[Owasp-leaders] PHP Based Vulnerability Scanner

Josh Sokol josh.sokol at owasp.org
Tue Aug 20 14:15:16 UTC 2013


Assuming you are developing a scanner that scans PHP code looking for
vulnerabilities, you should check out RIPS (
http://rips-scanner.sourceforge.net/).  I used it the other day for a
project that I've been working on and it works quite well and has a very
intuitive UI.  Hope that helps.

~josh


On Sun, Aug 4, 2013 at 8:19 AM, Abbas Naderi <abiusx at owasp.org> wrote:

> Is the scanner using PHP, or for PHP?
> Is is dynamic or static?
> Does it find logical flaws or syntactical flaws?
> -Abbas
> ______________________________________________________________
> *Notice:** *This message is *digitally signed*, its *source* and *
> integrity* are verifiable.
> If you mail client does not support S/MIME verification, it will display a
> file (smime.p7s), which includes the X.509 certificate and the signature
> body.  Read more at Certified E-Mail with Comodo and Thunderbird<http://abiusx.com/certified-e-mail-with-comodo-and-thunderbird/> in
> AbiusX.com
>
> On Mordad 13, 1392, at 4:14 PM, Dhruv Jain <dhruv.jain at owasp.org> wrote:
>
> Hello OWASP leaders,
>
> I am working on PHP based Vulnerability scanner.The project details can be
> found at
> https://www.owasp.org/index.php/OWASP_HA_Vulnerability_Scanner_Project
>
> If anyone is interested to assist me in developing this, Please reply.
>
>
> Regards,
> Dhruv Jain
> _______________________________________________
> OWASP-Leaders mailing list
> OWASP-Leaders at lists.owasp.org
> https://lists.owasp.org/mailman/listinfo/owasp-leaders
>
>
>
> _______________________________________________
> OWASP-Leaders mailing list
> OWASP-Leaders at lists.owasp.org
> https://lists.owasp.org/mailman/listinfo/owasp-leaders
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-leaders/attachments/20130820/50ab82cf/attachment-0001.html>


More information about the OWASP-Leaders mailing list