Libraries tagged by owasp

owasp/phprbac

444 Favers
988348 Downloads

PHP-RBAC is the de-facto authorization library for PHP. It provides developers with NIST Level 2 Standard Role Based Access Control and more, in the fastest implementation yet.

Go to Download


owasp/csrf-protector-php

223 Favers
370617 Downloads

CSRF protector php, a standalone php library for csrf mitigation in web applications. Easy to integrate in any php web app.

Go to Download


cyclonedx/cyclonedx-library

14 Favers
1918901 Downloads

Work with CycloneDX documents.

Go to Download


zaproxy/php-owasp-zap-v2

21 Favers
133397 Downloads

PHP client API for OWASP ZAP

Go to Download


vinceamstoutz/symfony-security-auditor

66 Favers
836 Downloads

AI-powered multi-agent security auditor for Symfony applications — provider-agnostic via symfony/ai

Go to Download


dgtlss/owaspadvisor

31 Favers
8076 Downloads

A Laravel package to help developers implement OWASP Top 10 security guidelines

Go to Download


olivier127/rbac-bundle

32 Favers
9050 Downloads

Symfony PhpRabcBundle allow to use RBAC control access for symfony project

Go to Download


jaydeep/laravel-guarddog

7 Favers
1056 Downloads

Laravel GuardDog — Scan your Laravel project for common security vulnerabilities and generate beautiful HTML reports.

Go to Download


spiriitlabs/auth-log-bundle

10 Favers
1031 Downloads

Symfony authentication audit log with geolocation, device detection and security notifications

Go to Download


laramint/php-security-scanner

0 Favers
754 Downloads

Framework-agnostic static security scanner for PHP. Detects SQLi, XSS, command injection, path traversal, insecure deserialization, weak crypto, hardcoded secrets, and more.

Go to Download


laramint/laravel-security-scanner

1 Favers
716 Downloads

Laravel-aware security rules for php-security-scanner. Detects Laravel SQL injection (DB::raw, whereRaw), mass assignment, debug/dd leaks, unsafe validators, CSRF bypass, insecure cookies, env exposure, Blade raw echo, open redirect, Http SSRF, Storage/File path traversal, file-upload validation gaps, Auth/Crypt/Artisan/Process/Config injection, view-name injection, session fixation, and Mail header injection.

Go to Download


baspa/larascan

3 Favers
326 Downloads

A security-focused static analysis package for Laravel applications

Go to Download


yousha/php-security-linter

11 Favers
332 Downloads

A PHP tool to lint PHP files for security issues based on CIS and OWASP best practices.

Go to Download


itinerisltd/itineris-prevent-wp-user-enumeration

2 Favers
976 Downloads

Prevent User Enumeration in WordPress to satisfy security reports.

Go to Download


sellinnate/warden

0 Favers
304 Downloads

Enterprise prompt sanitization & LLM guardrails for Laravel — deterministic-first, offline-by-default, EU-resident.

Go to Download


Next >>