• Post Reply
  • Bookmark Topic Watch Topic
  • New Topic

Binary Code Analyzer, Static Code Analyzer tools for Java?

 
Pankaj Patro
Ranch Hand
Posts: 35
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator


Hi,

I am looking for different Java Code Analyzer Tool (Binary Code Analysis, Static Code Analysis) for finding all kind of security issues in Java code, java lib, war, ear files,

Can smeone help me on this?

Thanks in Advance,

Pankaj
 
Tim Cooke
Sheriff
Pie
Posts: 3144
136
Clojure IntelliJ IDE Java
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
I'm assuming that you have consulted Google before arriving here? What have you found so far? What have you tried out?
 
Jeanne Boyarsky
author & internet detective
Marshal
Posts: 34965
377
Eclipse IDE Java VI Editor
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Pankaj,
There are many commercial tools for security analysis. The open source static analysis tools (PMD, FindBugs) find some things but don't have as many security rules.
 
Pankaj Patro
Ranch Hand
Posts: 35
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Tim Cooke wrote:I'm assuming that you have consulted Google before arriving here? What have you found so far? What have you tried out?



Yes Tim, i googled, but i was looking for who were having hands on with these tools and which one is best to use?
 
Jayesh A Lalwani
Rancher
Posts: 2756
32
Eclipse IDE Spring Tomcat Server
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
Ive seen a demo of fortify from HP, and it looks pretty good. It's not cheap, though
 
  • Post Reply
  • Bookmark Topic Watch Topic
  • New Topic