A scanner named pecker, written in php,It can check dangerous functions with lexical analysis.
Clone or download
cfc4n fix bug
fix notice bug
Latest commit 36452a0 May 15, 2015
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
Pecker fix bug May 15, 2015
PeckerLite fix bug May 15, 2015
test typos and Complex (curly) syntax fixed May 27, 2014
.gitignore add ignore file Sep 18, 2013
CHANGES.cn typos Mar 6, 2014
LICENSE Initial commit Sep 12, 2013
README.md Update README.md Nov 14, 2013
index.php fix bugs Mar 3, 2014
template.html update Mar 4, 2014

README.md

Pecker Scanner

A scanner named pecker, written in php,It can check dangerous functions with lexical analysis.

Use:

Config:

    $config = array(
        'scandir' => dirname(__FILE__),
        'extend' => array('php','inc','php5'),
        'function' => array('exec','system','create_function','passthru','shell_exec','proc_open','popen','curl_exec','parse_ini_file','show_source','include','preg_replace'),
    );

Main:

    $scaner = new Pecker_Scanner();
    $scaner->setPath($config['scandir']);    // set directory to scan
    $scaner->setExtend($config['extend']);
    $scaner->setFunction($config['function']);
    $scaner->run();
    $result = $scaner->getReport();

Result:

Array
(
    [Pecker\test\1.php] => Array
        (
            [parser] => 1
            [message] => 
            [function] => Array
                (
                    [eval] => Array
                        (
                            [0] => Array
                                (
                                    [line] => 23
                                    [code] => (       //get it
gzinflate    ( $str   ($str1)))
                                )

                            [1] => Array
                                (
                                    [line] => 35
                                    [code] => ('$str = time();')
                                )

                        )

                    [exec] => Array
                        (
                            [0] => Array
                                (
                                    [line] => 25
                                    [code] => ('dir')
                                )

                            [1] => Array
                                (
                                    [line] => 36
                                    [code] => ('dir')
                                )

                        )

                )

        )

    [Pecker\test\111.php] => Array
        (
            [parser] => 1
            [message] => 
            [function] => Array
                (
                )

        )

    [Pecker\test\3.php] => Array
        (
            [parser] => 1
            [message] => 
            [function] => Array
                (
                )

        )

)

Info

Reference

Other