Yet Another Source Code Analyzer.
It is a project of the internal static security scan tool . It extends from Yasca , which is an open source project , built for scanning security problem.
Yasca Can be used both on Windows and Linux platform.
Steps:
- Step 1: Download Yasca.
- Step 2: Modify desx.xml path in plugin.php
- Step 3: yasca ./test
- Step 4: In the browser to check the **report.html **
Make Sure You have installed PHP before use Yasca. And PHP version must be greater than 5.4 ( >=5.4 ).
Steps:
- Step 1: Download Yasca.
- Step 2: Modify desx.xml path in plugin.php
- Step 3: chmod 777 ./yasca.sh
- Step 4: sudo ./yasca.sh ./test
- Step 5: In the browser to check the **report.html **
Visit the Yasca web site for the latest news and downloads:
https://github.rtp.raleigh.ibm.com/jianzj-cn/security-scan-tool