Phan is a static analyzer for PHP. Phan prefers to avoid false-positives and attempts to prove incorrectness rather than correctness. github.com/phan/phan
composer require --dev phan/phan
note: php-ast is necessary (sudo apt install php-ast)
Frank Bültge bueltge
☕
bueltge
/ authenticator_valeries_add_exclude.php
Last active
July 10, 2018 11:47
Valéries Authenticator Plugin to exclude pages
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <?php | |
| /** | |
| * Plugin Name: Valéries Authenticator Plugin to exclude pages | |
| * Plugin URI: https://github.com/bueltge/Authenticator | |
| * Description: This plugin extends the Authenticator plugin to exclude pages from the . | |
| * Author: | |
| * Version: 2018-07-10 | |
| * Author URI: | |
| * License: GPLv3+ | |
| * License URI: ./assets/license.txt |
bueltge
/ stop-ip-comment-storing.php
Last active
May 25, 2018 07:27
Stop Save IP Address on WordPress Comment
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <?php # -*- coding: utf-8 -*- | |
| declare( strict_types = 1 ); | |
| /** | |
| * Plugin Name: Stop Save IP Adress on Comment | |
| * Plugin URI: https://gist.github.com/bueltge/d0126eee91c0c17e80ad57e34e339a11 | |
| * Description: Stop Storing IP Addresses with WordPress Comments. | |
| * Version: 2018-05-25 | |
| * Author: Frank Bültge | |
| * Author URI: https://bueltge.de | |
| * License: MIT |
bueltge
/ tampermonkey-xdebug-css-addon.js
Last active
May 17, 2018 06:08
Tampermonkey script to restyle xDebug Output
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // ==UserScript== | |
| // @name xDebug Restyling | |
| // @namespace localhost | |
| // @version 0.1 | |
| // @description Restyling Xdebug output | |
| // @author Frank Bueltge | |
| // @match http://*localhost/* | |
| // @grant none | |
| // ==/UserScript== |
bueltge
/ PortSwitch.php
Last active
March 25, 2021 14:52
Port switch to get an workaround to use WordPress Multisite also without the default port 80.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <?php # -*- coding: utf-8 -*- | |
| declare( strict_types = 1 ); | |
| /** | |
| * Plugin Name: Port Switch | |
| * Plugin URI: https://gist.github.com/bueltge/51013ab809f5f0f5e305c70c2d393fff | |
| * Description: Port switch to get an workaround to use WordPress Multisite also without the default port 80. | |
| * Version: dev | |
| * Author: Frank Bültge | |
| * Author URI: https://bueltge.de | |
| * License: MIT |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <?php | |
| class foo { | |
| /** | |
| * Return sites of MU. | |
| * $sites object | |
| */ | |
| public function get_sites() { | |
| $sites = get_sites(); |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| [xdebug] | |
| ;XAMPP Win example | |
| ;zend_extension = "c:\xampp\php\ext\php_xdebug32.dll" | |
| ;xdebug.trace_output_dir ="\xampp\tmp" | |
| ;Linux Path | |
| zend_extension="/usr/lib64/php/20100525/xdebug.so" | |
| xdebug.profiler_output_dir = /var/local/xdebug | |
| xdebug.default_enable = 1 | |
| xdebug.profiler_enable = 0 |
bueltge
/ add-rel-nofollow-checkbox.php
Created
February 14, 2017 12:41
— forked from danielbachhuber/add-rel-nofollow-checkbox.php
Add a 'Add rel="nofollow" to link' checkbox to the WordPress link editor
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <?php | |
| /** | |
| * Add a 'Add rel="nofollow" to link' checkbox to the WordPress link editor | |
| * | |
| * @see https://danielbachhuber.com/tip/rel-nofollow-link-modal/ | |
| */ | |
| add_action( 'after_wp_tiny_mce', function(){ | |
| ?> | |
| <script> |
bueltge
/ wp-plugin-security-testing-cheatsheet.md
Created
August 22, 2016 12:12
WordPress Plugin Security Testing Cheat Sheet
This cheat sheet was compiled by Dewhurst Security to record the knowledge gained when testing WordPress plugins for security issues for our clients. The security documentation provided by WordPress and found online for plugin security is sparse, outdated or unclear. This cheat sheet is intended for Penetration Testers who audit WordPress plugins or developers who wish to audit their own WordPress plugins.
This is a living document, feedback in the form of Issues or Pull Requests is very much welcomed.
I hereby claim:
- I am bueltge on github.
- I am bueltge (https://keybase.io/bueltge) on keybase.
- I have a public key whose fingerprint is 5EA5 319F D531 1C84 7094 2FE4 1A56 7625 5969 6D2D
To claim this, I am signing this object: