Penetration Testing mailing list archives
Re: Source code review/scanner
From: "Nikhil Wagholikar" <visitnikhil () gmail com>
Date: Sat, 25 Aug 2007 21:40:08 +0530
Hello Xelerated, You can have a look at tool called 'CodeScan' from 'codescanLABS'. CodeScan is an advanced security tool designed to check web application source code for security vulnerabilities. Trial version is available for download. More Information: http://www.codescan.com/product.html Home Information: http://www.codescan.com/ --- Nikhil Wagholikar Information Security Analyst NII Consulting Web: http://www.niiconsulting.com On 8/21/07, xelerated <xelerated () gmail com> wrote:
All, Im looking for something for another dept. to help them review both source code and web app code created by our developers. The main types being VB and ASP. Standard manual testing will still take place, but id like to get something to check the obvious things before it goes into testing. Can anyone recommend some tools for both aspects? Due to separation of duties neither I or the others in network security nor the developers will be doing the source code testing. So im trying to find something that works for those with less than optimal security or coding knowledge. Thanks for your input ------------------------------------------------------------------------ This list is sponsored by: Cenzic Need to secure your web apps NOW? Cenzic finds more, "real" vulnerabilities fast. Click to try it, buy it or download a solution FREE today! http://www.cenzic.com/downloads ------------------------------------------------------------------------
------------------------------------------------------------------------ This list is sponsored by: Cenzic Need to secure your web apps NOW? Cenzic finds more, "real" vulnerabilities fast. Click to try it, buy it or download a solution FREE today! http://www.cenzic.com/downloads ------------------------------------------------------------------------
Current thread:
- Source code review/scanner xelerated (Aug 21)
- RE: Source code review/scanner Shenk, Jerry A (Aug 21)
- RE: Source code review/scanner Erin Carroll (Aug 21)
- Re: Source code review/scanner Nikhil Wagholikar (Aug 25)
- <Possible follow-ups>
- Re: Source code review/scanner eladexposed (Aug 28)