PHPCoder is a Web-based frontend to the Turck MMCache encoding functions, which are similar to the Zend Encoder product. PHPCoder enables you to encode your PHP scripts and applications into non-reversible bytecode, thus preventing users of your programs from viewing or altering the source code while having full functionality. Another excellent use for PHPCoder is to encode your applications PHP configuration files, that way someone viewing your source code does not see your databae login and password information. It also allows you to set restrictions on the encoded scripts, you can lock a script to a particular server IP address, server host name, visitor IP, or even place a time limit on the script so it will expire after a configurable amount of time. You specify Text, HTML, or PHP code that should be prepended and appended to each file before it is encoded, allowing you to easily and securely implement your own licensing scheme.
DB_eSession is a feature-packed PHP class that stores session data in a MySQL database rather than files. It is powerful, designed with security in mind, and is easy to utilize. The code contains lots of comments, and it comes with full documentation and examples of how to use the class including a basic authentication login/logout process. It includes member functions useful (to webmasters) for monitoring or viewing, deleting, and altering sessions validity for the case of locking one or more sessions upon detection of unauthorized use.
The Enhanced File Crypt/eXtended File Stealth System (EFC/XFSS) makes your uploaded files safe on the server so that no one can read them without knowing a few details to decipher the files. It generates different obfuscated names and encrypted files so no one will know what the original format or name was.
Link Protect will prevent direct linking, downloads, and spider searches of your images and pages that would otherwise enable unauthorized downloads. If the call is not from within your site or an authorized site, a customizable default image is displayed. You can specify domains from which you will accept links such as your other sites or those of authorized associates. Almost any type of file can be protected (GIF, JPEG, zip, HTML, exe, etc.).
OSAccess is an entitlement security engine for prodividing fine grained security access. At the moment, the security spec for J2EE is silent on entitlement level security, so this project is an attempt to make a truly portable and reusable entitlement engine that can work with multiple backend security data repositories and be hosted on different application servers.