mostly written in Ruby
Licenses: GPL-3.0, LGPL-3.0
Tags asm attacks console crawler csrf developerfriendly distributed documentation exploit exploits framework free 44 more...