php vulnerability hunter v-1.3.87.0 released : an advanced automated whitebox fuzz testing tool.

Changelog v-1.3.87.0 :

  • Several improvements to SQL injection scanning
  • Added static analysis based vulnerability detection
  • Multiple static analysis improvements
  • Updated launcher
  • Optimized code coverage memory usage
  • Several improvements and fixes to code coverage
  • Several lexer fixes and optimizations
  • Improved spidering
  • Overhauled hooking
  • Several CLI enhancements
  • Misc error handling fixes
  • Improved arbitrary upload scan
  • Command scan now uses probe exe rather than calc, no longer blocking responses
  • Added input map and code coverage views to report viewer
  • Added annotation report
  • Added code coverage message
  • Added plugin config files
  • Added new fuzz strings to command injection plugin
  • Added console logging
  • Added automatic repair
  • Added unit tests
  • Added integration tests
  • Added code coverage commenting
  • Fixed variable discovery infinite loop bug
  • Fixed several crashing bugs
  • Fixed file deletion false positives
  • Fixed multiple local file inclusion scan bugs
  • Fixed arbitrary PHP execution scan bug
  • Fixed bug that caused phpb files to be scanned on windows 7 machines
  • Fixed hooking include bug
  • Fixed race condition in init

PHPVHReportViewer-1

PHP Vulnerability Hunter is an advanced automated whitebox fuzz testing tool capable of triggering a wide range of exploitable faults in PHP web applications. Minimal configuration is necessary to begin a scan; PHP Vulnerability Hunter doesn’t even need a user specified starting URI.

Download : PhpVH1.3.87.0.zip (578 KB)
Find Other Version |
Resources : http://code.google.com/p/php-vulnerability-hunter/