OWASP Mutillidae II is a free, open-source, deliberately vulnerable web application providing a target for web-security training. This is an easy-to-use web hacking environment designed for labs, security enthusiasts, classrooms, CTF, and vulnerability assessment tool targets.

Datadog PHP Clients

Kurukshetra - A framework for teaching secure coding by means of interactive problem solving.

A simple PHP application to learn SQL Injection detection and exploitation techniques.

Application with SQL Injection vulnerability and possible privilege escalation. Free vulnerable app for ethical hacking / penetration testing training.

OWASP Application Security Verification Standard 4.0 Checklist

webshells written with malice

Vulnerable Application written in PHP

PHP Implementation of SafeURL (Anti-SSRF lib)

A simple static application security testing (SAST) tool for locating dangerous sinks in php applications.

Demonstration videos and presentation regarding the talk given at the VOXXED LU 2022 conference.

This is the demo application of my talk "Defensive Coding Reloaded" held at the Securi-Tay 2022 conference in Dundee, Scotland.