Pixy is a Free PHP Code Audit Tool
I’ve always thought that secure web applications must be built secure and no matter how many patches are released during an application’s life cycle, secure coding and secure code are the fundamental pillars of secure web.
Defending a vulnerable web application with one Web Application Firewall should only buy you some time toactually fix the vulnerabilities. I strongly believe that virtual patching is just a buzz marketing crap word. Always fix the code !
Just a few days after I found a static .Net XSS code analyzer , today I’ve found a PHP XSS and SQL injection source code analyzer called Pixy.
Download and install Pixy today and please share the experience !
Thank you for reading this post. You can now Read Comments (3) or Leave A Trackback.
Print This Post
Post Info
This entry was posted on Tuesday, October 30th, 2007 . Tagged with:You can follow any responses to this entry through the Comments Feed. You can Leave A Comment, or A Trackback.
Previous Post: XSSDetect – Free Visual Studio Plugin »
Next Post: GIAC Secure Software Programmer (GSSP) Certification »
Read More
Related Reading:- Animated Presentation on Sony PSN Hack
- ArcSight Tip #1 – arcsight managersetup notification test
- I’m a CISSP
- Operation:Payback or Social Vendetta is Here
- I got owned by Malware Destructor 2011 Virus
- New Downtime Cost Calculator by Storagepipe.com. What if ?
- Securing Your Network from Web Threats
- My Twitter Notes on 2010-07-25
- New NetWitness Visualize : Welcome To The Future!
- My Twitter Notes on 2010-07-18
May 23rd, 2009 01:31
Thanks for this security tip !
____________________
Saguenay-IT, (PHP, ASP, Flex, ActionScript, JavaScript, etc.)
November 18th, 2010 17:10
[...] pixy http://www.dragoslungu.com/2007/10/30/pixy-is-a-free-php-code-audit-tool/ [...]
November 19th, 2010 14:09
[...] pixy http://www.dragoslungu.com/2007/10/30/pixy-is-a-free-php-code-audit-tool/ [...]