- Building modern applications with PHP 8.1 + https://spatie.be/videos/front-line-php
- https://leanpub.com/phptherightway
- https://adayinthelifeof.nl/books
- https://www.bartlettpublishing.com/site/2019/12/18/new-video-series-on-building-scalable-web-applications
- https://leanpub.com/first-php-docker-application
- https://github.com/smknstd/modern-php-cheatsheet
- https://github.com/hgraca/explicit-architecture-php
- https://www.markhesketh.com/switching-multiple-php-versions-on-macos
- Building a blog with Laravel 7 and Voyager ~ Bobby Iliev
- https://m.youtube.com/c/CarlosBuenosvinosZamora/playlists
- https://www.udemy.com/course/learn-php-5-and-7-this-way-to-rise-above-and-beyond-competition
- https://www.udemy.com/course/developing-simple-cmsblog-with-php7-and-mysql
- Native mobile applications with just PHP
- Create Three Symfony Back End APIs
- https://m.youtube.com/playlist?list=PLKJBt7aeK3k82T8rKrS2CMaLOphJmxtMn
- Customer Relationship Management API in Laravel
- PHP - zero-stack | Barłomiej Bąk
- Anatomy of a PHP Request | Herman J. Radtke, Joel Salas
- https://github.com/phptodayorg/php-must-watch
- https://github.com/aaronpk/oauth.net
- Secure Backend Server for Web, Mobile & Flutter Developers AKA the 100% open-source Firebase alternative
- GPS Tracker platform for Sinotrack, Coban, Concox, Jimilab, OsmAnd and Queclink devices built with Laravel 10 + PHP 8.1 and MySQL 8
- https://github.com/kamranahmedse/design-patterns-for-humans
- https://github.com/domnikl/DesignPatternsPHP
- http://ilyes.me/orm/doctrine/symfony/design/database/2018/02/22/ORM-is-not-ROM.html
- Intro to PHP Deserialization / Object Injection
- https://karmainsecurity.com/exploiting-an-nday-vbulletin-php-object-injection
- CssToInlineStyles is a class that enables you to convert HTML-pages/files into HTML-pages/files with inline styles. This is very usefull when you're sending emails.
- A simple class that allows for querying a web server for information about a resource, w/o actually downloading that file or document
- https://codeopinion.com/php-upload-large-file-bug
- https://github.com/jmolivas/symfony-certification-guide
- Setup an Apache, MySQL & PHP local server using Docker
- http://xml.mherman.org
- https://github.com/ddev/awesome-ddev
- PHP Secure Configuration Checker
- Laravel setup using Docker - Andrew Schmelyun
- A PHP backdoor management and generation tool featuring end to end encrypted payload streaming designed to bypass WAF, IDS, SIEM systems.
- https://www.codediesel.com/php/quickly-extract-urls-from-a-xml-sitemap-file
- World countries in JSON, CSV, XML and Yaml. Any help is welcome!
- Mobile_Detect is a lightweight PHP class for detecting mobile devices (including tablets). It uses the User-Agent string combined with specific HTTP headers to detect the mobile environment.
- An exploration of the colors used by the ten most popular sites
- https://github.com/cubiclesoft/ultimate-web-scraper
- https://christoph-rumpel.com/2021/9/the-video-course-launch-that-made-me-belive-in-myself-again
- The definitive self-hosted URL shortener
- https://github.com/Cloud-Compiler-API/Cloud-Compiler-API
- Velvet is an administration backend for Magento 2, built with React, Typescript, GraphQL and MUI
- https://replit.com/new/php_cli
- Uses convolutional neural networks to solve CAPTCHA images generated by SecureImage library
- Just registering the site in valet and telling it to use SSL
- https://fly.io/laravel-bytes/invoice-pdf-generation-with-browsershot
- blog template powered by Markdown and PHP
- https://github.com/mm0r1/exploits
- From memory corruption to disable_functions bypass
- https://medium.com/@asdqwedev/remote-image-upload-leads-to-rce-inject-malicious-code-to-php-gd-image-90e1e8b2aada
- https://www.blackarrow.net/disable-functions-bypasses-and-php-exploitation
- https://srcincite.io/assets/out-of-hand-attacks-against-php-environments.pdf + https://twitter.com/steventseeley/status/1344356457186291713
- https://github.com/padraic/phpsecurity
- https://github.com/GoSecure/php7-opcache-override
- https://blog.packagist.com/preventing-dependency-hijacking
- WAF bypassing
- XVWA is a badly coded web application written in PHP/MySQL that helps security enthusiasts to learn application security.
