Xss

Database-Connection script is designed to manage a database connection away from implementation problems linked to PDO present or not. It also provides security functionnality related to sql injections and xss holes. It provides a single interface to access MySQL using the regular mysql...

The customizable HTML filter can balance tags, ensure proper nestings, neutralize XSS, beautify code like Tidy, restrict HTML, implement anti-spam measures, etc.Here are some key features of "htmLawed":dlTE Makes HTML code in text more secure and standard-compliantdlTE Processed text can be used...

HTML Purifier is a standards-compliant HTML filter library written in PHP.HTML Purifier will not only remove all malicious code (better known as XSS) with a thoroughly audited, secure yet permissive whitelist, it will also make sure your documents are standards compliant, something only...


Platforms: PHP

Rnews Feed Aggregator is a server-side web-based RSS/Atom feed aggregator/news tracking tool.Features:Usability:- Support for Atom and RSS feed formats.- Step-by-step web install interface.- Support for multiple users.- OPML import/export for easy sharing of subscriptions between news readers.-...


Platforms: PHP

Private! makes it possible to build private blogs for your friends, family or your business. You can also use it to protect paid content on your page. The configuration is as simple as powerful and the best of all: It's incredible fast - you will not notice any differences from your standard...


Platforms: PHP

SafeClick module provides Drupal with various techniques and methods of protection from Clickjacking attacks.From Wikipedia: "Clickjacking is a malicious technique of tricking Web users into revealing confidential information or taking control of their computer while clicking on seemingly...


Platforms: PHP

It forces users to enter their current passwords when trying to change them in the user edit form. This helps prevent possible XSS attacks.InstallationUnpack in your modules folder (usually '/sites/all/modules/')Enable under Administer > Site Building > Modules.


Platforms: PHP

A small module that exposes an interface for the allowed protocols used in filter_xss_bad_protocol(). Inspired by #324731: Add more chat protocol support to filter_allowed_protocols so you can create links like


Platforms: PHP

A?A?A? Graphing functionality has been added to the fuzzing tab A?A?A? A list of ~58000 popular directories is provided A?A?A? Basic cross site scripting (XSS) checks A?A?A? Basic SQL injection (SQL) checks A?A?A? Buffer overflows (BFO) checks A?A?A? Format string errors (FSE) checks A?A?A?...


Platforms: Mac

SpaceMonkey is a Web application auditing tool. It can detect bugs or security flaws without using a knowledge database. It uses fault injection technics ('fuzzing') in order to reveal the flaws (SQL injection, XSS, File inclusion, command execution ).


Platforms: *nix

The NoScript Firefox extension provides extra protection for Firefox, Seamonkey and other mozilla-based browsers: this free, open source add-on allows javascript, Java and Flash and other plugins to be executed only by trusted web sites of your choice (e.g. your online bank), and provides the...


Platforms: *nix

HTML Purifier project is the premiere PHP solution for all your HTML filtering needs. Tired of forcing users to use BBCode or some other obscure custom markup language due to the current landscape of deficient or hole-ridden HTML filterers? Look no further: HTMLPurifier will not only remove all...


Platforms: *nix