Polyscripting

Stop code injection by applying MTD to the programming language.

How it Works

Polyscripting changes the grammar of a language by scrambling the keywords used during lexical analysis. By recompiling the interpreter after replacing the original keywords with randomly generated strings, the new randomized grammar will be the only one recognized by the polyscripted language. If you think about it, the keywords we use are arbitrary. Replacing 'echo' with 'foobar' does not change the function of that command, it just changes the way the language recognizes it.


Next, before your website's code is deployed, it is transformed to match the unique scramble of the polyscripted version that your server now uses. Your website will only execute the code that is of the same scramble as the interpreter. Any injected code will not be recognized and will result in a syntax error.
Some stuff

Patch on your own time

Polyscripting stops attacks rather than relying on patches that often come too late. The project is entirely open source and free under an MIT license.

Read Blog

Still a threat

PHP code injection attacks are happening at a wide scale. From surveillance cameras to WordPress, hackers are taking advantage of programming language's vulnerabilities. Polyscripting stops the attack vector, regardless of the vulnerabilities that let it in.

Find us at WordCamp
Some stuff

Get Started with Polyscripting

Contribute to the exciting open source project.

Git Repo

Sign up for our newsletter!