- https://0xboku.com/2021/09/14/0dayappsecBeginnerGuide.html
- https://github.com/flozz/p0wny-shell
- https://github.com/nettitude/xss_payloads
- https://kevin.burke.dev/kevin/things-to-use-instead-of-jwt
- https://bierbaumer.net/security/php-lfi-with-nginx-assistance + https://twitter.com/HolyBugx/status/1475564976198848516
- https://community.sonarsource.com/t/code-security-advent-calendar-2021/53927
- https://gist.github.com/loknop/b27422d355ea1fd0d90d6dbc1e278d4d
- vAPI is Vulnerable Adversely Programmed Interface which is Self-Hostable API that mimics OWASP API Top 10 scenarios in the means of Exercises
- https://github.com/riyazwalikar/sql-injection-training-app
- Juan Manuel Fernández
- https://github.com/PortSwigger/serialization-examples/tree/master/php
- https://github.com/snoopysecurity/Vulnerable-Code-Snippets
- https://github.com/m4p1e/php-exploit
- Converting LFI into RCE by chaining PHP encoding filters
- find basic rXSS in PHP with grep and RegEx
- https://github.com/bartblaze/PHP-backdoors
- https://github.com/wupco/PHP_INCLUDE_TO_SHELL_CHAR_DICT
- loading PHP extensions from memory
- https://blog.includesecurity.com/2016/08/introducing-safeurl-a-set-of-ssrf-protection-libraries
- https://blog.projectdiscovery.io/php-http-server-source-disclosure
- https://adepts.of0x.cc/decrypt-nu-coder
- https://www.synacktiv.com/publications/php-filter-chains-file-read-from-error-based-oracle
- https://research.nccgroup.com/2023/02/09/security-code-review-with-chatgpt
- https://medium.com/@jonathanbouman/laravel-debug-mode-left-on-at-zouikwatzeggen-nl-948a7365409f
- https://github.com/W0rty/libcurl-crlf
- Wikipedia replaced its markup parser in JavaScript with PHP and made faster.
- https://www.synacktiv.com/ressources/modern_php_security_sec4dev.pdf
- https://ihackyou3000.com/2019/12/22/lesser-known-web-attacklkwa-walk-through + https://github.com/weev3/LKWA
- https://alanstorm.com/category/php-internals
- https://github.com/qazbnm456/awesome-security-trivia#lang-php
- https://websec.wordpress.com/talks
- https://m.youtube.com/c/DavehIo/playlists
- A simple URL shortener for PHP
- https://wildbit.com/blog/2016/11/01/how-we-chose-craft-cms-for-products-websites
- https://github.com/tylerhall/simple-php-framework
- https://www.freecodecamp.org/news/create-an-mvc-framework-from-scratch-with-php
- https://iandunn.name/2020/04/24/array-of-countries-indexed-by-continent
- https://www.codediesel.com/php/reading-ssl-certificates-in-php
- https://github.com/alexeymezenin/laravel-best-practices
- https://github.com/cyberglot/awesome-answers#php
- A minimalist, open source online pastebin where the server has zero knowledge of pasted data. Data is encrypted/decrypted in the browser using 256 bits AES.
- a solar powered network of servers that host a distributed web platform. + https://twitter.com/tegabrain/status/1371902477080133634
- Testing building REST in PHP
- https://php.watch/articles/php-regex-readability
- https://freek.dev/1940-why-and-how-you-should-remove-inactive-users-and-teams
- https://front-line-php.com/cheat-sheet
- https://codereviewvideos.com/blog/my-setup
- https://github.com/CatalinFrancu/coin-pusher
- https://usefathom.com/blog/does-laravel-scale
- https://webinista.com/updates/php-migration-consulting
- A platform to create documentation/wiki content built with Laravel
- Librarie PHP pentru verificarea in API ANAF a contribuabililor care sunt inregistrati conform art. 316 din Codul Fiscal