Darknet - The Darkside » php-audit-tool http://www.darknet.org.uk Ethical Hacking, Penetration Testing & Computer Security Tue, 07 Feb 2012 18:34:17 +0000 en hourly 1 http://wordpress.org/?v=3.3.1 SpikeSource Spike PHP Security Audit Tool http://www.darknet.org.uk/2006/08/spikesource-spike-php-security-audit-tool/ http://www.darknet.org.uk/2006/08/spikesource-spike-php-security-audit-tool/#comments Tue, 01 Aug 2006 03:13:49 +0000 Darknet http://www.darknet.org.uk/2006/08/spikesource-spike-php-security-audit-tool/

Spike is an Open Source tool based on the popular RATS C based auditing tool implemented for PHP.

The tool Spike basically does static analysis of php code for security exploits, PHP5 and call-time pass-by-reference are currently required, but a PHP4 version is coming out this week.

This tool is especially welcomed by Darknet as there aren’t many static analysis tools out there that are free, and there are very few tools for auditing PHP code..which as we all known tends to be coded quite insecurely at times (just look at phpBB and PhpNUKE).

You can find the latest version here:

Spike PHP Audit Tool

Post to Twitter Post to Facebook Post to Google Buzz Post to Delicious Post to Digg Post to Reddit Post to StumbleUpon

]]> http://www.darknet.org.uk/2006/08/spikesource-spike-php-security-audit-tool/feed/ 3