[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
RE: [WEB SECURITY] Open Source Code Analysis Tools
- From: "zwell.nosec" <zwell.nosec@xxxxxxxxx>
- Subject: RE: [WEB SECURITY] Open Source Code Analysis Tools
- Date: Wed, 16 Apr 2008 09:05:43 +0200
------=_NextPart_000_001E_01C89FA1.0E063CE0
Content-Type: text/plain;
charset="us-ascii"
Content-Transfer-Encoding: 7bit
There are a lot of tools for code analysis, not only java and .net, but also
asp, php, c and so on. Enjoy it :
http://www.nosec.org/web/index.php?q=codereview
_____
From: Truxaw, Matthew [mailto:mtruxaw@firstam.com]
Sent: Wednesday, April 16, 2008 12:44 AM
To: websecurity@webappsec.org
Subject: [WEB SECURITY] Open Source Code Analysis Tools
Can anyone point me in the direction of a good open source tool for
automating code analysis for security issues? In particular, I'd like one
or more tools to scan our java and .net (C#) code base.
Regards,
Matt
**********************************************************************
This message contains confidential information intended only for the use of
the addressee(s) named above and may contain information that is legally
privileged. If you are not the addressee, or the person responsible for
delivering it to the addressee, you are hereby notified that reading,
disseminating, distributing or copying this message is strictly prohibited.
If you have received this message by mistake, please immediately notify us
by replying to the message and delete the original message immediately
thereafter.
Thank you.
FADLD Tag
**********************************************************************
------=_NextPart_000_001E_01C89FA1.0E063CE0
Content-Type: text/html;
charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
<html xmlns:v=3D"urn:schemas-microsoft-com:vml" =
xmlns:o=3D"urn:schemas-microsoft-com:office:office" =
xmlns:w=3D"urn:schemas-microsoft-com:office:word" =
xmlns=3D"http://www.w3.org/TR/REC-html40";>
<head>
<meta http-equiv=3DContent-Type content=3D"text/html; =
charset=3Dus-ascii">
<meta name=3DGenerator content=3D"Microsoft Word 11 (filtered medium)">
<!--[if !mso]>
<style>
v\:* {behavior:url(#default#VML);}
o\:* {behavior:url(#default#VML);}
w\:* {behavior:url(#default#VML);}
.shape {behavior:url(#default#VML);}
</style>
<![endif]-->
<style>
<!--
/* Font Definitions */
@font-face
{font-family:SimSun;
panose-1:2 1 6 0 3 1 1 1 1 1;}
@font-face
{font-family:Tahoma;
panose-1:2 11 6 4 3 5 4 4 2 4;}
@font-face
{font-family:SimSun;
panose-1:2 1 6 0 3 1 1 1 1 1;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0cm;
margin-bottom:.0001pt;
font-size:12.0pt;
font-family:"Times New Roman";}
a:link, span.MsoHyperlink
{color:blue;
text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
{color:purple;
text-decoration:underline;}
p
{mso-margin-top-alt:auto;
margin-right:0cm;
mso-margin-bottom-alt:auto;
margin-left:0cm;
font-size:12.0pt;
font-family:"Times New Roman";}
span.EmailStyle18
{mso-style-type:personal-reply;
font-family:Arial;
color:navy;}
@page Section1
{size:595.3pt 841.9pt;
margin:72.0pt 90.0pt 72.0pt 90.0pt;}
div.Section1
{page:Section1;}
-->
</style>
<!--[if gte mso 9]><xml>
<o:shapedefaults v:ext=3D"edit" spidmax=3D"1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext=3D"edit">
<o:idmap v:ext=3D"edit" data=3D"1" />
</o:shapelayout></xml><![endif]-->
</head>
<body lang=3DZH-CN link=3Dblue vlink=3Dpurple>
<div class=3DSection1>
<p class=3DMsoNormal><font size=3D1 color=3Dnavy face=3DArial><span =
lang=3DEN-US
style=3D'font-size:9.0pt;font-family:Arial;color:navy'>There are a lot =
of tools
for code analysis, not only java and .net, but also asp, php, c and so =
on. Enjoy
it :<o:p></o:p></span></font></p>
<p class=3DMsoNormal><font size=3D1 color=3Dnavy face=3DArial><span =
lang=3DEN-US
