> -----Original Message----- > From: Emil Edeholt [mailto:[EMAIL PROTECTED] > Sent: Monday, February 11, 2008 5:17 AM > To: php-general@lists.php.net > Subject: [PHP] Security scanner > > I've been trying Nessus to search for sql injections and > other security > issues. I'm quite sure Nessus is missing a lot of possible sql > injections (and maybe other stuff too). Are there any other > tools that I > can install on my server that searches a bit more carefully? > What do you use and why? > > Any other good security tools for LAMP that one should know of?
I'll just use this opportunity to plug my company: http://www.lockdownnetworks.com We have several auditing engines and have a team in of people that write various plugins. Currently we have upwards of 13,000 tests (keep in mind it's not 1:1, a single test might check for multiple vulnerabilities). It's not a free product, but we have partners that offer auditing services, so you don't have to plunk down thousands to reap the benefits. Contact us if you're interested in exploring this further. http://www.lockdownnetworks.com/aboutus/contact.php Daevid Founding Employee #4 Sr. Software Architect -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
