Advanced IP Ban Script

This script is useful if you want to restrict the access to some people on your site, based on their IPs. There are 2 lists which can be used: one which has a list of the IPs you want to ban and one which you can use to ban a range of IPs. The script checks both lists and if the Visitor’s IP is in the list then the script will show a message to the user and exit.

Basic PHP Security 1.0

In this tutorial we'll go over some of the areas of PHP that need special attention to make sure your code protects against malicious attempts, from SQL Injection to the underestimated - XSS.

PHP CAPTCHA Tutorial

This tutorial will show you how to create a form with Captcha.

Minimal Sanitation Techniques 1

This tutorial will show you sanitation techiques used by the pros so that your scripts will be secure, and resistant to any attacks.

How to Spam-Proofing Your Website

Spam-Proofing Your Website Anyone who operates their own website knows that you need to provide forms in your site for visitors to contact you. The big challenge is providing easy form access to your visitors, without letting SPAM flood your email inbox or database. The techniques described in this article tell you how to reduce the amount of SPAM.

Security in your online applications

This article is intended for the PHP beginner to intermediate level. The topics addressed here are nothing new and for the most part, should be common sense. However, as even newly posted tutorials and code examples still contain these basic mistakes, it must be worth reiterating. As magic quotes and register globals are no longer a part of PHP6, I will assume there is no longer a need to address those particular issues.

PHP random password generator

PHP password generator is a complete, working random password generation function for PHP. It allows the developer to customize the password: set its length and strength. Just include this function anywhere in your code and then use it.

Developing rock-solid code in PHP

This tutorial is intended for both amateur and professional PHP programmers who want to design and write quality functions. To complete this tutorial, you must have a basic level of working knowledge with PHP, and know how to define functions.

PHP regular expressions examples

The regular expression, as a pattern, can match all kinds of text strings helping your application validate, compare, compute, decide etc. It can do simple or very complex string manipulations. The list of possibilities is enormous when it comes to what you can achieve using regular expressions. You can take any phrase that starts with an "A" or any character and do various things with it. You can match phone numbers, email addresses, url's, credit card numbers, social security numbers, zip code

Redirect http:// to https://

I have been looking online for some time to redirect http:// URL to https:// automatically. So when user request for cripperz.com it will be redirected to https://cripperz.com.

Exploit Protection - Reducing PHP Exploits on Your Site

When dealing with PHP, especially dynamics, it's important to always consider security. Here are some simple tips that will help you deal with the most common of those problems and exploits. 1. Disable register_globals. Disabling register_globals and using $_GET to obtain URL variables is much more secure. It prevents the visitors from changing other important variables in your code. To do this do the following: //In your .htaccess file add: php_flag register_globals 0 //In your PHP files,

Simple Password Protection Script - Detailed comments and working example!

n this tutorial I will teach you how to make a very simple text based password protection script. View a demo here, use the username user and the password demo. I will first give you all the files then I'll explain them. form.html CODE Login
Username:
Password:

Hits: 102 Platforms: Windows

Ratings: Last Updated: 2006-07-20

Javascript Injection Protection - Protect your databases from injection!

What is Java Injection? Java injection is where some trouble maker comes and tries to enter java script into your MySQL database. This could lead to serious problems. Thats why when I make scripts I allways use this and real_encaps_Strings to filter out anything bad. Step 1 Ok, lets pretend we have a form where someone can submit thier site URL and some other info.

Admin Control Panel with Sessions - Create a secure admin control panel script

This tutorial will show you how to create a simple way to protect your admin control pages, using sql to store the users info to which you want to give access to. When the user tries to login to this admin panel the information they enter will be checked by your database and if it is correct it will redirect them to your index page, otherwise it will send them back to the login page! Ok enough talk, lets get the login form done! Login.html CODE

Hits: 60 Platforms: Windows

Ratings: Last Updated: 2006-07-20

Basic HTTP Authentication - Learn Basic HTTP Authentication Using PHP with this

For one, The HTTP Authentication in PHP are only available when it is running as an Apache module. If you are not using the PHP as an Apache module this tutorial will not work for you! Using the header() function, it is possible to send an "Authentication Required" message the clients browser and request them to input a username and password similar to as if you did it in .htaccess. Let's get started with the first part of our code:

Hits: 47 Platforms: Windows

Ratings: Last Updated: 2006-07-20

How to Obfuscate Your codes Using base64 - Protect your PHP Source Code!

That is obviously undecipherable to any human, let alone the php newbie your friend is, but its actually a working example of my array selection from http://www.reaktor7.com/list.phps To do that you need to use the following php command: base64_encode($string) Just put any value into $string and it will be encoded, the only thing which it wont do (yet) is full php pages. Now, what use is a string encoded if you cant see what it is? well this is the fun part, you can now Decode them and t

Creating A Permission System for users in conjunction with a login system

In this tutorial I will not cover building a login (user) system. This tutorial will only learn how to expend your login system to create permissions for users. Maybe I will write a tutorial for building a login system later on. When you know how to build a login system, you will also know how to do this. You doesn't need to learn any new functions.

Learn md5() Encryption Using PHP

One of the many ways of hashing data using PHP is a function called md5(). md5() converts a string of text into a 32-character hash, using a secret algorithm, thus protecting the original source information. md5() hashed strings cannot be dehashed either, which presents us with the novel problem of working out if two md5-hashed strings are equal. The answer is actually quite simple. Take a login system - instead of dehashing the string and comparing it to a regular password, you take the hashed

PHP Include file to do user authentication using httpd pop-up in MySQL

This is a PHP include file which does user authentication using the built-in HTTP basic realm authentication mechanism. This means you will get a browser pop-up asking the username and password. The password will be validated against a MySQL database but it will avoid you having to program a login page and storing the username and password entered. Any time you want to access the username, use the variable $PHP_AUTH_USER and when you want the user password, use $PHP_AUTH_PW. This include f

Create a Simple PHP Port Scanner - All it takes is a simple FOR loop

All it takes is a simple FOR loop, and you can use PHP to try and connect to different ports! It's easy to use and PHP has built in functions that even get the name of the service commonly associated with most port numbers!