Awesome
this script will scan your code
the script can find
- check_file_upload issues
- host_header_injection
- SQl injection
- insecure deserialization
- open_redirect
- SSRF
- XSS
- LFI
- command_injection
features
- fast
- simple report
usage:
python code.py file.php -this will scan one file
python code.py -this will scan full folder (.)
python code.py path -will scan all subfolders and files
output
<img src=img/banner.PNG >
<img src=./img/recap.PNG> <img src=img/php_server.PNG >