[Owasp-leaders] PHP Based Vulnerability Scanner

Bhupal Sapkota bhupal.sapkota at owasp.org
Thu Aug 22 18:02:48 UTC 2013


RIPS is nifty tool, i've been using it for educational purpose. But it
doesn't support OOP.

---
Regards,
Bhupal Sapkota

Chapter Lead, OWASP Nepal
Chief Technology Officer, Semicolon Developers Network Pvt. Ltd.
P.O.Box. 9018, Ph. +977-1-5520471, Kathmandu, Nepal


On Tue, Aug 20, 2013 at 8:00 PM, Josh Sokol <josh.sokol at owasp.org> wrote:

> Assuming you are developing a scanner that scans PHP code looking for
> vulnerabilities, you should check out RIPS (
> http://rips-scanner.sourceforge.net/).  I used it the other day for a
> project that I've been working on and it works quite well and has a very
> intuitive UI.  Hope that helps.
>
> ~josh
>
>
> On Sun, Aug 4, 2013 at 8:19 AM, Abbas Naderi <abiusx at owasp.org> wrote:
>
>> Is the scanner using PHP, or for PHP?
>> Is is dynamic or static?
>> Does it find logical flaws or syntactical flaws?
>> -Abbas
>>      ______________________________________________________________
>> *Notice:** *This message is *digitally signed*, its *source* and *
>> integrity* are verifiable.
>> If you mail client does not support S/MIME verification, it will display
>> a file (smime.p7s), which includes the X.509 certificate and the signature
>> body.  Read more at Certified E-Mail with Comodo and Thunderbird<http://abiusx.com/certified-e-mail-with-comodo-and-thunderbird/> in
>> AbiusX.com
>>
>> On Mordad 13, 1392, at 4:14 PM, Dhruv Jain <dhruv.jain at owasp.org> wrote:
>>
>> Hello OWASP leaders,
>>
>> I am working on PHP based Vulnerability scanner.The project details can
>> be found at
>> https://www.owasp.org/index.php/OWASP_HA_Vulnerability_Scanner_Project
>>
>> If anyone is interested to assist me in developing this, Please reply.
>>
>>
>> Regards,
>> Dhruv Jain
>> _______________________________________________
>> OWASP-Leaders mailing list
>> OWASP-Leaders at lists.owasp.org
>> https://lists.owasp.org/mailman/listinfo/owasp-leaders
>>
>>
>>
>> _______________________________________________
>> OWASP-Leaders mailing list
>> OWASP-Leaders at lists.owasp.org
>> https://lists.owasp.org/mailman/listinfo/owasp-leaders
>>
>>
>
> _______________________________________________
> OWASP-Leaders mailing list
> OWASP-Leaders at lists.owasp.org
> https://lists.owasp.org/mailman/listinfo/owasp-leaders
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-leaders/attachments/20130822/d16ecc7b/attachment.html>


More information about the OWASP-Leaders mailing list