Libraries tagged by owasp
owasp/phprbac
988348 Downloads
PHP-RBAC is the de-facto authorization library for PHP. It provides developers with NIST Level 2 Standard Role Based Access Control and more, in the fastest implementation yet.
owasp/csrf-protector-php
370617 Downloads
CSRF protector php, a standalone php library for csrf mitigation in web applications. Easy to integrate in any php web app.
cyclonedx/cyclonedx-library
1918901 Downloads
Work with CycloneDX documents.
zaproxy/php-owasp-zap-v2
133397 Downloads
PHP client API for OWASP ZAP
vinceamstoutz/symfony-security-auditor
836 Downloads
AI-powered multi-agent security auditor for Symfony applications — provider-agnostic via symfony/ai
dgtlss/owaspadvisor
8076 Downloads
A Laravel package to help developers implement OWASP Top 10 security guidelines
olivier127/rbac-bundle
9050 Downloads
Symfony PhpRabcBundle allow to use RBAC control access for symfony project
jaydeep/laravel-guarddog
1056 Downloads
Laravel GuardDog — Scan your Laravel project for common security vulnerabilities and generate beautiful HTML reports.
spiriitlabs/auth-log-bundle
1031 Downloads
Symfony authentication audit log with geolocation, device detection and security notifications
laramint/php-security-scanner
754 Downloads
Framework-agnostic static security scanner for PHP. Detects SQLi, XSS, command injection, path traversal, insecure deserialization, weak crypto, hardcoded secrets, and more.
laramint/laravel-security-scanner
716 Downloads
Laravel-aware security rules for php-security-scanner. Detects Laravel SQL injection (DB::raw, whereRaw), mass assignment, debug/dd leaks, unsafe validators, CSRF bypass, insecure cookies, env exposure, Blade raw echo, open redirect, Http SSRF, Storage/File path traversal, file-upload validation gaps, Auth/Crypt/Artisan/Process/Config injection, view-name injection, session fixation, and Mail header injection.
baspa/larascan
326 Downloads
A security-focused static analysis package for Laravel applications
yousha/php-security-linter
332 Downloads
A PHP tool to lint PHP files for security issues based on CIS and OWASP best practices.
itinerisltd/itineris-prevent-wp-user-enumeration
976 Downloads
Prevent User Enumeration in WordPress to satisfy security reports.
sellinnate/warden
304 Downloads
Enterprise prompt sanitization & LLM guardrails for Laravel — deterministic-first, offline-by-default, EU-resident.