SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
Top signals
- 1 danielmiessler/SecLists 71.9k
- 2 coollabsio/coolify 57.8k
- 3 yuxumin/ViQ 99
- 4 yArna/isChinaUser 98
- 5 langchain-ai/openwiki 97
Fastest rising
- 1 danielmiessler/SecLists 71.9k
- 2 coollabsio/coolify 57.8k
- 3 nextcloud/server 36k
- 4 laravel/framework 34.8k
- 5 filamentphp/filament 31.3k
An open-source, self-hostable PaaS alternative to Vercel, Heroku & Netlify that lets you easily deploy static sites, databases, full-stack applications and 280+ one-click services on your own servers.
[ECCV2026] ViQ: Text-Aligned Visual Quantized Representations at Any Resolution
🇨🇳 Determine current user is a Chinese user.
OpenWiki is a CLI that writes and maintains agent documentation for your codebase.
An open source design system that's fully customizable and agent ready
🍨 Vanilla is a cute and elegant calculator app for Android!
Box3D is a 3D physics engine for games
The coding agent that answers to you your model, your machine, your rules.
A comprehensive dataset of 433 fitness exercises. Each entry includes name, category, target muscle group, equipment, instructions, thumbnail image, and animation video.
Up to 95% shorter replies with Claude Code. Save output token spend.
[Prototype][Experimental] Setup a standalone Shiny application built with Electron to run as a Desktop application
The fastest font renderer in the world, written in pure rust.
Laravel is a web application framework with expressive, elegant syntax.
Safari Ai Extension for Mac OS 27, iOS 27, iPad OS 27.
Confine an AI agent (Claude Code, Codex, oh-my-pi, ...) to one directory with a BPF-LSM program, and watch it live over eBPF.
Official Transmission BitTorrent client repository
AI 时代的伯克希尔:基于 Claude Code 的价值投资研究框架。巴菲特·芒格·段永平·李录四大师方法论 + 多Agent并行研究。| AI-era Berkshire: a value investing research framework built on Claude Code. 4 masters' methodologies + multi-agent adversarial analysis.
A live visual surface for terminal coding agents — agents draw HTML snippets, you watch and comment back
A persistent, file-based memory layer for coding agents — give Claude Code, Codex & others a project brain (durable decisions, requirements, constraints) via a zero-dependency CLI.
AI-native coding orchestration platform: unified multi-model agent runtime with stateful sessions, tool governance, and traceable delivery.
A powerful open-source UI framework for Laravel • Build and ship apps & admin panels fast with Livewire
(AAAI 2026) Knowledge-Graph-Based Generation with Semantic Aggregation and Hierarchical Retrieval
File Upload widget with multiple file selection, drag&drop support, progress bar, validation and preview images, audio and video for jQuery. Supports cross-domain, chunked and resumable file uploads. Works with any server-side platform (Google App Engine, PHP, Python, Ruby on Rails, Java, etc.) that supports standard HTML form file uploads.
🎉面向 Debian 蜂窝 CPE、随身 WiFi、软路由类设备的 SIM/eSIM、蜂窝网络、短信、WiFi Calling(VoWiFi)、DDNS和系统状态管理系统。
The classic email sending library for PHP
Empowering People Ethically 🚀 — Matomo is hiring! Join us → https://matomo.org/jobs Matomo is the leading open-source alternative to Google Analytics, giving you complete control and built-in privacy. Easily collect, visualise, and analyse data from websites & apps. Star us on GitHub ⭐️ – Pull Requests welcome!
Yii 2: The Fast, Secure and Professional PHP Framework
Build a full-featured administrative interface in ten minutes
PrestaShop is the universal open-source software platform to build your e-commerce solution.
A free shopping cart system. OpenCart is an open source PHP-based online e-commerce solution.
A flexible and feature-complete Redis/Valkey client for PHP.
Dolibarr ERP CRM is a modern software package to manage your company or foundation's activity (contacts, suppliers, invoices, orders, stocks, agenda, accounting, ...). it's an open source Web application (written in PHP) designed for businesses of any sizes, foundations and freelancers.
