Search Results: php-security

Found 5 Skills

Security & Complianceyaklang/hack-skills

type-juggling

PHP type juggling and weak comparison (`==`) bypass. Use when authentication, HMAC/signature checks, or token validation uses loose equality, numeric coercion, or hash comparisons without strict types — common in legacy PHP and CTF-style code paths.

🇺🇸|EnglishTranslated

Security & Compliancedirnbauer/webconsulting-s...

security-audit

Security audit patterns for PHP/OWASP. Use when conducting security assessments, identifying vulnerabilities (XXE, SQL injection, XSS), or CVSS scoring.

🇺🇸|EnglishTranslated

Security & Compliance0xshe/php-code-audit-skil...

php-crlf-audit

PHP Web source code CRLF/response splitting audit tool. Identifies user input that enters HTTP response headers, analyzes filtering and encoding of newlines/control characters, and outputs severity ratings, PoCs and fix suggestions (omission is prohibited).

🇨🇳|ChineseTranslated

Security & Compliancevchirrav/owasp-secure-cod...

sast-psalm

Run Psalm with taint analysis on PHP code. Detects SQL injection, XSS, command injection, path traversal, and other taint-flow vulnerabilities in PHP applications.

🇺🇸|EnglishTranslated

Security & Compliancedykyi-roman/awesome-claud...

check-sql-injection

Analyzes PHP code for SQL injection vulnerabilities. Detects query concatenation, ORM misuse, raw queries, dynamic identifiers, prepared statement bypasses.

🇺🇸|EnglishTranslated