Comments on: Pixy - New & Free Open-source XSS and SQL Injection Scanner for PHP Programs

By: TheRealDonQuixote

TheRealDonQuixote — Fri, 31 Aug 2007 05:08:04 +0000

Man this tool is sweet!! For several reasons:
A. Its free
2. Cross Platform performance roxxx!!
D. Automation

I know, I know, the script kiddies will probably wreak havoc with this. But hey, my philosophy is that peeps need to have the vulnerabilities brought out in the open before anyone can close them.

By: Sandeep Nain

Sandeep Nain — Fri, 31 Aug 2007 01:55:06 +0000

Nice to see a good open source static code analyzer as compare to other commercial products (such as offered by fortify).

Platform independence and Graph generation features make this tool far better than other products.

hats off to Pixy developers. kool tool