Difference between revisions of "Kumpulan Aplikasi Pencari Vulnerabilities di Source Code"

From OnnoWiki
Jump to navigation Jump to search
 
Line 24: Line 24:
 
== Referensi ==
 
== Referensi ==
 
* http://www.tech-faq.com/how-to-find-security-vulnerabilities-in-source-code.html
 
* http://www.tech-faq.com/how-to-find-security-vulnerabilities-in-source-code.html
 +
 +
== Pranala Menarik ==
 +
* [[Beberapa Tip Hacking]]
 +
* [[Filosofy: Aturan Main Hacker]]
 +
* [[Keamanan Jaringan]]

Latest revision as of 11:54, 4 January 2011

Di bawah ini adalah kumpulan aplikasi yang digunakan untuk mencari vulnerabilities pada source code. Pastikan source code anda aman sebelum digunakan / dipublish ke internet.

Kumpulan Aplikasi Pencari Vulnerabilities di Source Code

  • Flawfinder Examines source code and reports possible security vulnerabilities
  • RATS from Secure Software Solutions Scans C, C++, PERL, PHP and Python source code for potential security vulnerabilities.
  • ITS4 from Cigital Scans source code looking for potentially vulnerable function calls and preforms source code analysis to determine the level of risk
  • PScan A limited problem scanner for C source files
  • BOON Buffer Overrun detectiON
  • MOPS MOdelchecking Programs for Security properties
  • Cqual A tool for adding type qualifiers to C
  • MC Meta-Level Compilation
  • SLAM Microsoft
  • ESC/Java2 Extended Static Checking for Java version 2
  • Splint Secure Programming Lint
  • MOPED A Model-Checker for Pushdown Systems
  • JCAVE JavaCard Applet Verification Environment
  • The Boop Toolkit Utilizes abstraction and refinement to determine the reachability of program points in a C program
  • Blast Berkeley Lazy Abstraction Software Verification Tool
  • Uno Simple tool for source code analysis
  • PMD Scans Java source code and looks for potential problems
  • C++ Test Unit testing and static analysis tool

Referensi

Pranala Menarik