WebApp Sec mailing list archives
RE: code analysis for c#?
From: "Cassidy, Thomas" <Thomas.Cassidy () thomson com>
Date: Sat, 28 Feb 2004 08:33:51 -0500
Sorry, try this http://www.ssw.com.au/ssw/codeauditor/default.aspx Tom -----Original Message----- From: Mark Curphey [mailto:mark () curphey com] Sent: Saturday, February 28, 2004 7:55 AM To: Cassidy, Thomas Subject: RE: code analysis for c#? Tom This is a broken link. Can you resend thanks. -----Original Message----- From: Cassidy, Thomas [mailto:Thomas.Cassidy () thomson com] Sent: Friday, February 27, 2004 3:01 AM To: Patrick () curioustechnology com; Mads Rasmussen; webappsec () securityfocus com Subject: RE: code analysis for c#? One of the drawbacks to FxCop is that it will not let you look at code inside functions, i.e., you can only apply it's rules to globals and function declarations. We are investigating a tool named Code Auditor from SSW (www.ssw.com) that allows you to build your code analysis rules using regular expressions. Tom -----Original Message----- From: patrick [mailto:patrick () curioustechnology com] Sent: Thursday, February 26, 2004 1:09 PM To: 'Mads Rasmussen'; webappsec () securityfocus com Subject: RE: code analysis for c#? You might check out FxCop: http://www.gotdotnet.com/team/fxcop/ It's referenced in "Writing Secure .Net Code" -Patrick -----Original Message----- From: Mads Rasmussen [mailto:mads () opencs com br] Sent: Wednesday, February 25, 2004 8:25 PM To: webappsec () securityfocus com Subject: code analysis for c#? -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi there, I wonder if someone has experience with code analysis tools for c#? There seems to be a few doubtful tools, all (to my knowledge) comercial. Regards, Mads Rasmussen Open Communications Security -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (MingW32) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFAPXUhmbndit7HnQwRApKzAKCEbNPPO/Hw3SIDG3ejGBybh9HDNgCgxvVT 3jfWLNton7ruQNHhhWR7pJc= =MfZu -----END PGP SIGNATURE-----
Current thread:
- code analysis for c#? Mads Rasmussen (Feb 26)
- RE: code analysis for c#? Arjun Pednekar (Feb 26)
- RE: code analysis for c#? patrick (Feb 26)
- <Possible follow-ups>
- Re: code analysis for c#? Larry Guger (Feb 26)
- Re: code analysis for c#? Mads Rasmussen (Feb 28)
- RE: code analysis for c#? Cassidy, Thomas (Feb 28)