They offer the largest set of language scanners that I know of out of the bunch. Veracode’s suite of tools can be deployed at several different levels through a software dev cycle depending on your needs.Īnother code development solution I would look at is Checkmarx Static and Source Code Analysis tools. You could also look at Veracode’s Application and Vulnerability Scanner Tools. But if you’re not up on this kind of stuff, it’s probably worth paying for the “commercial” version of the product.Īs part of Rapid7’s commercial solutions that might want to also look at AppSpider if you need to meet compliancy verification. It comes in several different flavors, including a community versions. It’s a penetration testings platform that does a good job of letting you know if you have a problem. There are several different tools that you’ll want to look at deepening on your needs and budget.Ī tool I’ve used for doing penetration testing (that will look for things like DLL injection attacks) is Metasploit Toolkit. Having done software development at an enterprise level, I’m always looking for tools that help my team build better code that’s as secure as possible.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |