I said:
>> My flawfinder home page at http://www.dwheeler.com/flawfinder
>> links to a number of tools & papers for static source code
>> analysis to find security flaws.
Ashish Popli said:
> A good introductory article on static analysis of source code for
> analyzing security issues can be found at
> www.cigital.com/papers/download/bsi5-static.pdf
Agree. That paper is already in the reference list at
"http://www.dwheeler.com/flawfinder".
I said:
>> My flawfinder home page at http://www.dwheeler.com/flawfinder
>> links to a number of tools & papers for static source code
>> analysis to find security flaws.
Ashish Popli said:
> A good introductory article on static analysis of source code for
> analyzing security issues can be found at
> www.cigital.com/papers/download/bsi5-static.pdf
Agree. That paper is already in the reference list at
"http://www.dwheeler.com/flawfinder".
--- David A. Wheeler
[ reply ]