From: Juan Rodriguez Monti on
Hi people,
I would like to know if there´s some App that run automatic test
against a PHP Application to detect security issues, potential bugs
and so on.

I know this kind of applications exists for other fields of IT, but I
don´t know if there are some application or tests to run against a PHP
App. Might be some security suite or tests written in Python or Perl,
I don´t know, but I guess you might know.

In this case, I just finished the development of an application
developed in PHP with XHTML and that works with Sqlite. And I would
like to include some security tests before it goes online. It´s not
actually working in production environment, but it´s ready to use it.

Thanks a lot.
From: "Bob McConnell" on
From: Juan Rodriguez Monti

> I would like to know if there´s some App that run automatic test
> against a PHP Application to detect security issues, potential bugs
> and so on.
>
> I know this kind of applications exists for other fields of IT, but I
> don´t know if there are some application or tests to run against a PHP
> App. Might be some security suite or tests written in Python or Perl,
> I don´t know, but I guess you might know.
>
> In this case, I just finished the development of an application
> developed in PHP with XHTML and that works with Sqlite. And I would
> like to include some security tests before it goes online. It´s not
> actually working in production environment, but it´s ready to use it.

You probably want to start by looking at the OWASP project.

<http://www.owasp.org/index.php/Category:OWASP_Project>

Bob McConnell