[Owasp-leaders] Automated Code Review Tools
Marco M. Morana
marco.m.morana at gmail.com
Sat Sep 26 09:46:20 EDT 2009
If you are looking for "code analysis automation tools" as static analysis
SAMATE (NIST) has several papers and methodologies to evaluate static
You can look at their tool classification that provides an overview on
scope/capabilities of different tools
Also Jim Bird has a nice blog posting about the static analysis tool
evaluation he did in 2006 for Cigital that included Fortify
Coverty and Klockwork
Hope this help
From: owasp-leaders-bounces at lists.owasp.org
[mailto:owasp-leaders-bounces at lists.owasp.org] On Behalf Of Fabio Cerullo
Sent: Saturday, September 26, 2009 5:05 AM
To: owasp-leaders at lists.owasp.org
Subject: [Owasp-leaders] Automated Code Review Tools
have you ever come across a good comparison paper between the different
"Automated Code Review Tools"?
any help is really much appreciated.
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the OWASP-Leaders