{"id":13844926,"url":"https://github.com/lu2ker/PHP-Code","last_synced_at":"2025-07-12T00:32:40.538Z","repository":{"id":42375220,"uuid":"373407229","full_name":"lu2ker/PHP-Code","owner":"lu2ker","description":"通过ThinkPHP框架学习PHP代码审计","archived":false,"fork":false,"pushed_at":"2024-06-19T06:48:41.000Z","size":35736,"stargazers_count":232,"open_issues_count":0,"forks_count":37,"subscribers_count":3,"default_branch":"main","last_synced_at":"2024-08-05T17:43:26.861Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":"","language":"PHP","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"unlicense","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/lu2ker.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2021-06-03T06:41:09.000Z","updated_at":"2024-07-22T14:08:40.000Z","dependencies_parsed_at":"2024-06-19T14:30:05.912Z","dependency_job_id":null,"html_url":"https://github.com/lu2ker/PHP-Code","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lu2ker%2FPHP-Code","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lu2ker%2FPHP-Code/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lu2ker%2FPHP-Code/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/lu2ker%2FPHP-Code/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/lu2ker","download_url":"https://codeload.github.com/lu2ker/PHP-Code/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":225772821,"owners_count":17521895,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2024-08-04T17:03:03.534Z","updated_at":"2025-07-12T00:32:40.522Z","avatar_url":"https://github.com/lu2ker.png","language":"PHP","funding_links":[],"categories":["其他_安全与渗透","PHP"],"sub_categories":["网络服务_其他"],"readme":"\u003e 保持这样一种心态：你是在读代码，而不是在挖漏洞。\n\u003e 你只需耐心，等花开。\n\n## 从PHP代码审计小知识开始吧！\n\n[可能被利用的函数](/%E5%8F%AF%E8%83%BD%E8%A2%AB%E5%88%A9%E7%94%A8%E7%9A%84%E5%87%BD%E6%95%B0.md)\n\n[不知道该怎么归类的小知识](/不知道该怎么归类的小知识.md)\n\n[PHP反序列化](https://github.com/lu2ker/PHP-Code/blob/main/PHP%E7%9A%84%E5%8F%8D%E5%BA%8F%E5%88%97%E5%8C%96.md)\n\n## 接下来开始学习[七月火](https://github.com/Mochazz/)大佬的TP代码审计\n\n[ThinkPHP5之SQLI审计分析(一)](https://github.com/lu2ker/PHP-Code/blob/main/ThinkPHP5%E4%B9%8BSQLI%E5%AE%A1%E8%AE%A1%E5%88%86%E6%9E%90(%E4%B8%80).md)\n\n小思考：~~感觉代码审计就两个步骤，①如何跳过某段代码。②如何进入某段代码。~~\n代码审计，重在找利用链。\n\n[ThinkPHP5之SQLI审计分析(二)](https://github.com/lu2ker/Study-notes/blob/main/ThinkPHP5%E4%B9%8BSQLI%E5%AE%A1%E8%AE%A1%E5%88%86%E6%9E%90(%E4%BA%8C).md)\n\n[ThinkPHP5之SQLI审计分析(三)](https://github.com/lu2ker/Study-notes/blob/main/ThinkPHP5%E4%B9%8BSQLI%E5%AE%A1%E8%AE%A1%E5%88%86%E6%9E%90(%E4%B8%89).md)\n\n[ThinkPHP5之SQLI审计分析(四)](https://github.com/lu2ker/PHP-Code/blob/main/ThinkPHP5%E4%B9%8BSQLi%E5%AE%A1%E8%AE%A1%E5%88%86%E6%9E%90(%E5%9B%9B).md)\n\n[ThinkPHP3之SQLI审计分析(一)](https://github.com/lu2ker/PHP-Code/blob/main/ThinkPHP3%E4%B9%8BSQLI%E5%AE%A1%E8%AE%A1%E5%88%86%E6%9E%90.md)\n\n[ThinkPHP5之文件包含审计分析(五)](https://github.com/lu2ker/PHP-Code/blob/main/ThinkPHP5%E4%B9%8B%E6%96%87%E4%BB%B6%E5%8C%85%E5%90%AB%E5%AE%A1%E8%AE%A1%E5%88%86%E6%9E%90(%E4%BA%94).md)\n\n## 补一补一直没提到的TP框架的开发知识吧\n\n[TP5框架学习（路由）](https://github.com/lu2ker/PHP-Code/blob/main/TP5%E6%A1%86%E6%9E%B6%E5%AD%A6%E4%B9%A0%E7%AC%94%E8%AE%B0(%E8%B7%AF%E7%94%B1).md)\n\n[TP5框架学习（请求）](https://github.com/lu2ker/PHP-Code/blob/main/TP5%E6%A1%86%E6%9E%B6%E5%AD%A6%E4%B9%A0%E7%AC%94%E8%AE%B0(%E8%AF%B7%E6%B1%82).md)\n\n[TP5框架学习（杂项）](https://github.com/lu2ker/PHP-Code/blob/main/TP5%E6%A1%86%E6%9E%B6%E5%AD%A6%E4%B9%A0%E7%AC%94%E8%AE%B0(%E6%9D%82%E9%A1%B9).md)\n\n这儿有一个[简单的MVC代码案例](https://www.php.cn/php-weizijiaocheng-429302.html)帮助理解\n\n[TP5框架学习笔记进阶之Request](https://github.com/lu2ker/PHP-Code/blob/main/TP5%E6%A1%86%E6%9E%B6%E5%AD%A6%E4%B9%A0%E7%AC%94%E8%AE%B0%E8%BF%9B%E9%98%B6%E4%B9%8BRequest.md)\n\n[TP5框架学习笔记进阶之Contorller](https://github.com/lu2ker/PHP-Code/blob/main/TP5%E6%A1%86%E6%9E%B6%E5%AD%A6%E4%B9%A0%E7%AC%94%E8%AE%B0%E8%BF%9B%E9%98%B6%E4%B9%8BContorller.md)\n\n## 复现三个经典RCE漏洞\n\n[ThinkPHP5之任意方法调用RCE(六)](https://github.com/lu2ker/PHP-Code/blob/main/ThinkPHP5%E4%B9%8B%E4%BB%BB%E6%84%8F%E6%96%B9%E6%B3%95%E8%B0%83%E7%94%A8RCE(%E5%85%AD).md)\n\n[ThinkPHP5之任意方法调用RCE(七)](https://github.com/lu2ker/PHP-Code/blob/main/ThinkPHP5%E6%BC%8F%E6%B4%9E%E5%88%86%E6%9E%90%E4%B9%8B%E4%BB%A3%E7%A0%81%E6%89%A7%E8%A1%8C(%E4%B8%83).md)\n\n[Thinkphp5之反序列化exp编写(八)](https://github.com/lu2ker/PHP-Code/blob/main/TP5%E5%8F%8D%E5%BA%8F%E5%88%97%E5%8C%96%E5%88%A9%E7%94%A8%E9%93%BE.md)\n\n## 总结\n\n[ThinkPHP利用总结](https://github.com/lu2ker/PHP-Code/blob/main/thinkphp%E6%80%BB%E7%BB%93.md)\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Flu2ker%2FPHP-Code","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Flu2ker%2FPHP-Code","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Flu2ker%2FPHP-Code/lists"}