Security in applications and security in web applications has come into prominence. One way to enhance security is by reviewing the code with a security auditing tool, which is a new open source tool to do static analysis of php code for security exploits.

Download the Spike PHP Security Audit Tool here.

Howto use the Spike PHP Security Audit Tool

Unzip and install

unzip spike_phpSecAudit.zip

Execute the run.php, passing the file name or directory to audit. Note that the --src option is mandatory.

php /path/to/spike_phpSecAudit/run.php --src test_file.php

or

php /path/to/spike_phpSecAudit/run.php --src dir_name

Get Help

php run.php --help