ColdFusion Server Security Scanner
By Pete Freitag
My company Foundeo Inc. released a new free web service today called HackMyCF that allows you to scan your ColdFusion server to detect the absence of recent ColdFusion security hotfixes as well as other security problems.
The site generates an email report detailing what security issues were found, here's an example:
I would love to hear your feedback!
BTW, we now have a CFML Code Security Scanner called Fixinator!
ColdFusion Server Security Scanner was first published on October 21, 2009.
If you like reading about coldfusion, security, hotfixes, or scanner then you might also like:
- Determining Which Cumulative Hotfixes are Installed on ColdFusion
- You May Need to Reapply CF Security Hotfix CVE-2009-1877
- Speaking at ColdFusion Summit Online Next Week
- OpenSSL and ColdFusion / Lucee / Tomcat
The Fixinator Code Security Scanner for ColdFusion & CFML is an easy to use security tool that every CF developer can use. It can also easily integrate into CI for automatic scanning on every commit.