php code scanner-rips

Hi Techrunnr readers, this document deals with how to install php code scanner rips.
RIPS is an open source static code analyzing tool for automatic detection of security vulnerabilities in PHP. It’s easy to install and do the test.

Here are the features of RIPS Code scanner

  1. detect XSS, SQLi, File disclosure, LFI/RFI, RCE vulnerabilities and more
  2. 5 verbosity levels for debugging your scan results
  3. mark vulnerable lines in source code viewer
  4. highlight variables in the code viewer
  5. user-defined function code by mouse-over on detected call
  6. active jumping between function declaration and calls
  7. list of all user-defined functions (defines and calls), program entry points (user input) and scanned files (with
  8. includes) connected to the source code viewer
  9. graph visualization for files and includes as well as functions and calls
  10. create CURL exploits for detected vulnerabilities with few clicks
  11. visualization, description, example, PoC, patch and securing function list for every vulnerability
  12. 7 different syntax highlighting color schemata
  13. display scan results in form of a top-down flow or bottom-up trace
  14. the only minimum requirement is a local web server with PHP and a browser (tested with Firefox)
  15. regex search function

Follow the instructions to install RIPS.

1. Install Apache web server

apt-get install apache2 //ubuntu

yum install httpd //centos

2. Download rips


3. Move downloaded file to /var/www/html

mv /var/www/html/rips

4. Now open browser and type


You will see below output.

5. Mention your code path and start scanning

© 2018, Techrunnr. All rights reserved.

Questions Answered
Articles Written
Overall Points

Prabhin Prabharkaran

He is Technical professional. He is a person who loves to share tricks and tips on the Internet. He Posts what he does!!


Leave a Reply

Please wait...

Subscribe to our newsletter

Want to be notified when our article is published? Enter your email address and name below to be the first to know.