GLPI is a Free Asset and IT Management Software package, Data center management, ITIL Service Desk, licenses tracking and software auditing.
The most popular open source electronic health records and medical practice management solution.
Open-source event management and ticket selling platform — perfect for concerts, conferences, and everything in between 🎟️ If you find this project helpful, please consider giving us a star ⭐️
WordPress Develop, Git-ified. Synced from git://develop.git.wordpress.org/, including branches and tags! This repository is just a mirror of the WordPress subversion repository. Please include a link to a pre-existing ticket on https://core.trac.wordpress.org/ with every pull request.
Tim Düsterhus
Pratik Bhujel
Eric Norris
Eric Norris
go.al.ni@gmail.com
Tim Düsterhus
Eric Norris
Video version: https://youtu.be/uVKXmqYVjpQ One of the more powerful features of AI-assisted development is that you can put multiple AI coding agents to work simultaneously with little effort. For example, you might have one building a new feature, one cleaning up an old API en…
June has a way of focusing the mind. The conference season has wound down, the hallway conversations and late-night discussions at WurstCon have settled into plans, and now it’s time to build — carefully, thoughtfully, and with an eye toward what happens when real users and real…
When dealing with over 10 million tons of hazardous waste every year, IT operational efficiency is a prerquisite and a critical environmental and public health responsibility As the European leader in treating hazardous industrial waste and restoring polluted sites, Veolia | Haz…
Laravel AI Tasks is a package by fomvasss that wraps the Laravel AI SDK with reusable task classes, queued and streamed execution, cost tracking, and a built-in dashboard. The post Laravel AI Tasks: An AI Orchestration Package for Queues, Logging, and Cost Control appeared first…
Commune is a gamified social platform for builders to share what they’re working on, connect with other founders, and launch their projects. The post Commune: A Private Community for Founders and Builders appeared first on Laravel News. Join the Laravel Newsletter to get all the…
Been writing Laravel for years. Every time a project pulls me into Node.js territory, whether it's a side project, a microservice, or just helping a team, the first thing I notice is that nothing feels like Eloquent. Prisma is fine but it's a different mental model entirely. Typ…
Pierre Joye
On July 7, the Magento and Adobe Commerce community will gather in London for Meet Magento UK 2026. Organized by JH in partnership with the Magento Association, Meet Magento UK brings together merchants, agencies, developers, technology partners, and Adobe Commerce experts for a…
Yii2 Sentry ¶ Features Installation Configuration Built-in Collectors Usage How Collectors Work Creating a Custom Collector License Read this in other languages: English, Русский Complete Sentry integration for Yii2 framework: logging, tracing and profiling. Features ¶ Tracking …
Hi everyone, I've been building **KAAL Realtime**, a Laravel package that enables **live updates across connected browsers** while letting you continue using standard Blade templates.  method to Button widget Raise yiisoft/html version to ^3.13 || ^4.0 Fix Collapse re-encoding content already managed by Toggler
Voyti — Yii3 User Management Extension ¶ Table of Contents Features Requirements Quick Start Configuration Social Authentication Console commands Middleware RBAC Routes Testing Credits License войти /vɐjˈtʲi/ verb "to enter" or "to log in" Highly customizable and extensible user…
Yii3 reCAPTCHA ¶ Requirements Installation Configuration Usage License Google reCAPTCHA v2 and v3 field + server-side validator for Yii3. Requirements ¶ PHP 8.3+ PSR-18 HTTP client PSR-17 request + stream factories Installation ¶composer require yiirocks/recaptcha A PSR-18 clien…
Hi everyone 👋 I’ve been working on a Laravel project where localization started getting messy—extracting keys, organizing files, and translating everything manually. Curious how you all handle this in real-world apps? Do you: - manage translations manually? - use any packages/to…
If you’re a **Laravel developer**, you know the pain: you finish a feature, but then you spend another 30 minutes updating YAML files or adding messy docblock annotations just so the frontend team knows how the API works. I built **Laravel API Visibility** to change that. No ann…
Hi everyone 👋 I’d like to share a package I’ve been working on called DBStan, designed to improve the reliability and quality of database interactions in Laravel applications. 🔍 Problem While Laravel provides excellent tools for working with databases, it’s still easy to: Write …
Laravel Framework 12.53.0 Is this to be expected?
