Aug 07
29
Pixy; the PHP security scanner
20% The Problem: Finding XSS and SQLI vulnerabilities
Cross-site scripting (XSS) and SQL injection (SQLI) vulnerabilities are present in many modern web applications, and are reported continuously on pages such as BugTraq. In the past, finding such vulnerabilities usually involved manual source code audits. Unfortunately, this manual vulnerability search is a very tiresome and error-prone task.
The Solution: Pixy
Pixy is a Java program that performs automatic scans of PHP 4 source code, aimed at the detection of XSS and SQL injection vulnerabilities. Pixy takes a PHP program as input, and creates a report that lists possible vulnerable points in the program, together with additional information for understanding the vulnerability.
For more information, take a look at the documentation page!
They also provide a list of other Open-Source Analysis Tools for PHP. Including PHP-Sat which is a Static Analysis Tool that performs several static checks on PHP source code and PHP string analyzer, a static program analyser that approximates the string output of a PHP program with a context-free grammar.
Weekly Stats Chart
Wordpress.org
Pingback: 50个非常有用的PHP工具 | 胡言乱语
Pingback: 50 Extremely Useful PHP Tools | { Blog : relax from working }
Pingback: SpotGeek.net » Blog Archive » 50 Extremely Useful PHP Tools
Pingback: 50 Extremely Useful PHP Tools | Gordon French
Pingback: 50 Extremely Useful PHP Tools,Php Tools – HTD-34
Pingback: 50 Extremely Useful PHP Tools | The Blog Specialist
Pingback: Don’t be bad » Blog Archive » 50 Extremely Useful PHP Tools
Pingback: 50 Extremely Useful PHP Tools
Pingback: Click Mike » Blog Archive » Useful PHP tools
Pingback: 优秀而又实用的PHP工具集锦 - 元如枫-博客
Pingback: Php Araçları | OnuR.info
Pingback: 26 PHP инструмента и ресурса за уеб разработчици
Pingback: 50 Extremely Useful PHP Tools « Web Design Blog
Pingback: 50个经常用的PHP工具 | jquery学习入门
Pingback: 20+ Tools for Quick and Clean Code Development | Web Design Ledger
Pingback: 5 extremely powerful PHP tools | Technacular
Pingback: 25 Excellent PHP Tools That Enhance The Way You Develop « Narendra Dhami
Pingback: 20+ Tools for Quick and Clean Code Development | WebsGeek
Pingback: 25 Excellent PHP Tools That Enhance The Way You Develop | DSpot Inc
Pingback: 50 Extremely Useful PHP Tools « UR-Technology
Pingback: 25 Excellent PHP Tools That Enhance The Way You Develop | LearnersTutorials
Pingback: Geek is a Lift-Style. » Blog Archive » 50 Extremely Useful PHP Tools
Pingback: Geek is a Lift-Style. » 50 Extremely Useful PHP Tools
Pingback: 50 Extremely Useful PHP Tools | Geek is a Lift-Style.
Pingback: 15 Useful PHP Tools | LimeDomains.com Blog
Pingback: 50 Extremely Useful PHP Tools | Welcome to bandesha.com
Pingback: PHPER必须了解的几十个工具、IDE - 元宝 加速您的电子商务
Pingback: PHP Developer » Blog Archive » 50个非常有用的PHP工具
Pingback: 75+ Ferramentas PHP extremamente úteis | PontoBit
Pingback: 50个非常有用的PHP工具 | Jim的blog