Pixy-Open-Source Vulnerability Scanner for PHP Applications

January 9, 2010
Filed under: Databases, DB Tool, Featured, MS SQL Server, MySql, Oracle, PHP, Postgres, SQL 

An Open-Source Vulnerability Scanner for PHP Applications.

The Secure Systems Lab at the Technical University of Vienna has released the newest version of Pixy, an open-source vulnerability scanner. Here are some of the highlights:

Detection of SQL injection and XSS vulnerabilities in PHP source code

  1. Automatic resolution of file inclusions
  2. Computation of dependence graphs that help you understand the causes of reported vulnerabilities
  3. Static analysis engine (flow-sensitive, interprocedural, context-sensitive)
  4. Platform-independent written in Java.


Pixy-Open-Source Vulnerability Scanner for PHP Applications


Tell me what you're thinking...
and oh, if you want a pic to show with your comment, go get a gravatar!

To prove you're a person (not a spam script), type the security word shown in the picture. Click on the picture to hear an audio file of the word.
Anti-spam image