|
Yasca
Yasca is an open source program which looks for security vulnerabilities, code-quality, performance, and conformance to best practices in program source code. It leverages external open source programs, such as FindBugs, PMD, JLint, JavaScript Lint, PHPLint, Cppcheck, ClamAV, Pixy, and RATS to scan specific file types, and also contains many custom scanners developed for Yasca. It is a command-line tool that generates reports in HTML, CSV, XML, MySQL, SQLite, and other formats. It is listed as an inactive project at the well-known OWASP security project, and also in a government software security tools review at the U.S Department of Homeland Security web site. Languages Scanned Yasca has at least one scanner for each of the following file types: *.NET (VB.NET, C#, ASP.NET) *ASP *C/C++ *COBOL *ColdFusion *CSS *HTML *Java *JavaScript *Perl *PHP *Python *Raw HTTP Traffic *Visual Basic Yasca 2.2 Version 2.2 was released in June 2010 and included a large number of minor updat ... [...More Info...] [...Related Items...] OR: [Wikipedia] [Google] [Baidu] |
Cppcheck
Cppcheck is a static code analysis tool for the C and C++ programming languages. It is a versatile tool that can check non-standard code. The creator and lead developer is Daniel Marjamäki. Cppcheck is free software under the GNU General Public License. Features Cppcheck supports a wide variety of static checks that may not be covered by the compiler itself. These checks are static analysis checks that can be performed at a source code level. The program is directed towards static analysis checks that are rigorous, rather than heuristic in nature. Some of the checks that are supported include: * Automatic variable checking * Bounds checking for array overruns * Classes checking (e.g. unused functions, variable initialization and memory duplication) * Usage of deprecated or superseded functions according to Open Group * Exception safety checking, for example usage of memory allocation and destructor checks * Memory leaks, e.g. due to lost scope without deallocation * Resour ... [...More Info...] [...Related Items...] OR: [Wikipedia] [Google] [Baidu] |
Cross-platform
In computing, cross-platform software (also called multi-platform software, platform-agnostic software, or platform-independent software) is computer software that is designed to work in several computing platforms. Some cross-platform software requires a separate build for each platform, but some can be directly run on any platform without special preparation, being written in an interpreted language or compiled to portable bytecode for which the interpreters or run-time packages are common or standard components of all supported platforms. For example, a cross-platform application may run on Microsoft Windows, Linux, and macOS. Cross-platform software may run on many platforms, or as few as two. Some frameworks for cross-platform development are Codename One, Kivy, Qt, Flutter, NativeScript, Xamarin, Phonegap, Ionic, and React Native. Platforms ''Platform'' can refer to the type of processor (CPU) or other hardware on which an operating system (OS) or application runs ... [...More Info...] [...Related Items...] OR: [Wikipedia] [Google] [Baidu] |
Wine (software)
Wine (formerly a recursive backronym for ''Wine Is Not an Emulator'', now just "Wine") is a free and open-source compatibility layer that aims to allow application software and computer games developed for Microsoft Windows to run on Unix-like operating systems. Wine also provides a software library, named ''Winelib'', against which developers can compile Windows applications to help port them to Unix-like systems. Wine provides its compatibility layer for Windows runtime system (also called runtime environment) which translates Windows API calls into POSIX API calls, recreating the directory structure of Windows, and providing alternative implementations of Windows system libraries, system services through wineserver and various other components (such as Internet Explorer, the Windows Registry Editor, and msiexec). Wine is predominantly written using black-box testing reverse-engineering, to avoid copyright issues. The selection of "Wine is Not an Emulator" as the n ... [...More Info...] [...Related Items...] OR: [Wikipedia] [Google] [Baidu] |
OWASP
The Open Web Application Security Project (OWASP) is an online community that produces freely-available articles, methodologies, documentation, tools, and technologies in the field of web application security. The OWASP provides free and open resources. It is led by a non-profit called The OWASP Foundation. The OWASP Top 10 - 2021 is the published result of recent research based on comprehensive data compiled from over 40 partner organizations. History Mark Curphey started OWASP on September 9, 2001. Jeff Williams served as the volunteer Chair of OWASP from late 2003 until September 2011. , Matt Konda chaired the Board. The OWASP Foundation, a 501(c)(3) non-profit organization in the US established in 2004, supports the OWASP infrastructure and projects. Since 2011, OWASP is also registered as a non-profit organization in Belgium under the name of OWASP Europe VZW. Publications and resources * OWASP Top Ten: The "Top Ten", first published in 2003, is regularly updated. It aim ... [...More Info...] [...Related Items...] OR: [Wikipedia] [Google] [Baidu] |
SQLite
SQLite (, ) is a database engine written in the C programming language. It is not a standalone app; rather, it is a library that software developers embed in their apps. As such, it belongs to the family of embedded databases. It is the most widely deployed database engine, as it is used by several of the top web browsers, operating systems, mobile phones, and other embedded systems. Many programming languages have bindings to the SQLite library. It generally follows PostgreSQL syntax, but does not enforce type checking by default. This means that one can, for example, insert a string into a column defined as an integer. History D. Richard Hipp designed SQLite in the spring of 2000 while working for General Dynamics on contract with the United States Navy. Hipp was designing software used for a damage-control system aboard guided-missile destroyers, which originally used HP-UX with an IBM Informix database back-end. SQLite began as a Tcl extension. In Augu ... [...More Info...] [...Related Items...] OR: [Wikipedia] [Google] [Baidu] |
MySQL
MySQL () is an open-source relational database management system (RDBMS). Its name is a combination of "My", the name of co-founder Michael Widenius's daughter My, and "SQL", the acronym for Structured Query Language. A relational database organizes data into one or more data tables in which data may be related to each other; these relations help structure the data. SQL is a language programmers use to create, modify and extract data from the relational database, as well as control user access to the database. In addition to relational databases and SQL, an RDBMS like MySQL works with an operating system to implement a relational database in a computer's storage system, manages users, allows for network access and facilitates testing database integrity and creation of backups. MySQL is free and open-source software under the terms of the GNU General Public License, and is also available under a variety of proprietary licenses. MySQL was owned and sponsored by the Swedish ... [...More Info...] [...Related Items...] OR: [Wikipedia] [Google] [Baidu] |
Rough Auditing Tool For Security in New Zeala ...
