Chorizo! is a Next Generation Web Application Security Scanner. It acts
as a proxy between your browser and your application, recording all requests you make to your application. It
scans in the background for security issues like Cross Site Scripting (XSS), Cross Site Request Forging (CSRF),
Code Inclusion, Remote Code Execution, PHP vulnerabilities, Session injection and more.
You worked hard developing your web application - let Chorizo! do the
security work for you!
Chorizo! Intranet Edition - learn more...
More security with Chorizo! Standard:
- Scan up to 5 hosts
- detailed report analysis (all past scans, PDF export)
- Advisor explains the problem and provides PHP code examples for fixing
- scan recursive (up to depth 3)
- find more bugs with server-side PHP extension Morcilla
Register for Chorizo! Standard
Login into your account
Security Audits by SektionEins
Sometimes, automatic security scanning is not enough.
To get the best results in application security, we offer an array of Audit Services for you: Random Blackbox Inspection as well
as more intensive Audits for Blackbox and Whitebox testing. Our audit packages are delivered by our sister company SektionEins which
is specialised in Security Audits supporting applications in PHP, Java, Ruby, Perl, Flash, JavaScript, Java Applets, RIA (Adobe AIR/Flex
as well as Microsoft Silverlight) and others.
Learn more ...
What customers say
"Using Chorizo! is an easy and efficient way to find security issues in your application.
Checking common security pitfalls in PHP web applications, the Chorizo! scanner provides
an impressive and thorough new level of security for PHP developers."
Chorizo! Certified
Automatic scanning is not enough? Our consultants do Security Audits
and certify you with "Chorizo! Certified Gold" or "Chorizo! Certified Silver".
I want to know more
