The good news is that I have rewritten RIPS completely during the past 6 month during my final master thesis at the Ruhr-University Bochum. RIPS 1.0 now uses Abstract Syntax Trees, Control Flow Graphs, and Context-Sensitive String Analysis doing it the academic way ;). The result looks very promising, but its worthless to share any results/numbers without sharing the tool. It is still under development and a release date is unknown, but already in its current state it is way better than RIPS 0.5. In the end, full OOP support is planned. Any updates will be released here or via twitter.
The project continues … =)
It’s disappointing to not see a slew of positive comments/feedback on this post. Perhaps many people are just lurking, and watching. RIPS is a fantastic tool, thank you for your monumental efforts on this. Can’t wait to download and use v1.0
Can’t wait to see the new version of RIPS 🙂 I hope it won’t be too much longer!
I am eagerly awaiting to see what you have done with it, it sounds very promising and I look forward to using it. 🙂
Looking forward to updates. Enjoyed the academic-style article. Please let the community know how we can help.
I am really in love with this tool,if there are any possibilities ,i wanna be a volunteer in developing any modules or add-ons,anything.Thanks ,awesome work.
are there any news regarding release date of RIPS 1.0? I read your papers on PHP analysis and am very interested in exploring the tool that uses taint and AST as internal representation for PHP security analysis. Hope RIPS 1.0 will be released soon. Thanks!
BUMP BUMP BUMP!
The new version will be available as a commercial product at https://www.ripstech.com