We at Security Compass would like to announce our free, web
application
source code analysis tool called the Securitycompass Web
Application
Analysis Tool or SWAAT.
Currently in its beta release, this .Net command-line tool
searches through
source code for potential vulnerabilities in the following
languages:
* Java and JSP
* ASP.Net
* PHP
Using xml-based signature files, it searches for common
functions and
expression which may lead to exploits. We believe that this
tool will help
you in your ongoing source code analysis efforts.
Please visit http://www.securityco
mpass.com/ to download SWAAT. Future
releases of SWAAT would include plugins into popular IDEs
such as Visual
Studio .NET and Eclipse.
As the tool is still new, we appreciate any comments you
have in
functionality and desired features. Please send any feedback
to
swaat securitycompass.com. Thank you for your interest and
we hope you are
able to benefit from this new tool!
Kind regards,
Nish.
Nishchal Bhalla
Founder, Security Compass
nishsecuritycompass.com
Phone: 647.722.4883/201.390.9198
http://www.securitycom
pass.com
------------------------------------------------------------
-------------
Sponsored by: Watchfire
As web applications become increasingly complex, tremendous
amounts of
sensitive data - personal, medical and financial - are
exchanged, and
stored. Consumers expect and demand security for this
information. This
whitepaper examines a few vulnerability detection methods -
specifically
comparing and contrasting manual penetration testing with
automated
scanning tools. Download "Automated Scanning or Manual
Penetration
Testing?" today!
https://www.watchfire.com/securearea/whi
tepapers.aspx?id=701500000008Vmm
------------------------------------------------------------
--------------
|