-
PHPantom is a PHP class to monitor the dangerous functions in the code
-
It prints the code line of the called function
-
It checks if the line has an input or not (Not accurate 100%)
-
PHPantom is based on "Xdebug extension", so you need to install first ..
- If your system is linux, please follow these steps :
-
sudo apt-get install php-xdebug
-
find / -name "xdebug.so"
-
sudo nano /etc/php/8.0/mods-available/xdebug.ini
-
Update zend_extension=/your/full/path/xdebug.so
-
If you are using another OS, please visit the link:
-
Add the PHPantom.php file in the same folder of the target application
-
Then write the call code in the top of the index or main file
include("PHPantom.php");
$phpantom = new PHPantom();
-
Visit the main page to see the result on the bottom of the page
-
If you want to pass custom functions, write it like this
include("PHPantom.php");
$phpantom = new PHPantom(["system", "exec", "eval"]);