Secure Coding mailing list archives

Previous By Date Next
Previous By Thread Next

Insecure Java Code Snippets

From: livshits at microsoft.com (Ben Livshits)
Date: Wed, 6 May 2009 15:41:37 -0700
See here:

http://suif.stanford.edu/~livshits/work/securibench-micro/
-Ben

From: sc-l-bounces at securecoding.org [mailto:sc-l-bounces at securecoding.org] On Behalf Of Goertzel, Karen [USA]
Sent: Wednesday, May 06, 2009 12:40 PM
To: Brad Andrews; sc-l at securecoding.org
Subject: Re: [SC-L] Insecure Java Code Snippets


The NIST SAMATE Reference Dataset has mainly C code in it, but there is also Java, C++, and PHP. There's a search 
function that allows you to search by programming language to find what you want.

http://samate.nist.gov/SRD/

--
Karen Mercedes Goertzel, CISSP
Booz Allen Hamilton
703.698.7454
goertzel_karen at bah.com




-----Original Message-----
From: sc-l-bounces at securecoding.org on behalf of Brad Andrews
Sent: Wed 06-May-09 13:41
To: sc-l at securecoding.org
Subject: [SC-L] Insecure Java Code Snippets



Does anyone know of a source of insecure Java snippets?  I would like
to get some for a monthly meeting of leading technical people.  My
idea was to have a "find the bug" like the old C-Lint ads.

Does anyone know of a source of something like this.

Brad
_______________________________________________
Secure Coding mailing list (SC-L) SC-L at securecoding.org
List information, subscriptions, etc - http://krvw.com/mailman/listinfo/sc-l
List charter available at - http://www.securecoding.org/list/charter.php
SC-L is hosted and moderated by KRvW Associates, LLC (http://www.KRvW.com)
as a free, non-commercial service to the software security community.
_______________________________________________
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://krvw.com/pipermail/sc-l/attachments/20090506/7eb3e075/attachment.html
Previous By Date Next
Previous By Thread Next

Current thread: