Pixy v3.01 Code Scanner for PHP Applications released

Pixy is an Open-Source Vulnerability Scanner that identifies SQL, XSS problems in PHP applications.

Here are some of the highlights:

  • detection of SQL injection and XSS vulnerabilities in PHP source code
  • automatic resolution of file inclusions
  • computation of dependence graphs that help you understand the causes of reported
    vulnerabilities
  • static analysis engine (flow-sensitive, interprocedural, context-sensitive)
  • platform-independent (written in Java)

Post scriptum

Compliance Mandates

  • Code Auditing :

    PCI/DSS 6.3.6, 6.3.7, 6.6, SOX A12.8, GLBA 16CFR Part 314.4(b) and (2);FISMA RA-5, SC-18, SA-11 SI-2, and ISO 27001/27002 (12.4.1, 12.4.3, 12.5)

  • Vulnerability Scanner :

    PCI DSS 11.2, 6.6, SOX A13.3, GLBA 16CFR Part 314.4(c), HIPAA 164.308(a)(8), FISMA RA-5, SI-2, ISO 27001-27002 12.6, 15.2.2


Related Articles

Code Auditing
Pixy
Vulnerability Scanner