Comments on: Skavenger - source code auditing tool!

By: lain

lain — Thu, 15 Nov 2007 00:36:26 +0000

kinda old ,, but gonna try it anyway

By: Pantagruel

Pantagruel — Mon, 12 Nov 2007 12:20:41 +0000

With -Bogwitch-

Any tools helping me to audit my make shift code is welcome.
OK I am able to filter out the most common mistakes made, but that hardly makes up for the tons of other not so obvious errors put in while burning the midnight oil.

By: Bogwitch

Bogwitch — Sat, 10 Nov 2007 23:23:13 +0000

I hate code audit. ANYTHING that helps with the process is fine by me!

By: backbone

backbone — Sat, 10 Nov 2007 13:09:46 +0000

php skavenger.php -r “/.*invent.*/i” -f darknet-article

Wierd it seems I never said invent?! I never said it’s new?! Oh yes I know, someone wasn’t attentive…

DAphpscan a.k.a. php source code auditing tool
Skavenger a.k.a. *source* code auditing tool

What? There is a difference?

It is not a replacement for specialized code auditing tools for specific languages like: SpikeSource, PMD, LAPSE (more info! search box on the right)

This script is for those who know what to look for in a source code, as said a replacement to egrep/sed (you know there are people who audit with them)…. was I evil?

By: hahaha

hahaha — Sat, 10 Nov 2007 05:09:08 +0000

Hey man, this kind of tools existed for ages … You didn’t invent anything … Check DAphpscan http://mgsdl.free.fr/?2:0, I did not try your tool but the one I’m posting is really *really* shit, but it’s exactly what you’ve just release. Now the difference that may do that your tool becomes good is the regex you’ve put in.

Peace.