defensive security

Webshell Scanner

Paste suspicious PHP or web code for static heuristic analysis. The scanner never executes submitted code.

Important This is a static heuristic scanner. It can produce false positives and false negatives. Treat high-risk findings as a reason for manual review, isolation, and backup, not as an automatic cleanup decision.

Privacy note This scanner processes pasted code in memory only. It does not execute code and does not save submitted content.