Code Review
See: https://pentesterlab.com/exercises/codereview/course
Last updated
Was this helpful?
See: https://pentesterlab.com/exercises/codereview/course
Last updated
Was this helpful?
This is probably the fastest way to find low-hanging fruits; you just try to find patterns of known vulnerabilities. For example, you can use grep
to find calls to the PHP system
function:
You can find a list of regular expressions to try on your code base in the GRaudit project ().
You can use the tool cloc
() to get a better idea of the size of the application: