Free spike php security audit tool software for linux

Spike PHP Security Audit Tool project is a tool that performs a static analysis of PHP code for security exploits.
Usage:
To install, unzip Spike phpSecAudit package.
> unzip spike_phpSecAudit.zip
Change directory to your php repository.
> cd /path/to/code/to/audit
Execute the run.php, passing the file name or directory to audit.
> php /path/to/spike_phpSecAudit/run.php test_file.php
or
> php /path/to/spike_phpSecAudit/run.php dir_name
Enhancements:
- Modified to be PHP 4 friendly.
- A few functions have been added to the knowledge base: extract, shell_exec, pcntl_exec, and exec.
- The organization of the knowledge base file (vuln_db.xml) has been slightly improved.
- The _getAllPhpFiles function may miss a few (unverified).
- The tokenizer needs to be able to differentiate between a native function call and class method call of the same name, i.e. mail() and $class->mail().

Network Security Analysis Tool is a fast, stable bulk security scanner designed to audit remote network services and check for versions, security problems, gather information about the servers and the machine, and much more.

A manpage providing extensive information on NSAT has been included in the distribution. It is available after a make install, or just by typing man doc/nsat.8 from this dir. It is suggested that you inform yourself at least about the -v (scan verbosity) option and edit the configuration file. To learn about changes in this version, please consult doc/CHANGES.

New to this version is support for distributed scanning. The manpage describes how to do a distributed scan. Note that distributed scanning in this version is just a preliminary, proof-of-concept, implementation with no guarantees for its security, reliability, or performance.

Check for updated vulnerability lists, config files, etc. from
http://nsat.sourceforge.net

Currently, these are lists of vulnerabilities:

nsat.cgi (CGI scripts)
nsat.conf (configuration)
src/mod/snmp.h (SNMP community names)

Email Security through Procmail (the Procmail Sanitizer) provides methods to sanitize email, removing obvious exploit attempts and disabling the channels through which exploits are delivered.
Email Security through Procmail also provides facilities for detecting and blocking Trojan Horse exploits and worms.
Enhancements:
- This release added default poisoning of the application/x-msdownload MIME type in response to a new worm.
- Full MIME-type poisoning support will be available shortly.
- This release was accelerated for security reasons.

Spike PHPCoverage is an open-source tool for measuring and reporting code coverage provided by the test suite of a PHP application. The project can instrument and record the line coverage information for any PHP script at runtime.

Spike PHPCoverage also provides an extensible reporting mechanism with a standard HTML report implemented out of the box. The default report displays the summary information about the code coverage for an application and also shows the detailed information about a file including which lines were actually executed and with what frequency. It is possible to specify the directories and files that should be included and/or excluded from a coverage measurement.

Spike PHPCoverage works on PHP 5.0 and newer and uses Xdebug Extension for gathering the coverage data.

PHP EMS Tools project is a software for volunteer and small paid emergency medical services (EMS) organizations that provides crew scheduling, roster maintenance and printing, rig checks, maintenance reports, and other facilities in an easy-to-use Web-based package.

PHP EMS Tool is a software package for Emergency Medical Services (EMS) agencies. It allows you to maintain a monthly crew schedule, roster, record of apparatus checks, address book, count your members monthly hours, and more. It is designed to be installed on a server on the local network at your headquarters. It *can* be installed on an internet-based host, but this is not suggested, as security is very lax in the current version - it is designed to stop members from casually doing things they shouldnt, not to protect your server from the dangers of the Internet.

The current version incorporates a feature to allow the schedule, roster, and hours count to be visible from the Internet, when configured properly.

PHP EMS Tools is totally free, and open source. It is programmed in the PHP language, which most web servers support. To run PHP EMS Tools, you will need a web server (Apache recommended), the MySQL database server, PHP, and a few other pieces of software. PHP EMS Tools *should* run under any operating system that supports these packages, but is designed to be run under Linux (which is also 100% free and open source). To install PHP EMS Tools, you will need root access to the server, or will need to get the systems administrator to create a database and users for you.

Security Officers Best Friend (SOBF Tool) is an Information Security Risk Analysis and Management tool. It is the reference implementation of the SOMAP.org Guide and follows the risk analysis workflow as described in the Guide.

The SOBF Tool is currently in development and there are public preview downloads from time to time.

The SOBF tool makes heavy use of the structures and references from the Repository and features a layer with personalized data ontop the theoretical layer provided by the Repository. The SOBF tool links theoretical informations with a concrete inventory to help the security officer in analyzing and managing his or her assets.

With the data and calculations from the SOBF Tool a security officer can generate reports about situations, gaps, protection profiles and the state of an environment.

PHP StatIt keeps track of visitor counts and other visitor information such as system, browser, referral domains, screen resolution, color, etc.

PHP StatIt script features a Web-based statistics page and statistics available in three languages. Installation and configuration are simple.