|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Subject: security scanning software for source code?
From: Sanchez, Scott (Scott.Sanchez
GS.COM)Date: Wed Oct 18 2000 - 12:54:29 CDT
- Next message: Erick Arturo Perez Huemer: "Re: Need a software to copy my floppy"
- Previous message: Jonathan Rickman: "Re: Unauthorized outgoing connect caught by ZA"
- Next in thread: Erik Tayler: "Re: security scanning software for source code?"
- Reply: Erik Tayler: "Re: security scanning software for source code?"
- Reply: White Vampire: "Re: security scanning software for source code?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Hello all,
Does anyone have any suggestions on products that will review application
code (visual basic/c++, java applets and servlets, cgi's, etc.) for security
weaknesses?
I would love an engine that I can just drop my java servlets (or weblogic
code, xml, perl, css, etc.) into and it would look for things like input
fields that have missing or inadequate validation, passwords stored in the
app, etc. (I know, i'm asking for a lot).
Does anybody have thoughts or suggestions? We have decided that it is
impractical for us to write our own scanner at this point.
Thanks.
-Scott
***************************************************
The views and opinions herein are those of the author only and do
not necessarily reflect those of any other person or entity.
***************************************************
- Next message: Erick Arturo Perez Huemer: "Re: Need a software to copy my floppy"
- Previous message: Jonathan Rickman: "Re: Unauthorized outgoing connect caught by ZA"
- Next in thread: Erik Tayler: "Re: security scanning software for source code?"
- Reply: Erik Tayler: "Re: security scanning software for source code?"
- Reply: White Vampire: "Re: security scanning software for source code?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]