PHP Security System
Free and open source PHP Security Systems Scripts. Kepp your site server security in every respect such as XSS, SQL injuection, spam and so on.-
387 total visitsThis PHP script is used to serve files for download, while also preventing illegal file harvesting. It performs several checks by detecting the request variable for the name of the file being requested. Currently it cleans the file name from dangerous characters by taking the file base name and then it checks if the requested file exists under a given ... -
435 total visitsThis PHP script is mainly used to filter insecure HTML code using the OWASP AntiSamy rules. It can parse HTML documents using DOM document objects and then remove unsafe tags, attributes and CSS parameters. You can change the whitelist in configrration file to detemine which tags, attributes and css style parameters are allowed. This script may also apply filtering rules ... -
425 total visitsThis script is a secure, powerful and random password generator script written in PHP, which allows developers to customize the password by upper letters, lower letters, numbers, symbols, length and strength. PHP password generator Script will be helpful to generate passwords with random and fixed length strings.Features of PHP password generator Script:- Generate random password by using 4 inputs i.e ... -
613 total visitsPHPAES is a free PHP 5 script(PHP 4 version now included) implementation of 128, 192, and 256 bit AES encryption cipher. No mcrypt extension or any other extention be compiled into PHP required. Electronic Codebook (ECB), Cipher Block Chaining (CBC), Cipher Feedback (CFB), and Output Feedback (OFB) are the supported ciper modes in this script. It uses 100% PHP, and ... -
564 total visitsUser Input Sanitization script is created to make sure that your user inputted data is clean. It does so by checking variables $_GET, $_POST, $_REQUEST, $_COOKIE and allows only known variables and make sure that they contain the right type of data.This Free PHP script sanitizes only one variable, returns the variable sanitized according to the desired type or true/false ...
-
793 total visitsConfident CAPTCHA is a unique, image-based CAPTCHA that stops spam and bots in a way that is easy and intuitive for your Web site visitors. Rather than forcing people to decipher warped and distorted characters or words, Confident CAPTCHA presents a grid of randomly-generated pictures and simply asks the user to click on specific pictures to verify that they are ... -
322 total visitsAll superglobals ($_GET, $_POST, $_REQUEST, $_SERVER) are wrapped into objects. Access is facilitated over filter functions or pre-defined filter lists. Array access syntax is still possible, but validation just a method name away: $_GET->name["var"]$_POST->ascii->text["field"]$_REQUEST["raw"] // uses raw method or pre-defined filter It can prevent raw access, but for transitioning the codebase allows it. Also it's simple to define new filters ...
-
939 total visitsKeep your Sessions on lockdown and prevent Fixation, and Hijacking with this snippet. Use at the top of your pages, script will start sessions in constructor. Usage:Initialize SessionSecurity, Which will also issue session_start() , also if user's session is open, make sure it belongs to them, if not, make them login again. Whenever someone logs in, and is authorized, open ...
-
421 total visitsThis class can be used to remove undesired values from request variables. It takes an array of eventual request values and traverses its values to remove undesired characters from them. The list of alllowed chbars is configurable. Requirement: PHP 5.0 or Higher
-
548 total visitsThis script can be used to generate random passwords with salt. It can generate a random password of a configurable length which may include letters, digits and optionally some special symbol characters. The script may also generate a random salt value that is appended to the password before taking its MD5 hash to store in a database or file for ...
-
399 total visitsThis class can be used to validate credit card numbers. It checks the integrity of the number by using the mod 10 algorithm. The class can also check a credit card number of a given card type by looking at the number prefix. Currently it can check whether the card type is: VISA, Mastercard, American Express, Diners Club, Discover or ...
-
446 total visitsThis script can be used to filter request values to avoid eventually insecure values.It is a updated version of the script originally written by Bendikt Martin Myklebust.This version can handle request variables with multiple values in arrays.
-
352 total visitsThis script can be used to protect the access to Javascript and CSS files from being accessed from other sites.It makes CSS and Javascript files available for download using security tokens stored in session variables to check whether the files are being accessed from pages of the same site. -
263 total visitsThis class can be used to monitor and restore damaged application files.It can scan the application directory and take a backup of its files into a ZIP archive.Later the class can check if all files are still OK. If any files were damaged eventually due to a security, the class may warn the administrator by e-mail and restore the damaged ... -
667 total visitsThis class can be used to prevent session hijacking and fixation attacks.It is based on the class originally written by Vagharshak Tozalakyan.This version starts the session when the object is created, allows choosing the hashing algorithm used to encrypt the users fingerprints, and set the expiry time of the session. See the class comments for full details.
