Analysis Profiles

RIPS analyzes the data flow through your code out of the box without the need for further configuration. Its analysis includes all custom user-defined functions, classes, and methods, as well as all relevant PHP built-in functions and features.

With Analysis Profiles, additional settings for the RIPS engine can be added in order to fine-tune the security analysis specifically to your application. The profiles can be accessed by clicking on the settings icon on the top right menu (see image below). 

Global profiles can be used for all applications and can be selected when starting a new scan or with several of our integration plugins.

Default profiles are used by default when no other selection has been made. A global default profile will be used for every application and application-wide default profiles only for scans of this particular application. There can only be one default profile globally and per application.

The following analysis refinements are available: