Shin PHP Analyzer is a tool based on Zend Engine to analyze the vulnerable PHP source code.
- Now ready for XSS, SQLI, CMDI.
- XSS: htmlspecialchars, htmlentities -> echo, print, printf
- SQLI: mysql_real_escape_string, addslashes, sqlite_escape_string -> mysql_query, mysqli_query, sqlite_query, sqlite_single_query
- CMDI: escapeshellcmd, escapeshellarg -> exec, passthru, proc_open, shell_exec, system
- Two level warning:
- ALERT: VULNERABLE!
- WARN: MAY BE VULNERABLE!
Cover FUA (File Upload Attack) and so on.
Shin Feng