Search Results for "web security"

There is a plethora of JavaScript libraries for use on the web and in node.js apps out there. This greatly simplifies, but we need to stay updated on security fixes. "Using Components with Known Vulnerabilities" is now a part of the OWASP Top 10 and insecure libraries can pose a huge risk for your web app. The goal of Retire.js is to help you detect the use of versions with known vulnerabilities.

...It replaces invasive tracking-based CAPTCHA solutions with a lightweight approach based on proof-of-work and client-side instrumentation. The system can be deployed independently, giving developers full control over user data and verification processes. It integrates easily into web applications and focuses on maintaining usability while preventing automated abuse. Cap avoids reliance on centralized providers, reducing dependency on external services and improving privacy compliance. Its design reflects a shift toward decentralized, user-respecting security mechanisms. It is particularly suited for developers who want transparent and customizable bot protection.

templUI is a modern UI component library built specifically for Go applications using the templ templating language, offering a developer-first approach to building interfaces with strong type safety and performance. It provides a growing collection of beautifully designed, production-ready components styled with Tailwind CSS, allowing developers to construct modern web interfaces without relying on heavy frontend frameworks. One of its defining principles is code ownership, meaning developers can either import components directly or copy them into their projects using a CLI, ensuring full control over customization and long-term maintenance. The library avoids JavaScript frameworks entirely, instead relying on lightweight, vanilla implementations that prioritize speed and simplicity. templUI also emphasizes security and compliance, with features such as CSP-friendly rendering and no inline scripts, making it suitable for enterprise environments.

JSAction is a JavaScript framework developed by Google that provides a structured, event-driven architecture for managing user interactions in large-scale web applications. It simplifies event handling by declaratively binding actions to DOM elements through HTML attributes, enabling clean separation between markup and behavior. JSAction helps improve performance, maintainability, and reliability by minimizing the use of inline scripts and global event listeners. It is especially useful in...

multiOTP is a PHP class, a powerful command line utility and a web interface developed by SysCo systèmes de communication sa in order to provide a completely free and easy operating system independent server side implementation for strong two factors authentication solution. multiOTP supports hardware and software tokens with different One-Time Password algorithms like OATH/HOTP, OATH/TOTP and mOTP (Mobile-OTP). QRcode generation is also embedded in order to support provisioning of Google...

...It packaged a JavaScript crypto library, UI elements, and a browser extension workflow that could integrate with webmail-style UIs without server changes. The codebase emphasized careful key handling, usability experiments around key discovery and verification, and mitigations against common web threats like XSS. While the project ultimately transitioned into successor efforts, it helped push discussions about practical E2EE in mainstream web apps and the ergonomics of PGP-style workflows. Security researchers and product teams used it as a design reference for client-side cryptography and the trade-offs of operating inside a hostile web page.

A deliberately vulnerable Node.js application designed for security training, helping developers understand common web vulnerabilities and how to mitigate them.

Webiness is lightweight PHP framework based on MVC design pattern. Webiness is free and open source project available under MIT licence. and, in some way, It's inspirated by Yii Framework but it has much less features then Yii. It try to keep good balance between number of features, usability, speed, security options and easy of development.

...Also, it canbe an ideal choice if you want to avoid PHP version conflict, as it works on all PHP versions from 5.3. Webiness extensively uses the lazy loading technique so, in most cases, it is faster then other frameworks. It can be used for rapid prototyping of web applications. Webiness is integrated with jQuery, and it comes with a set of AJAX-enabled features and his own light CSS framework for frontend development. Trying to be secure, it has integrated authetification and authorization module, RBAC user interface, sessions expire feature, input validation, CSRF protection, SQL injection prevention and other security features.

Simple and rapid Application builder, built on top of Flask. includes detailed security, auto form generation, google charts and much more. Demo on: http://flaskappbuilder.pythonanywhere.com/

sxPHP - Smart extended PHP is a (RAF) Rapid Development Framework for >= PHP 5.2.2.

Raken, web service controller, is based on JSON as a data definition language. it utilizes simple protocol, optional asynchronous interaction, recovery, localization, security, caching, batch, and multi-part messaging.

** Guys I have built a much more powerful Fully Featured CMS system at: https://github.com/MacdonaldRobinson/FlexDotnetCMS Macs CMS is a Flat File ( XML and SQLite ) based AJAX Content Management System. It focuses mainly on the Edit In Place editing concept. It comes with a built in blog with moderation support, user manager section, roles manager section, SEO / SEF URL