oliverklee / pixy
Pixy is a scanner static code analysis tools that scans PHP applications for security vulnerabilities.
☆132Updated 8 months ago
Related projects: ⓘ
- Taint Analysis for PHP☆44Updated 8 years ago
- OWASP WAP - Web Application Protection Project☆11Updated 5 years ago
- PHP language analyses in Rascal☆27Updated last week
- This is the repository for JÄk. I created it as prototype during my masterthesis.☆28Updated 6 years ago
- Collection of vulnerable and fixed PHP synthetic test cases☆57Updated 11 months ago
- A Control Flow Graph implementation in PHP☆244Updated 3 months ago
- ☆24Updated this week
- A tool that can scan php vulnerabilities automatically using static analysis methods☆486Updated 6 years ago
- Security-related PHP7 OPcache abuse tools and demo☆308Updated last year
- ☆23Updated 5 years ago
- RIPS - A static source code analyser for vulnerabilities in PHP scripts☆343Updated 8 years ago
- Parser utility to generate ASTs from PHP source code suitable to be processed by Joern.☆33Updated 4 years ago
- Parser utility to generate ASTs from PHP source code suitable to be processed by Joern.☆16Updated 5 years ago
- Static Analysis for Detecting Side-Channel Vulnerabilities in PHP applications (Work-In-Progress)☆15Updated 7 years ago
- A static analysis tool for security☆323Updated last month
- procfs-based PHP sandbox bypass☆133Updated 6 years ago
- A PHP code transformer to provide protection against injection attacks☆10Updated 13 years ago
- Java taint propagation for java. Define tainted sources, sanitizer methods and sinks via aspects.☆27Updated 5 years ago
- RIPS - A static source code analyser for vulnerabilities in PHP scripts☆310Updated 2 years ago
- A PHP static code analyser for potential vulnerabilities☆26Updated 9 years ago
- PHP synthetic test cases generator☆10Updated 11 months ago
- PHP Open Iast Agent☆9Updated 5 years ago
- PHP tool to scan ADOdb code for SQL Injections☆31Updated 8 years ago
- A PoC for exploiting Guzzle's HTTP_PROXY untrusted read☆53Updated 8 years ago
- CodeIgniter <=2.1.4 session cookie decryption vulnerability☆39Updated 8 years ago
- Symbolic execution inspired PHP application scanner for code-path discovery☆30Updated 5 years ago
- A Java serializer in JavaScript☆82Updated 6 years ago
- Proof-of-concept to exploit the flaw in the PHP-GD built-in function, imagecreatefromjpeg()☆143Updated 9 years ago
- ☆83Updated 7 years ago
- PHP parser written in Python using PLY☆361Updated last year