Skip to content

Instantly share code, notes, and snippets.

Avatar
:octocat:
Searching for talents

Frank Bültge bueltge

:octocat:
Searching for talents
View GitHub Profile
@bueltge
bueltge / authenticator_valeries_add_exclude.php
Last active Jul 10, 2018
Valéries Authenticator Plugin to exclude pages
View authenticator_valeries_add_exclude.php
<?php
/**
* Plugin Name: Valéries Authenticator Plugin to exclude pages
* Plugin URI: https://github.com/bueltge/Authenticator
* Description: This plugin extends the Authenticator plugin to exclude pages from the .
* Author:
* Version: 2018-07-10
* Author URI:
* License: GPLv3+
* License URI: ./assets/license.txt
@bueltge
bueltge / stop-ip-comment-storing.php
Last active May 25, 2018
Stop Save IP Address on WordPress Comment
View stop-ip-comment-storing.php
<?php # -*- coding: utf-8 -*-
declare( strict_types = 1 );
/**
* Plugin Name: Stop Save IP Adress on Comment
* Plugin URI: https://gist.github.com/bueltge/d0126eee91c0c17e80ad57e34e339a11
* Description: Stop Storing IP Addresses with WordPress Comments.
* Version: 2018-05-25
* Author: Frank Bültge
* Author URI: https://bueltge.de
* License: MIT
@bueltge
bueltge / tampermonkey-xdebug-css-addon.js
Last active May 17, 2018
Tampermonkey script to restyle xDebug Output
View tampermonkey-xdebug-css-addon.js
// ==UserScript==
// @name xDebug Restyling
// @namespace localhost
// @version 0.1
// @description Restyling Xdebug output
// @author Frank Bueltge
// @match http://*localhost/*
// @grant none
// ==/UserScript==
@bueltge
bueltge / readme.md
Last active Jan 25, 2020
Static PHP7 analyses with Phan and PHP 7 Migration Assistant Report (MAR), PHP 5 to PHP7 Migration Tools
View readme.md

Phan

Phan is a static analyzer for PHP. Phan prefers to avoid false-positives and attempts to prove incorrectness rather than correctness. github.com/phan/phan

Install via Composer

composer require --dev phan/phan

note: php-ast is necessary (sudo apt install php-ast)

Help

@bueltge
bueltge / PortSwitch.php
Last active Jul 21, 2020
Port switch to get an workaround to use WordPress Multisite also without the default port 80.
View PortSwitch.php
<?php # -*- coding: utf-8 -*-
declare( strict_types = 1 );
/**
* Plugin Name: Port Switch
* Plugin URI: https://gist.github.com/bueltge/51013ab809f5f0f5e305c70c2d393fff
* Description: Port switch to get an workaround to use WordPress Multisite also without the default port 80.
* Version: dev
* Author: Frank Bültge
* Author URI: https://bueltge.de
* License: MIT
@bueltge
bueltge / plugin.php
Last active Aug 18, 2017
Get WP Posts via REST API
View plugin.php
<?php
class foo {
/**
* Return sites of MU.
* $sites object
*/
public function get_sites() {
$sites = get_sites();
@bueltge
bueltge / php.ini
Last active Feb 21, 2017
Active Xdebug for profiling
View php.ini
[xdebug]
;XAMPP Win example
;zend_extension = "c:\xampp\php\ext\php_xdebug32.dll"
;xdebug.trace_output_dir ="\xampp\tmp"
;Linux Path
zend_extension="/usr/lib64/php/20100525/xdebug.so"
xdebug.profiler_output_dir = /var/local/xdebug
xdebug.default_enable = 1
xdebug.profiler_enable = 0
@bueltge
bueltge / add-rel-nofollow-checkbox.php
Created Feb 14, 2017 — forked from danielbachhuber/add-rel-nofollow-checkbox.php
Add a 'Add rel="nofollow" to link' checkbox to the WordPress link editor
View add-rel-nofollow-checkbox.php
<?php
/**
* Add a 'Add rel="nofollow" to link' checkbox to the WordPress link editor
*
* @see https://danielbachhuber.com/tip/rel-nofollow-link-modal/
*/
add_action( 'after_wp_tiny_mce', function(){
?>
<script>
@bueltge
bueltge / wp-plugin-security-testing-cheatsheet.md
Created Aug 22, 2016
WordPress Plugin Security Testing Cheat Sheet
View wp-plugin-security-testing-cheatsheet.md

WordPress Plugin Security Testing Cheat Sheet

This cheat sheet was compiled by Dewhurst Security to record the knowledge gained when testing WordPress plugins for security issues for our clients. The security documentation provided by WordPress and found online for plugin security is sparse, outdated or unclear. This cheat sheet is intended for Penetration Testers who audit WordPress plugins or developers who wish to audit their own WordPress plugins.

This is a living document, feedback in the form of Issues or Pull Requests is very much welcomed.

Cross-Site Scripting (XSS)

@bueltge
bueltge / keybase.md
Last active Aug 18, 2016
keybase.md
View keybase.md

Keybase proof

I hereby claim:

  • I am bueltge on github.
  • I am bueltge (https://keybase.io/bueltge) on keybase.
  • I have a public key whose fingerprint is 5EA5 319F D531 1C84 7094 2FE4 1A56 7625 5969 6D2D

To claim this, I am signing this object:

You can’t perform that action at this time.