Reputation: 891
Static / Dynamic source code analysis
I took a class named "Secure Code", and in our next assignment we are supposed to do static / dynamic analysis of some C files and of a JavaEE Web Project.
I checked out "Source Monitor" and ran it on the C files, but (unless I didn't get how to use it!) it doesn't seem to do what I'm looking for.
Considering the topic, I'd be interested in knowing if there are tools for detecting "insecure" code, i.e. code that is potentially attackable through buffer overflows, SQL-Injections, XSS ... So I'd like it to point out which functions should be "upgraded" (e.g. fgets instead of gets, or a PreparedStatement instead of a normal SQL statement)
Note: I'd prefer open source softwares, possibly for Windows (I have Ubuntu on a VM but I am not really good with it... I generally spend more time finding out how to configure the tools than running them).
Thank you for your tips!
Upvotes: 0
Views: 376
Answers (2)
Reputation: 80276
Frama-C's value analysis is open-source, available pre-compiled for Windows, and was used to find such security bugs as this one in the QuickLZ C library or this one in Polar SSL.
This said, you may find that it is a lot to get used to for just a school assignment, and then again, are you actually expected to find security bugs in a school assignment?
Upvotes: 1
Reputation: 527
For the JavaEE Web Project use Persistence API, and you can use non-SQL statements, where hacking is theoretically impossible! The best open source one is the Hibernate. It's easy to use and very flexible.
Upvotes: 0
Related Questions
- Dynamic code analysis for C++
- How to build a static code analysis tool?
- Integrating static analysis tools with each other?
- detecting vulnerabilities in web applications and desktop applications
- static and dynamic code analysis
- Static code analyzers for C
- Open Source Static Code Analysis Models
- Binary Analysis Research Tools
- What are resources for building a static analyzer for C in C?
- Static source code analysis with LLVM