htmLawed is a PHP script that makes input text more secure, HTML standards-compliant, and suitable in general from the viewpoint of a Web-page administrator, for use in the body of HTML 4 or XHTML 1 or 1.1 documents. It is a customizable HTML/XHTML filter, processor, purifier, and sanitizer. It can ensure that HTML tags are balanced and properly nested tags, neutralize code that may be used for cross-site scripting (XSS) attacks, and limit the allowed HTML elements, tags, attributes, or URL protocols.
WebAbility is an advanced Web development platform that contains WebFlow, a content management system (CMS), a security advanced system (SAS), a powerful workflow engine, and Web site wrappers. It supports multiple database connections, multiple languages, multiple presentation templates, page, script, and library versioning, XML and Web Services integration, and advanced security management. It uses plugins to extend the software for tasks such as e-commerce, portals, intranets, and editorial systems.
mod_auth_openid is an authentication module for the Apache 2 Web server. It handles the functions of an OpenID consumer as specified in the OpenID 2.0 specification. Once installed, a simple configuration directive can secure a directory or application on your Web server and require a valid OpenID/XRI identity. You can configure trusted/untrusted identity providers along with a number of other options.
phpass is a portable password hashing framework for use in PHP applications. The preferred (most secure) hashing method supported by phpass is the OpenBSD-style bcrypt (known in PHP as CRYPT_BLOWFISH), with a fallback to BSDI-style extended DES-based hashes (known in PHP as CRYPT_EXT_DES), and a last resort fallback to an MD5-based variable iteration count password hashing method implemented in phpass itself.
Webtunnel is a network utility that encapsulates arbitrary data in HTTP and transmits it through a Web server. In that regard, it is similar to httptunnel. However, its server component runs in the context of a Web server as a CGI application (with optional FastCGI support), so it does not need its own port. It supports most things that the Web server supports, such as authentication, HTTP 1.1, HTTPS, and client certificates. It uses simple requests and responses so it works seamlessly through forward and reverse proxies.
suPHP is a combination of an Apache module (mod_suphp) and an executable which provides a wrapper for PHP. With both together, it is possible to execute PHP scripts with the permissions of their owner without having to place a PHP binary in each user's cgi-bin directory. suPHP doesn't need Apache's suExec, and provides a logging function.