SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, se…

WordPress starter theme with Laravel Blade components and templates, Tailwind CSS, and block editor support

Damn Vulnerable Web Application (DVWA)

Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.

A curated list of resources for learning about application security

A PHP static analysis tool for finding errors and security vulnerabilities in PHP applications

Collection of CTF Web challenges I made

AWSGoat : A Damn Vulnerable AWS Infrastructure

Twitter vulnerable snippets

Various webshells. We accept pull requests for additions to this collection.

A laboratory for learning secure web and mobile development in a practical manner.

phpcs-security-audit is a set of PHP_CodeSniffer rules that finds vulnerabilities and weaknesses related to security in PHP code

The Secure Coding Dojo is a platform for delivering secure coding knowledge.

A beautiful reader-focused WordPress theme, for you.

A simple minimal WordPress theme built with only what is needed to survive

An archetypal portfolio cms for everybody.

List of disposable email domains. You can use it to block fake users on your newsletter.

CFG and scripts for fuzzing the PHP interpreter with Domato