style=3D'font-size:9.0pt;font-family:Arial;color:navy'>http://www.nosec.o=
rg/web/index.php?q=3Dcodereview<o:p></o:p></span></font></p>
<div>
<div class=3DMsoNormal align=3Dcenter style=3D'text-align:center'><font =
size=3D3
face=3D"Times New Roman"><span lang=3DEN-US style=3D'font-size:12.0pt'>
<hr size=3D2 width=3D"100%" align=3Dcenter tabindex=3D-1>
</span></font></div>
<p class=3DMsoNormal><b><font size=3D2 face=3DTahoma><span lang=3DEN-US
style=3D'font-size:10.0pt;font-family:Tahoma;font-weight:bold'>From:</spa=
n></font></b><font
size=3D2 face=3DTahoma><span lang=3DEN-US =
style=3D'font-size:10.0pt;font-family:Tahoma'>
Truxaw, Matthew [mailto:mtruxaw@firstam.com] <br>
<b><span style=3D'font-weight:bold'>Sent:</span></b> Wednesday, April =
16, 2008
12:44 AM<br>
<b><span style=3D'font-weight:bold'>To:</span></b> =
websecurity@webappsec.org<br>
<b><span style=3D'font-weight:bold'>Subject:</span></b> [WEB SECURITY] =
Open
Source Code Analysis Tools</span></font><span =
lang=3DEN-US><o:p></o:p></span></p>
</div>
<p class=3DMsoNormal><font size=3D3 face=3D"Times New Roman"><span =
lang=3DEN-US
style=3D'font-size:12.0pt'><o:p> </o:p></span></font></p>
<div>
<p class=3DMsoNormal><font size=3D2 color=3Dblue face=3DArial><span =
lang=3DEN-US
style=3D'font-size:10.0pt;font-family:Arial;color:blue'>Can anyone point =
me in
the direction of a good open source tool for automating code analysis =
for
security issues? In particular, I'd like one or more tools to scan =
our
java and .net (C#) code base. </span></font><span =
lang=3DEN-US><o:p></o:p></span></p>
</div>
<div>
<p class=3DMsoNormal><font size=3D3 face=3D"Times New Roman"><span =
lang=3DEN-US
style=3D'font-size:12.0pt'> <o:p></o:p></span></font></p>
</div>
<p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
style=3D'font-size:
10.0pt;font-family:Arial'>Regards,</span></font><span =
lang=3DEN-US><o:p></o:p></span></p>
<p class=3DMsoNormal><font size=3D3 face=3D"Times New Roman"><span =
lang=3DEN-US
style=3D'font-size:12.0pt'> <o:p></o:p></span></font></p>
<p class=3DMsoNormal><font size=3D2 face=3DArial><span lang=3DEN-US =
style=3D'font-size:
10.0pt;font-family:Arial'>Matt </span></font><span =
lang=3DEN-US><o:p></o:p></span></p>
<div>
<p class=3DMsoNormal><font size=3D3 face=3D"Times New Roman"><span =
lang=3DEN-US
style=3D'font-size:12.0pt'> <o:p></o:p></span></font></p>
</div>
<p class=3DMsoNormal><font size=3D3 face=3D"Times New Roman"><span =
lang=3DEN-US
style=3D'font-size:12.0pt'><o:p> </o:p></span></font></p>
<p><font size=3D3 face=3D"Times New Roman"><span lang=3DEN-US =
style=3D'font-size:12.0pt'>**********************************************=
************************<br>
This message contains confidential information intended only for the use =
of the
addressee(s) named above and may contain information that is legally
privileged. If you are not the addressee, or the person =
responsible for
delivering it to the addressee, you are hereby notified that reading,
disseminating, distributing or copying this message is strictly
prohibited. If you have received this message by mistake, please
immediately notify us by replying to the message and delete the original
message immediately thereafter.<o:p></o:p></span></font></p>
<p><font size=3D3 face=3D"Times New Roman"><span lang=3DEN-US =
style=3D'font-size:12.0pt'>Thank
you.<o:p></o:p></span></font></p>
<p><font size=3D1 face=3D"Times New Roman"><span lang=3DEN-US =
style=3D'font-size:7.5pt'>  =
; =
&=
nbsp; &n=
bsp; &nb=
sp; &nbs=
p;  =
; =
&=
nbsp; &n=
bsp;
FADLD Tag</span></font><span lang=3DEN-US><br>
**********************************************************************<o:=
p></o:p></span></p>
</div>
</body>
</html>
------=_NextPart_000_001E_01C89FA1.0E063CE0--
Brought to you by http://www.webappsec.org
Search this site
|