Active Members Fi8sVrs Posted June 8, 2014 Active Members Report Posted June 8, 2014 Pecker ScannerA scanner named pecker, written in php,It can check dangerous functions with lexical analysis.Use:Config: $config = array( 'scandir' => dirname(__FILE__), 'extend' => array('php','inc','php5'), 'function' => array('exec','system','create_function','passthru','shell_exec','proc_open','popen','curl_exec','parse_ini_file','show_source','include','preg_replace'), );Main: $scaner = new Pecker_Scanner(); $scaner->setPath($config['scandir']); // set directory to scan $scaner->setExtend($config['extend']); $scaner->setFunction($config['function']); $scaner->run(); $result = $scaner->getReport();Result:Array( [Pecker\test\1.php] => Array ( [parser] => 1 [message] => [function] => Array ( [eval] => Array ( [0] => Array ( [line] => 23 => ( //get itgzinflate ( $str ($str1))) ) [1] => Array ( [line] => 35 [code] => ('$str = time();') ) ) [exec] => Array ( [0] => Array ( [line] => 25 [code] => ('dir') ) [1] => Array ( [line] => 36 [code] => ('dir') ) ) ) ) [Pecker\test\111.php] => Array ( [parser] => 1 [message] => [function] => Array ( ) ) [Pecker\test\3.php] => Array ( [parser] => 1 [message] => [function] => Array ( ) ))Download ZIP [b]Info[/b] Home Page: Pecker Scanner | ????? | ????? WeiBo: ???? Source: https://github.com/cfc4n/pecker Quote
