Penetration Testing mailing list archives

Re: Source Code Audit Tool for Linux

From: Dedi Dwianto <dedi.dwianto () pacomnet com>
Date: Tue, 25 Nov 2008 12:55:40 +0700

Dear Miguel,

You can use flawfinder
http://www.dwheeler.com/flawfinder/

Regards,

Luís Miguel Silva wrote:

Hello everyone,
I was wondering if anybody could point me to a source code audit toolfor Linux.
I want to audit some C/C++ code and would like to know if there is anymagical tool that will do "run time analysis", test forrace conditions, format strings, sql injection, protocol tests [ie:define part of the protocol and let the audit tool try and break theapplication], etc etc etc.
Does such a magical tool exist? :o)

Thanks in advance,



--
Dedi Dwianto

PT Pacific Communication Networks
Graha Aktiva 3rd Fl
Jl.HR Rasuna Said Blok X-1 Kav 3
Jakarta Selatan 12950
Tel.  021-5292-0138
Fax. 021-5292-0139
OpenPGP Key ID :0x0C7A6E53
----------------------------------------------------------------------------
DISCLAIMER:
The information contained in this communication is intended solely for the
use of the individual or entity to whom it is addressed and others
authorized to receive it. It may contain confidential or legally privileged
information. If you are not the intended recipient you are hereby notified
that any disclosure, copying, distribution or taking any action in reliance
on the contents of this information is strictly prohibited and may be
unlawful. If you have received this communication in error, please notify us
immediately by responding to this email and then delete it from your system.
PT Pacomnet is either liable for the proper and complete transmission of the
information contained in this communication nor for any delay in its
receipt.
----------------------------------------------------------------------------


------------------------------------------------------------------------
This list is sponsored by: Cenzic

Security Trends Report from Cenzic
Stay Ahead of the Hacker Curve!
Get the latest Q2 2008 Trends Report now

www.cenzic.com/landing/trends-report
------------------------------------------------------------------------

Current thread:

Source Code Audit Tool for Linux Luís Miguel Silva (Nov 24)
- Re: Source Code Audit Tool for Linux Serg B (Nov 24)
- Re: Source Code Audit Tool for Linux Dedi Dwianto (Nov 24)
- Re: Source Code Audit Tool for Linux love.wadhwa () naukri com (Nov 24)