Re: Source code review/scanner

["Nikhil Wagholikar" <visitnikhil () gmail com>]

Hello Xelerated,

You can have a look at tool called 'CodeScan' from 'codescanLABS'.
CodeScan is an advanced security tool designed to check web
application source code for security vulnerabilities.

Trial version is available for download.

More Information: http://www.codescan.com/product.html
Home Information: http://www.codescan.com/

---
Nikhil Wagholikar
Information Security Analyst
NII Consulting
Web: http://www.niiconsulting.com



On 8/21/07, xelerated <xelerated () gmail com> wrote:
> All,
> Im looking for something for another dept. to help them review both
> source code and web app code created by our developers. The main types
> being VB and ASP.
>
> Standard manual testing will still take place, but id like to get
> something to check the obvious things before it goes into testing.
> Can anyone recommend some tools for both aspects?
> Due to separation of duties neither I or the others in network
> security nor the developers
> will be doing the source code testing. So im trying to find something
> that works for those
> with less than optimal security or coding knowledge.
>
> Thanks for your input
>
> ------------------------------------------------------------------------
> This list is sponsored by: Cenzic
>
> Need to secure your web apps NOW?
> Cenzic finds more, "real" vulnerabilities fast.
> Click to try it, buy it or download a solution FREE today!
>
> http://www.cenzic.com/downloads
> ------------------------------------------------------------------------

------------------------------------------------------------------------
This list is sponsored by: Cenzic

Need to secure your web apps NOW?
Cenzic finds more, "real" vulnerabilities fast.
Click to try it, buy it or download a solution FREE today!

http://www.cenzic.com/downloads
------------------------------------------------------------------------