public marks

PUBLIC MARKS from parmentierf with tags "open source" & sécurité


PHP Security Consortium: PHPSecInfo

by 8 others (via)
PhpSecInfo provides an equivalent to the phpinfo() function that reports security information about the PHP environment, and offers suggestions for improvement. It is not a replacement for secure development techniques, and does not do any kind of code or app auditing, but can be a useful tool in a multilayered security approach.


Finding SQL Injection with Scrawlr - The HP Security Laboratory

by 1 other (via)
Scrawlr, developed by the HP Web Security Research Group in coordination with the MSRC, is short for SQL Injector and Crawler. Scrawlr will crawl a website while simultaneously analyzing the parameters of each individual web page for SQL Injection vulnerabilities.