[Owasp-codereview] Web Application Source Code Auditing Tool

Nish Bhalla nish at securitycompass.com
Wed Sep 6 15:35:02 EDT 2006


We at Security Compass would like to announce our free, static web
application source code analysis tool called the Securitycompass Web
Application Analysis Tool or SWAAT. 

Currently in its beta release, this .Net command-line tool searches through
source code for potential vulnerabilities in the following languages:

*	Java and JSP
*	ASP.Net
*	PHP

Using xml-based signature files, it searches for common functions and
expression which may lead to exploits. We believe that this tool will help
you in your ongoing source code analysis efforts.

Please visit http://www.securitycompass.com/ to download SWAAT. Future
releases of SWAAT would include plugins into popular IDEs such as Visual
Studio .NET and Eclipse.

As the tool is still new, we appreciate any comments you have in
functionality and desired features. Please send any feedback to
swaat at securitycompass.com. Thank you for your interest and we hope you are
able to benefit from this new tool!

Kind regards,

Nish.
Nishchal Bhalla
Founder, Security Compass
nish at securitycompass.com
Phone: 647.722.4883/201.390.9198
Mobile: 732.614.1020
http://www.securitycompass.com 




More information about the Owasp-codereview mailing list