WebApp Sec mailing list archives

RE: Secure Source Code Analysis Parser/Tool

From: "Kline, Nathan C - CIEP-3" <nckline () bpa gov>
Date: Tue, 29 Jun 2004 12:51:29 -0700

I second that, great tool, and free for use.  Here is a presentation on
it from a recent government Microsoft Security Summit:
http://download.microsoft.com/download/1/c/1/1c118c2d-3dcf-497f-85ad-fc5
4f91399ac/Murray-vanGogh_SSW-2004.ppt

--Nathan


-----Original Message-----
From: Mark Curphey [mailto:mark () curphey com] 
Sent: Tuesday, June 29, 2004 9:05 AM
To: 'Stan Guzik'; webappsec () securityfocus com
Subject: RE: Secure Source Code Analysis Parser/Tool

Not open source but http://www.gotdotnet.com/team/fxcop/

-----Original Message-----
From: Stan Guzik [mailto:SGuzik () ImmediaTech com] 
Sent: Tuesday, June 29, 2004 11:05 AM
To: Stan Guzik; webappsec () securityfocus com
Subject: Secure Source Code Analysis Parser/Tool

Hello,

Does anyone of an open source secure source code analysis parser/tool?
I'm looking for a parser to run on ASP, ASP.NET, VB, and VB.NET.  If the
tool is for another language that's OK.  If you don't know of a tool any
good reference on how to write on is appreciated.

Thanks,
Stan

Current thread:

Secure Source Code Analysis Parser/Tool Stan Guzik (Jun 29)
- Re: Secure Source Code Analysis Parser/Tool Adam Shostack (Jun 29)
- Re: Secure Source Code Analysis Parser/Tool exon (Jun 29)
- RE: Secure Source Code Analysis Parser/Tool Mark Curphey (Jun 29)
- Re: Secure Source Code Analysis Parser/Tool Ron Espiritu (Jun 29)
- <Possible follow-ups>
- RE: Secure Source Code Analysis Parser/Tool Michael Howard (Jun 29)
  - Re: Secure Source Code Analysis Parser/Tool Adam Shostack (Jun 29)
- RE: Secure Source Code Analysis Parser/Tool Kline, Nathan C - CIEP-3 (Jun 29)
  - RE: The Right Approach to Web Developer Education Yaakov Yehudi (Jun 30)