Online Banking System in PHP & MySQL
PHP CSS
Switch branches/tags
Nothing to show
Clone or download
Latest commit 5a5e556 Aug 25, 2017
Permalink
Failed to load latest commit information.
_inc Online Banking System Feb 1, 2015
nbproject Online Banking System Feb 1, 2015
.gitattributes 🎪 Added .gitattributes & .gitignore files Feb 1, 2015
.gitignore 🎪 Added .gitattributes & .gitignore files Feb 1, 2015
README.md Update README.md Aug 25, 2017
account_summary.php Online Banking System Feb 1, 2015
add_beneficiary.php Online Banking System Feb 1, 2015
add_beneficiary_process.php Online Banking System Feb 1, 2015
add_customer.php Online Banking System Feb 1, 2015
add_staff.php Online Banking System Feb 1, 2015
addcustomer.php Online Banking System Feb 1, 2015
addstaff.php Online Banking System Feb 1, 2015
admin_hompage.php Online Banking System Feb 1, 2015
admin_logout.php Online Banking System Feb 1, 2015
admin_navbar.php Online Banking System Feb 1, 2015
adminlogin.php Online Banking System Feb 1, 2015
alter_customer.php Online Banking System Feb 1, 2015
alter_staff.php Online Banking System Feb 1, 2015
bank_db.sql Online Banking System Feb 1, 2015
change_password.php Online Banking System Feb 1, 2015
change_password_customer.php Online Banking System Feb 1, 2015
change_password_staff.php Online Banking System Feb 1, 2015
contact.php Online Banking System Feb 1, 2015
customer_account_statement.php Online Banking System Feb 1, 2015
customer_account_statement_date.php Online Banking System Feb 1, 2015
customer_account_summary.php Online Banking System Feb 1, 2015
customer_issue_atm.php Online Banking System Feb 1, 2015
customer_issue_atm_process.php Online Banking System Feb 1, 2015
customer_logout.php Online Banking System Feb 1, 2015
customer_mini_statement.php Online Banking System Feb 1, 2015
customer_navbar.php Online Banking System Feb 1, 2015
customer_personal_details.php Online Banking System Feb 1, 2015
customer_transfer.php Online Banking System Feb 1, 2015
customer_transfer_process.php Online Banking System Feb 1, 2015
delete_beneficiary.php Online Banking System Feb 1, 2015
delete_customer.php Online Banking System Feb 1, 2015
delete_staff.php Online Banking System Feb 1, 2015
display_beneficiary.php Online Banking System Feb 1, 2015
display_customer.php Online Banking System Feb 1, 2015
display_staff.php Online Banking System Feb 1, 2015
editcustomer.php Online Banking System Feb 1, 2015
editprofile.php Online Banking System Feb 1, 2015
editstaff.php Online Banking System Feb 1, 2015
faq.php Online Banking System Feb 1, 2015
features.php Online Banking System Feb 1, 2015
footer.php Online Banking System Feb 1, 2015
header.jpg Online Banking System Feb 1, 2015
header.php Online Banking System Feb 1, 2015
home.jpg Online Banking System Feb 1, 2015
index.php Update index.php Feb 1, 2015
newcss.css Online Banking System Feb 1, 2015
no-js.php Online Banking System Feb 1, 2015
safeonlinebanking.php Online Banking System Feb 1, 2015
staff_approve_beneficiery.php Online Banking System Feb 1, 2015
staff_atm_approve.php Online Banking System Feb 1, 2015
staff_atm_approve_process.php Online Banking System Feb 1, 2015
staff_beneficiary.php Online Banking System Feb 1, 2015
staff_cheque_approve.php Online Banking System Feb 1, 2015
staff_cheque_approve_process.php Online Banking System Feb 1, 2015
staff_homepage.php Online Banking System Feb 1, 2015
staff_login.php Online Banking System Feb 1, 2015
staff_logout.php Online Banking System Feb 1, 2015
staff_navbar.php Online Banking System Feb 1, 2015
t&c.php Online Banking System Feb 1, 2015

README.md

Disclaimer

This project should not be modified in any way and used anywhere else without my permission.

Some people have downloaded this project and are using it for phishing purposes after modifying the source code. The original project has nothing to do with phishing or any other malicious purpose. Any loss of data or unauthorized access which happened because of such phishing kits would not be my responsibility as that's not my original code. Strict legal action would be taken if someone is found modifying it and using it for any unethical purpose.

Online-Banking-system

Online Banking System in PHP & MySQL.

Screenshots and description: http://hackwhiz.com/2015/02/online-banking-system-php-mysql/

The project’s primary goals consist of:

A robust and effective web based online banking system.

Extending functionality without compromising the security.

Personal banking services that gives you complete control over all your banking demands online.

Simple and easy user interface to work with.

Online Banking features:

Registration for online banking by Admin.

Adding Beneficiary account by customer.

Transferring amount to the beneficiary added by customer.

Staff must approve for beneficiary activation before it can be used for transferring funds.

Customer gets to know his last login date and time each time he logs in.

Customer can check last 10 transactions made with their account.

Customer can check their account statement within a date range.

Customer can request for ATM and Cheque Book.

Staff will approve requests for ATM card and cheque book.

Admin can add/edit/delete customer as well as staff.

All three of them(customer, staff & admin) can change their password.

Staff and Admin Login pages are hidden from customer for security purpose.

Security:

Each and every input is passed through mysql_real_escape_string() to remove special characters from the string so that user can’t submit arbitrary input. It protects from attacks like Sql Injection and Cross Site Scripting(XSS).

Passwords are encrypted with SHA- 1 hashing algorithm and then stored in database.

Passwords are stored as encrypted hashes with an additional random salt for added security.

Note: If we talk about security,above mentioned points would provide no security at all but it will work for beginners. Being into web app pentesting,I very well know this project will not be considered secure. It needs atleast a more effective filtering mechanism, better hashing algorithm, a better salting procedure for storing passwords and some other things too.

Database:

The database contains customer, staff & admin tables.

Each customer has its own virtual passbook linked with its account number.

Staff, customer and, admin have their details and password in their respective tables with all the details.

A separate table for beneficiary is included in the database.

A table for cheque book and ATM requests is included.

This project is divided into three hierarchical parts:

The index page for the customer login.

A hidden staff login page.

A hidden admin login page.

Usage:

1.Install XAMPP or something similar.

2.Copy all the files to c:/xampp/htdocs/banking/

3.Create a db named as 'bnak_db' and import the bank_db.sql from phpMyAdmin.

4.change the password in _inc/dbconn.php file accordingly.

5.visit localhost/banking (customer index page)

6.visit localhost/banking/adminlogin.php (admin login)

7.visit localhost/banking/staff_login.php (staff login)

Note: The customer passwords are hashed and stored in the database. You will not be able to see it. The password is 'rash' for almost all the customers,just in case if you want to login with the pre added customer.