[WEB SECURITY] SAST for PHP and Scala

Paul Johnston paul.johnston at pentest.co.uk
Tue Aug 19 17:36:52 EDT 2014


Hi,

> If you don't mind, can I add one more question to the list? Do we know
> any tool to scan SQL or PL/SQL code to find security issues?

I don't know such a tool, but I wonder:

1) What kind of issues would you want the tool to find?

2) Would you want to scan SQL or PL/SQL standalone, or as a part of a
larger application?

3) How would you want to pass the SQL or PL/SQL to the tool?

Regards,

Paul

-- 
Pentest - The Application Security Specialists
*Shortlisted for Best Security Company, SC Magazine Europe 2014*

Pentest Limited

Paul Johnston - IT Security Consultant
Office	: +44 (0) 161 233 0100
Mobile	: +44 (0) 7817 219 072
Email policy	: http://www.pentest.co.uk/legal.shtml#emailpolicy
Registered Number:	: 4217114 England & Wales
Registered Office:	: 26a The Downs, Altrincham, Cheshire, WA14 2PU, UK
Certifications	: ISO 9001 (50155) / ISO 27001 (IS 558982) / Tiger Scheme




More information about the websecurity mailing list