Hi everyone, I’ve been working on a small open-source PHP package called RuleFlow PHP: https://github.com/yl0711-coder/ruleflow-php It is a lightweight Decision List rule engine for PHP and Laravel applications. The problem I’m trying to solve is common in business systems: risk…
Hi Guys, Good day! Can you share some real websites using Laravel? And If I have a website, how do I know if there's any tags or signs that shows it's using Laravel? AI tells me to check like this document.cookie.includes('laravel_session') to see if such a cookie...is that true…
Hey everyone! 👋 I recently tried to contribute `Arr::after()` to the Laravel framework (PR #60081) but Taylor decided to keep the framework minimal. So I released it as a standalone package! ## What it does Retrieves the value after a given value in an array. ## Installation ```…
Good evening, everyone! I’m looking for recommendations for libraries or packages to create tables in Laravel using Tailwind CSS. Previously, I used Yajra Laravel DataTables with Bootstrap, but now I want to switch to a solution that works well with Tailwind and, preferably, doe…
I’ve been working on internal approval/workflow systems for years and recently tried extracting the core engine into a reusable Laravel package. Repository: [Approval Binary GitHub Repository](https://github.com/menma977/Approval-Binary) The package started as a simple approval …
I'm currently working on a personal project related to Warhammer. Because I needed to test some things, I have made an test project for a quiz that would help select a faction. But I'm kind of still looking for advise to improve it. At first I had all the faction calculations ru…
I'm using Laravel 13 and accessing my app via ngrok. I noticed that changing APP_URL in my .env file doesn't affect asset() it still generates localhost URLs. After digging in, I found two ways to fix it: 1. Set ASSET_URL to the ngrok URL 2. Add URL::forceRootUrl(config('app.url…
As a trusted [](https://www.nxdeep.com/erp-software-development), NxDeep Connectz creates strong and scalable ERP solutions designed for specific business needs. Our ERP systems bring together essential business processes, remove data silos, and improve operational efficiency th…
Hey Laravel community! I built Pterocos (https://pterocos.eu.org) - a free online editor that runs PHP code entirely in your browser. No installation, no account required. **Why Laravel developers might find this useful:** - Quickly test PHP snippets without local setup - Protot…
Hi everyone, I’ve been running into an issue in queue-heavy Laravel apps where the real origin of a change gets lost. Typical flow: HTTP request → service → queue → job → model update By the time the model is updated, the audit log usually only shows the job or system as the act…
I often need to compare different versions of documentation, website content, configuration snippets, and notes. Git works great for source code, but for plain text I sometimes find it more convenient to use a dedicated comparison tool. I'm interested in learning what other deve…
Hey everyone 👋 I built a small Laravel package for filtering Eloquent models via request query strings, and I'd love to get some feedback from the community. **Package:** https://github.com/AhmedEzz20/laravel-query-filters **Packagist:** https://packagist.org/packages/dev-astro/…
Hey everyone, I recently released the first alpha of **CarvePHP**, an open-source Laravel package for teams working with large Laravel monoliths. The goal is not automatic “one-click microservices.” I know that is not realistic for most real-world systems. Instead, CarvePHP focu…
JWT, JWE, JWS, etc. are terrible designs and need to be scrapped, not resuscitated.
A deep dive into the security engineering decisions that went into CMS Airship. A lot of the decisions we made are subtle.
Application security has a checklist problem; we propose a better way forward.
How to implement field-level data encryption while still allowing fast queries.
Why your software product needs code audits (particularly with cryptography), and how we deliver a higher standard of service.
A quick comparison of libsodium functions with similar names/purposes, and which one to use for a specific use case
How to use Sapient, our new Secure API Toolkit, to Harden your PHP 7 software.
With Chronicle, you probably don't need a blockchain to solve your problems anymore.
A reflection on the first six months of the year, ext/sodium landing in PHP 7.2, and where to go from here.
Ward is our latest security product, intended to help secure e-Commerce platforms.
How to build your own automatic update system that is verifiably secure.
Recent events have put supply chain attacks against software updaters on everyone's radar. Scott explains what this means and what to do about it.
Our new open source library, which keeps your Certificate Authority certificate bundle up-to-date.
Introducing PIE-Hosted Services to Help Further our Goals to Secure the Entire PHP Ecosystem
How to build a homomorphic encryption scheme that is not vulnerable to chosen-ciphertext attacks, using blockchain-like protocols.
Everything a developer needs to know to build secure software in the PHP programming language in the year 2018
Let's solve application security at an ecosystem level by updating outdated and/or insecure blog posts to refer developers to better practices.
Paseto (Platform-Agnostic Security Tokens) is everything JWT should be, but isn't (namely, secure)
Our company's name was decided on March 14, 2015, which makes its birthday very easy to remember.
A deep dive into preventing chosen-ciphertext (e.g. padding oracle) attacks against RSA in custom encrypted transport protocols.
A brief overview of the various common use-cases of asymmetric cryptography (also known as "public-key cryptography") from the perspective of a software developer.
If you're planning on implementing the W3C and FIDO Alliance's new WebAuthn standard for hardware security token support, skip ECDAA for now.
Paragon Initiative Enterprises answers several reader questions
We have a lot of work ahead of us in 2019, and we hope it benefits the entire PHP community
CipherSweet is a PHP library that provides searchable encryption for the most common cases a web developer is likely to encounter.
A simple, accessible recommendation for key sizes and recommended algorithms for various cryptographic algorithms.
We wrote a cryptography library entirely in PHP to make your WordPress site secure against supply-chain attacks.
Your webserver can initiate HTTP requests too, and securing those matters a lot.
We'll be doing for JavaScript (Node.js) what we've been doing for PHP for several years now.
Why versioned protocols are superior to "cipher agility"-based cryptographic designs.
Introducing Ristretto255 for PHP developers
Announcing new versions of the PASETO protocol, which offer better arguments for security in a wider range of use cases.
PASERK adds public-key encryption, key-wrapping, key serialization, and unique key identification to PASETO.
How we plan to discourage insecure implementations of PASETO.
Our project, Gossamer, is the best first step to solving supply chain security for the PHP ecosystem.
A short summary of the work we've done to make the Internet more secure for everyone.
Your PHP 5 code won't break, but your PHP 8.1+ code will be faster and cleaner
Leveraging the ubiquity of the PHP programming language to make everyone more secure.
Announcing a PHP extension and pure-PHP polyfill providing post-quantum cryptography for the PHP open source software community.
