Welcome to the Hardened-PHP Project Homepage

Founded in 2004 by three Security Researchers from Germany, the Hardened-PHP Project has the goal to help you with securing your applications and webpages. We check well known applications for security holes and inform the vendors about them. This results in a more secure internet... more...

Suhosin

Suhosin is an advanced protection system for PHP installations. It was designed to protect your servers on the one hand against a number of well known problems in PHP applications and on the other hand against potential unknown vulnerabilities within these applications or the PHP core itself. more...

Services

If you're a software vendor or plan to deploy a PHP-powered web site, you will have to make sure that proper security measures have been taken to protect data integrity.

We can help you by auditing your code and examining the underlying server structure for security problems. more...

News

Month of PHP Bugs started

01. March 2007 - the long awaited initiative to improve PHP's security has startedmore...

Suhosin 0.9.6 released

02. October 2006 - first stable release of the Advanced PHP protection systemmore...

Hardening-Patch v0.4.14 released

11. August 2006 - important fixes for patch against 5.1.xmore...

Critical PHP Vulnerability Explained

6. August 2006 - more about the unset() vulnerabilitymore...