[ OWASP - Montreal ] XSS vulnerablity scanner implementation

Philippe Gamache philippe at gamache.com
Thu Apr 16 11:47:15 EDT 2009


For this, look at PHP Tokenizer, it's the best way to implement it...

Arun Sarangan wrote:
> Hi,
> First of all , I would like to thank OWASP Board members for arranging 
> wonderful presentation yesterday.
>  
> I am trying to implement a XSS vulnerablity scanner for PHP code as my 
> course mini project.
> The scanner should scan single php file and produce vulnerable lines 
> as the output.
> Can you give some idea like which language supports php parser to 
> start with.
>  
>  
> Thanks,
> Arun
>
> -- 
> Happiness keeps you Sweet, Trials keep you Strong, Sorrow keeps you 
> Human, Failure keeps you humble and Success keeps you glowing, but 
> only Faith & Attitude Keeps you going...
> ------------------------------------------------------------------------
>
> _______________________________________________
> Owasp-montreal mailing list
> Owasp-montreal at lists.owasp.org
> https://lists.owasp.org/mailman/listinfo/owasp-montreal
>   

-------------- next part --------------
A non-text attachment was scrubbed...
Name: philippe.vcf
Type: text/x-vcard
Size: 131 bytes
Desc: not available
Url : https://lists.owasp.org/pipermail/owasp-montreal/attachments/20090416/b07b311d/attachment.vcf 


More information about the Owasp-montreal mailing list