Rough may refer to: * Roughness (other) * Rough (golf), the area outside the fairway on a golf course Geography * Rough (facility), former gas field now gas storage facility, off the Yorkshire coast of England People * Alan Rough (born 1951), Scottish football goalkeeper * Katie Rough (2009–2017), British girl killed by a 15 year old girl * Remi Rough, English street artist * William Rough (c. 1772 – 1838), English lawyer, judge and poet Entertainment * Rough (manga) * ''Rough'' (film), a 2013 film * ''Rough'' (album), released by Tina Turner in 1978 *Rough (song), Korean song by GFriend See also * Roughs and roughing, in sports, especially in ice hockey * Roughs, another name for Afghan biscuits An Afghan is a traditional New Zealand biscuit made from flour, butter, cornflakes, sugar and cocoa powder, topped with chocolate icing and a half walnut. The recipe has a high proportion of butter, and relatively low sugar, and no leavening ... [...More Info...] [...Related Items...] OR: [Wikipedia] [Google] [Baidu] |
Pixy (Software)
A pixie (also pisky, pixy, pixi, pizkie, and piskie in Cornwall and Devon, and pigsie or puggsy in the New Forest) is a mythical creature of British folklore. Pixies are considered to be particularly concentrated in the high moorland areas around Devon and Cornwall, and in the New Forest area of Dorset and Hampshire. Akin to Anglo-Saxon elves and the Irish and Scottish Aos Sí (also spelt Aos Sidhe), pixies are believed to inhabit ancient underground ancestor sites such as stone circles, barrows, dolmens, ringforts or menhirs. In traditional regional lore, pixies are generally mischievous, short of stature and childlike; they are fond of dancing and gather outdoors in huge numbers to dance, or sometimes wrestle, through the night. Though in the modern era they are often depicted with pointed ears, a green outfit and a peaked hat, traditionally they are described as round eared, and sometimes as wearing dirty ragged bundles of rags which they happily discard for gifts of n ... [...More Info...] [...Related Items...] OR: [Wikipedia] [Google] [Baidu] |
ClamAV
Clam AntiVirus (ClamAV) is a free software, cross-platform antimalware toolkit able to detect many types of malware, including viruses. It was developed for Unix and has third party versions available for AIX, BSD, HP-UX, Linux, macOS, OpenVMS, OSF (Tru64) and Solaris. As of version 0.97.5, ClamAV builds and runs on Microsoft Windows. Both ClamAV and its updates are made available free of charge. One of its main uses is on mail servers as a server-side email virus scanner. Sourcefire, developer of intrusion detection products and the owner of Snort, announced on 17 August 2007 that it had acquired the trademarks and copyrights to ClamAV from five key developers. Upon joining Sourcefire, the ClamAV team joined the Sourcefire Vulnerability Research Team (VRT). In turn, Cisco acquired Sourcefire in 2013. The Sourcefire VRT became Cisco Talos, and ClamAV development remains there. Features ClamAV includes a command-line scanner, automatic database updater, and a scalabl ... [...More Info...] [...Related Items...] OR: [Wikipedia] [Google] [Baidu] |
Java (programming Language)
Java is a high-level, class-based, object-oriented programming language that is designed to have as few implementation dependencies as possible. It is a general-purpose programming language intended to let programmers ''write once, run anywhere'' ( WORA), meaning that compiled Java code can run on all platforms that support Java without the need to recompile. Java applications are typically compiled to bytecode that can run on any Java virtual machine (JVM) regardless of the underlying computer architecture. The syntax of Java is similar to C and C++, but has fewer low-level facilities than either of them. The Java runtime provides dynamic capabilities (such as reflection and runtime code modification) that are typically not available in traditional compiled languages. , Java was one of the most popular programming languages in use according to GitHub, particularly for client–server web applications, with a reported 9 million developers. Java was originally develo ... [...More Info...] [...Related Items...] OR: [Wikipedia] [Google] [Baidu] |
JSLint
JSLint is a static code analysis tool used in software development for checking if JavaScript source code complies with coding rules. It is provided primarily as a browser-based web application accessible through the domain jslint.com, but there are also command-line adaptations. It was created in 2002 by Douglas Crockford. License Since 2021, JSLint uses the FSF / OSI approved Unlicense license. Before that, the JSLint license was a derivative of the MIT License. The sole modification was the addition of the line "''The Software shall be used for Good, not Evil.''" According to the Free Software Foundation, this previous clause made the original license non-free. It had also prevented JSLint-related software from being hosted on Google Code and from being included in the Debian free software package repositories. Because of this restriction, according to Crockford, IBM asked Crockford in 2011 for a license to do evil, such that their customers could use it. Influence ... [...More Info...] [...Related Items...] OR: [Wikipedia] [Google] [Baidu] |
_waving.svg "Click for more on -> Java (programming Language)")
