Pixy: XSS and SQL Scanner for PHP

Pixy

If you’re working on PHP 4.x, here’s a tool which checks if your codebase is succeptible to Cross site scripting or SQL injection.

Pixy is a Java program that performs automatic scans of PHP 4 source code, aimed at the detection of XSS and SQL injection vulnerabilities. Pixy takes a PHP program as input, and creates a report that lists possible vulnerable points in the program, together with additional information for understanding the vulnerability.

Pixy still doesn’t support PHP 5 !

Pixy: XSS and SQLI Scanner for PHP

Share this on del.icio.us
Digg this!
Share this on Reddit
Stumble upon something good? Share it on StumbleUpon
Share this on Technorati
Share this on Facebook
Tweet This!
Add this to Google Bookmarks
Share this on FriendFeed
Ping this on Ping.fm
Promote this on Orkut
Blog this on Blogger
Post this to MySpace
Mark this on BlogMarks
Share this on Plurk

VT’s Tech Blog

My Tech Discovery Blog on PHP, Ajax, Security and Web 2.0

Pixy: XSS and SQL Scanner for PHP