Yii2 Web Extension Installation Components A package of helper classes for working with web components in Yii2. Installation ¶Run php composer.phar require mspirkov/yii2-web or add "mspirkov/yii2-web": "^0.4" to the require section of your composer.json file. Components ¶ Cookie…
Searchable & Dependent Dropdown Widget for Yii2 ¶ Features Installation Usage Styling Features Configuration Options Recent Changes (v1.0.1) License A reusable Yii2 widget that provides a searchable dropdown list with support for dependent (cascading) dropdowns. It is design…
Yii2 Google Gemini Component (v2.0.0) ¶ What’s New in 2.0.0 Feature Summary Requirements Installation Quick Start Usage Examples Caching Modes Deep Dive Console Commands Configuration Options Supported Models (Snapshot) Canonical Response Format Helper Methods Cache Modes (Summa…
yii2-scheduler ¶ Installation Usage Upgrade notes Release checklist Logging Monitoring Events Cleanup and safety Compatibility License High-resolution cron-like job scheduler for Yii2 supporting: External cron mode (invoke the scheduler from system cron, typically every minute) …
Introduction Installation Quick Setup Core Features Best Practices Common Patterns Troubleshooting Additional Resources Conclusion Introduction ¶Inertia.js is a modern approach to building single-page applications (SPAs) without the complexity of building an API. It allows you t…
yii2-recurring-date ¶ Main Features Installation Usage JSON Format (persisted) Calculation of the Next Expiration Date Configuration and Customization Validations and UX Behavior Internationalization (i18n) Tests Best Practices and Notes Contributing License A Yii2 extension/wid…
ChartJs Widget ¶ Installation Usage Further Information Contributing Credits License Este paquete es un fork de 2amigos/yii2-chartjs-widget, el cual se encuentra en modo de solo lectura. Este fork fue creado para mantener vivo el paquete y continuar su mantenimiento. Renders a C…
Yii2 IDE Helper ¶ 功能特性 安装 使用 PhpStorm Meta 文件详解 PhpStorm 配置 生成文件示例 测试 贡献 许可证 致谢 为 Yii2 框架提供 PhpStorm 智能代码补全支持,灵感来源于 barryvdh/laravel-ide-helper 功能特性 ¶ ✅ 为 Yii2 组件生成完整的 PHPDoc 类型提示 ✅ 为 ActiveRecord 模型生成属性和方法文档 ✅ 为 ActiveQuery 生成查询构建器提示 ✅ 生成 PhpStorm Meta 文件支持高级 IDE 特性(DI 容器、类型推断)…
Yii3 web application template version 1.3.0 was released. In this version: Replace deprecated PHP CS Fixer rule set @PER-CS2.0 with @PER-CS Do not write logs to file since that's not needed for both Docker and ./yii serve Allow symfony/console 8 Remove yiisoft/data-response depe…
Response download version 1.1.0 was released. In this version: Add support for psr/http-message version ^2.0 Try to determine content MIME type automatically
Both web template and API template got 1.4.0 release which adds expicit Caddyfile configs for production and development Docker environments. These configs are in docker/Caddyfile for production image and docker/dev/Caddyfile for development image. After these are edited you nee…
First stable version of FrankenPHP worker runner released. The runner allows using FrankenPHP in worker mode. In this mode application is initializer once per worker and is serving multiple reqests in this state resulting in signficiant performance gains. Since the application d…
Yii Log Email Target version 4.2.0 was released. In this version: Change PHP constraint in composer.json to 8.1 - 8.5 Raise the minimum yiisoft/mailer version to ^6.0 and adapt the code accordingly Explicitly import classes in "use" section
We are pleased to announce the release of Yii Framework version 2.0.55. Please refer to the instructions at https://www.yiiframework.com/download/ to install or upgrade to this version. In this release: Security fix for CVE-2026-39850: internal variables in View::renderPhpFile()…
Yii RBAC PHP File Storage version 2.1.0 was released. In this version: Change PHP constraint in composer.json to 8.1 - 8.5 Bump yiisoft/rbac version to ^2.1 Apply code style fixes Explicitly import functions and constants in "use" section
Yii Active Record version 1.1.0 was released. In this version: Clarify $relations parameter type in JoinWith::__construct() from array<string|Closure> to array<string|callable(ActiveQueryInterface):void> Optimize performance of ActiveRecord::get() method Remove check…
Yii HTML version 4.1.0 was released. In this version: Add test helper functions for controlling HTML ID generation
Yii Runner RoadRunner version 3.2.0 was released. In this version: Add PHP 8.5 support Add spiral/roadrunner-http version ^v4.0.0 support
Yii HTML version 4.2.0 was released. In this version: Add beforeInput() and afterInput() methods to abstract BooleanInputTag, extended by Radio and Checkbox Add beforeCheckbox() and afterCheckbox() methods to CheckboxList, and beforeRadio() and afterRadio() methods to RadioList