Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

Created with love in Canada, visit hostnodejs.com today

Feel like to post an Ad? Learn Details

All Projects → mebjas → Csrf Protector Php

mebjas / Csrf Protector Php

Licence: other

CSRF Protector library: standalone library for CSRF mitigation

Labels

security owasp csrf

Projects that are alternatives of or similar to Csrf Protector Php

Express Security

nodejs + express security and performance boilerplate.

Stars: ✭ 37 (-79.21%)

Mutual labels: owasp, csrf

Blackwidow

A Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.

Stars: ✭ 887 (+398.31%)

Mutual labels: owasp, csrf

www-project-csrfguard

The aim of this project is to protect Java applications against CSRF attacks with the use of Synchronizer Tokens

Stars: ✭ 43 (-75.84%)

Mutual labels: owasp, csrf

Cazador unr

Hacking tools

Stars: ✭ 95 (-46.63%)

Mutual labels: owasp, csrf

Phpvuln

Audit tool to find common vulnerabilities in PHP source code

Stars: ✭ 146 (-17.98%)

Mutual labels: owasp

Electrode Csrf Jwt

Stateless Cross-Site Request Forgery (CSRF) protection with JWT

Stars: ✭ 127 (-28.65%)

Mutual labels: csrf

Awesome Hacking Resources

A collection of hacking / penetration testing resources to make you better!

Stars: ✭ 11,466 (+6341.57%)

Mutual labels: owasp

Securityrat

OWASP SecurityRAT (version 1.x) - Tool for handling security requirements in development

Stars: ✭ 115 (-35.39%)

Mutual labels: owasp

Okta Spring Boot React Crud Example

Simple CRUD with React and Spring Boot 2.0

Stars: ✭ 176 (-1.12%)

Mutual labels: csrf

Python Honeypot

OWASP Honeypot, Automated Deception Framework.

Stars: ✭ 160 (-10.11%)

Mutual labels: owasp

Astra

Automated Security Testing For REST API's

Stars: ✭ 1,898 (+966.29%)

Mutual labels: owasp

Django Defectdojo

DefectDojo is an open-source application vulnerability correlation and security orchestration tool.

Stars: ✭ 1,926 (+982.02%)

Mutual labels: owasp

Bluemonday

bluemonday: a fast golang HTML sanitizer (inspired by the OWASP Java HTML Sanitizer) to scrub user generated content of XSS

Stars: ✭ 2,135 (+1099.44%)

Mutual labels: owasp

Find Sec Bugs

The SpotBugs plugin for security audits of Java web applications and Android applications. (Also work with Kotlin, Groovy and Scala projects)

Stars: ✭ 1,748 (+882.02%)

Mutual labels: owasp

Xssor2

XSS'OR - Hack with JavaScript.

Stars: ✭ 1,969 (+1006.18%)

Mutual labels: csrf

Fetch Plus

🐕 Fetch+ is a convenient Fetch API replacement with first-class middleware support.

Stars: ✭ 116 (-34.83%)

Mutual labels: csrf

Owaspheaders.core

A .NET Core middleware for injecting the Owasp recommended HTTP Headers for increased security

Stars: ✭ 138 (-22.47%)

Mutual labels: owasp

Hacker101

Source code for Hacker101.com - a free online web and mobile security class.

Stars: ✭ 12,246 (+6779.78%)

Mutual labels: csrf

Amass

In-depth Attack Surface Mapping and Asset Discovery

Stars: ✭ 1,693 (+851.12%)

Mutual labels: owasp

Go Agent

Sqreen's Application Security Management for the Go language

Stars: ✭ 134 (-24.72%)

Mutual labels: owasp

View All Similar Projects ➔

CSRF Protector

CSRF protector php, a standalone php library for csrf mitigation in web applications. Easy to integrate in any php web app.

Add to your project using packagist

Add a composer.json file to your project directory

{
   "require": {
       "owasp/csrf-protector-php": "dev-master"
   }
}

Then open terminal (or command prompt), move to project directory and run

composer install

## Or alternatively

php composer.phar install

This will add CSRFP (library will be downloaded at ./vendor/owasp/csrf-protector-php) to your project directory. View packagist.org for more help with composer!

Configuration

For composer installations: Copy the config.sample.php file into your root folder at config/csrf_config.php For non-composer installations: Copy the libs/csrf/config.sample.php file into libs/csrf/config.php Edit config accordingly. See Detailed Information link below.

Link to wiki - Editing Configurations & Mandatory requirements before using this library

How to use

<?php
include_once __DIR__ .'/vendor/owasp/csrf-protector-php/libs/csrf/csrfprotector.php';

// Initialise CSRFProtector library
csrfProtector::init();

simply include the library and call the init() function!

More information

Discussions

Join Discussions at Google Group \ OWASP \ CSRF Protector

For any other queries contact me at: [email protected] | [email protected]

How to contribute?

General steps

Fork the repo
Create your branch
Commit your changes
Create a pull request

More?

Well, there are various ways to contribute to this project. Find a few of them listed below:

Found a bug? Raise a bug in the issue page. Please make sure it's not a duplicate of an existing issue.
Have a feature request? Raise one at the issue page. As mentioned above please do a basic check if this enhancement exists in the mentioned link.
Want to contribute code to this project?
- The best way to start is by picking up one of the existing issues with Up For Grab label.
- Leave a comment, that you intend to help on this > then fork > and then send a pull request to master branch.

FAQ:

What happens if token expires? - https://github.com/mebjas/CSRF-Protector-PHP/wiki/what-if-token-expires
Secure flag in a cookie? - https://github.com/mebjas/CSRF-Protector-PHP/issues/54
[Deprecated] ~~NoJS support? - https://github.com/mebjas/CSRF-Protector-PHP/tree/nojs-support~~

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].

Stars: ✭ 178

Visit Git Page 🔗Visit User Page 🔗Visit Issues Page (23) 🔗