Commoditizing PHP security
July 22nd, 2006 | Published in Blogroll, Code Development, PHP, Security
We think it’s time to commoditize PHP web application security. You may have heard of Chorizo!. We’re proud to announce that from now on it’s possible to register for a free account on chorizo-scanner.com.
We think that everyone should be able to find usual security bugs like XSS (especially with nowadays Web2.0 applications), SQL injection (i.e. in MySQL queries), Remote Code inclusion/execution, Session injection, PHP vulnerabilities and the like. As Chorizo! is based on a plugin architecture, it is likely that we’ll add more and more plugins for detecting new vulnerabilites.
This might be a good and worthwhile thing to investigate for some projects. So does one build in the cost to the development… or maintenance?
(Via Planet MySQL.)
