Dual-role project: defend and attack Open eClass 2.3, assessing, mitigating, and validating remediation of critical web application vulnerabilities.

Info about php security misconfigurations - outdated 2006

Laravel Secure Baseline provides a fast, non-destructive scan to detect security misconfigurations in Laravel 10/11: env vars, session/cookie flags (Secure/HttpOnly/SameSite), permissive CORS, headers (HSTS, XFO, XCTO, Referrer-Policy, CSP suggestion), exposed debug routes, and version age. Runs locally/CI with ✅/⚠️/❌ output and MD/HTML reports.

Best security practices with Wordpress

Analysis and security enhancement of a simple Flask–SQLite CRUD application for Cybersecurity coursework.

A little script that helps you harden your PHP environment

Suhosin-NG (SNG) Tools Suite for Snuffleupagus

Prevent leaking the server's IP address by disabling the fetching metadata from external sites.

A modern approach to hardening WordPress: A WordPress hardening plugin.

Tor onion hardening plugin for phpBB forum software

A simple and lightweight plugin that protects your WordPress against abuse.

Secure website with a registration, sign in, session management, and CRUD controls.

Windows and macOS Hardening Interface to make security more accessible.

Secure package for WP CLI, built to provide an easier way of securing your WordPress installation

Basic guide to harden systemd services

Hardening Script for Linux Servers/ Secure LAMP-LEMP Deployer/ CIS Benchmark