Project Summary
Cake Fuzzer is a project that is meant to help automatically and continuously discover vulnerabilities in web applications created based on specific frameworks with minimal false positives. Currently, our focus is on supporting the Cake PHP framework, but soon, it will also be available to other web application frameworks.
Cake Fuzzer is based on the concept of Interactive Application Security Testing (IAST). Our approach achieves the following objectives:
- automated vulnerability discovery for CakePHP-based applications;
- elimination of application-specific knowledge or pre-configuration requirements;
- minimal or zero false positives in the results;
- a user-friendly scanner that requires only basic security knowledge.
In a Nutshell, CakeFuzzer...
- ...
- ...
- ...
-
...
took an estimated 2 years of effort (COCOMO model)
starting with its first commit in March, 2023
ending with its most recent commit 3 months ago
Quick Reference
GNU Affero General Public License v3.0 or later
Permitted
Commercial Use
Modify
Distribute
Place Warranty
Forbidden
Sub-License
Hold Liable
Required
Disclose Source
Include Copyright
State Changes
Include License
Include Install Instructions
These details are provided for information only. No information here is legal advice and should not be used as such.
This Project has No vulnerabilities Reported Against it
Did You Know...
-
...
65% of companies leverage OSS to speed application development in 2016
-
...
anyone with an Open Hub account can update a project's tags
-
...
nearly 1 in 3 companies have no process for identifying, tracking, or remediating known open source vulnerabilities
-
...
learn about Open Hub updates and features on the Open Hub blog
30 Day SummarySep 21 2025 — Oct 21 2025
|
12 Month SummaryOct 21 2024 — Oct 21 2025
|
