Software Security/Group 9/Code Scanners
Uit Werkplaats
< Software Security | Group 9
Summary
Download | Type | Status | Ver. | Known working in | Possibly not working in | Raw Result | Notes | |||
---|---|---|---|---|---|---|---|---|---|---|
Windows | Linux | Windows | Linux | |||||||
Pixy | [1][2] | Free | active | 3.03 | ? | Ub10.10 | ? | ? | Our attempts to run it over phpBB2 failed due to insufficient memory | |
PHP-SAT | [3] | Free | unstable | 0.1pre466 | ? | NixOS0.1, Ub10.10 | ? | ? | [4] | |
SWAAT | [5] | Free | orphaned | N/A | S2003 (bare) | ? | see notes | ? | [6] (login.php) | Requires NET Framework 1.1.4322 or lower, will fail when later versions are installed |
Yasca | [7] | Free | active | 2.21 | 7 | ? | ? | ? | [8] | We currently have unresolved problem with the phplint plugin. Group 4 has posted a fix that we haven't tried. |
RATS | [9][10] | Free | active | 2.3 | XP3, Ub10.10 | ? | S2003, 7 | ? | [11] | Compile time dependency of libexpat in *nix. Ville also provided deb-package via DropBox. Notice! Package does not include rats-php.xml. Therefore source archive rats-2.3.tar.gz is needed. |
CodeScan | [12] | Commercial | active | 1.9.0 | XP3, 7 | ? | ? | ? | [13] | |
CodeSecure | Commercial | active | 4.1.0-M3 | XP3 | ? | ? | ? | [14] | ||
Fortify | Commercial | active | 3.0.0 | XP3, 7 | ? | ? | ? | [15] |
Notes
- XP3 = Windows XP + SP3; S2003 = Windows Server 2003; Ub10.10 = Ubuntu 10.10
- green background indicates that all our prior attempts to run the program in several operating systems succeeded, while yellow means that there are failures in one or more tries. The failures might be due to various things. When we are able to identify them, we document them in the notes section.