A web based audio/video streaming application and file manager allowing you to access your music & videos from anywhere, using almost any internet enabled device.

PHP 3,743 606 Updated Dec 22, 2025

s4n7h0 / xvwa

XVWA is a badly coded web application written in PHP/MySQL that helps security enthusiasts to learn application security.

PHP 1,745 352 Updated Sep 12, 2020

jvoisin / php-malware-finder

Detect potentially malicious PHP files

PHP 1,479 281 Updated Oct 20, 2023

psecio / iniscan

A php.ini scanner for best security practices

PHP 1,475 96 Updated May 31, 2023

esotalk / esoTalk

Fat-free forum software.

PHP 1,473 234 Updated Feb 14, 2022

webpwnized / mutillidae

OWASP Mutillidae II is a free, open-source, deliberately vulnerable web application providing a target for web-security training. This is an easy-to-use web hacking environment designed for labs, s…

PHP 1,450 529 Updated Aug 3, 2025

googleinurl / SCANNER-INURLBR

Advanced search in search engines, enables analysis provided to exploit GET / POST capturing emails & urls, with an internal custom validation junction for each target / url found.

PHP 877 400 Updated Apr 9, 2021

pentestgeek / phishing-frenzy

Ruby on Rails Phishing Framework

PHP 872 318 Updated Nov 7, 2023

sektioneins / pcc

PHP Secure Configuration Checker

PHP 818 130 Updated Apr 11, 2024

FloeDesignTechnologies / phpcs-security-audit

phpcs-security-audit is a set of PHP_CodeSniffer rules that finds vulnerabilities and weaknesses related to security in PHP code

PHP 724 83 Updated Jan 5, 2023

dotcppfile / DAws

Advanced Web Shell

PHP 580 191 Updated May 1, 2017

snoopysecurity / dvws

Damn Vulnerable Web Services is an insecure web application with multiple vulnerable web service components that can be used to learn real world web service vulnerabilities. NOTE: This project is o…

PHP 457 139 Updated Dec 6, 2021

Nakiami / mellivora

Mellivora is a CTF engine written in PHP

PHP 454 171 Updated Dec 21, 2023

psecio / parse

Parse: A Static Security Scanner

PHP 376 40 Updated Aug 7, 2018

sqlmapproject / testenv

A collection of web pages vulnerable to SQL injection flaws

PHP 351 131 Updated Apr 14, 2022

Hood3dRob1n / SQLMAP-Web-GUI

PHP Frontend to work with the SQLMAP JSON API Server (sqlmapapi.py) to allow for a Web GUI to drive near full functionality of SQLMAP!

PHP 324 163 Updated Aug 31, 2015

scovetta / yasca

Yet Another Source Code Analyzer

PHP 184 57 Updated Jan 27, 2022

ossec / ossec-wui

OSSEC Web User Interface - Unmaintained!!

PHP 163 84 Updated Aug 25, 2021

alienwithin / OWASP-mth3l3m3nt-framework

OWASP Mth3l3m3nt Framework is a penetration testing aiding tool and exploitation framework. It fosters a principle of attack the web using the web as well as pentest on the go through its responsiv…

PHP 162 55 Updated Jan 21, 2021

ikoniaris / kippo-graph

Visualize statistics from a Kippo SSH honeypot

PHP 134 49 Updated May 19, 2023

CoderPirata / XPL-SEARCH

Search exploits in multiple exploit databases!

PHP 86 34 Updated Oct 1, 2020

Smaash / fuckshitup

php-cli vulnerability scanner

PHP 78 39 Updated Jun 29, 2015

maalaang / Sunrise

Open Video Conference Solution based on HTML5 WebRTC

PHP 37 26 Updated Jan 15, 2014

guelfoweb / wp-waf

[PHP] WordPress Application Firewall

PHP 34 19 Updated Jun 12, 2013

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

securityigi

Block or report securityigi

Starred repositories

laravel / framework

koel / koel

digininja / DVWA

MISP / MISP

elastic / elasticsearch-php

opnsense / core

ampache / ampache