OWASP Code Crawler v2.7 released

by

In: Code Auditing , Code Crawler , Configurations checks , Owasp

22 April 2010

A tool aimed at assisting code review practitioners. It is a static code review tool which searches for key topics within .NET and J2EE/JAVA code. The aim of the tool is to accompany the OWASP Code review Guide and to implement a total code review solution for "everyone".

JPEG - 5.3 kb

Version 2.7

  • Removed unused References and Objects
  • Reduced Noise (.NET Files)
  • Replaced old scanning engine with new multi step engine (Only Stage 1 is active in this release for Single File Scan Only)
  • New DarkMoon IDE Theme
  • Single Scan Window : Mark a Threat as False positive (remove Highlighting, remove threat from ThreatCollection object)
  • Bug Fixing

More information: here

Post scriptum

Compliance Mandates

  • Code Auditing :

    PCI/DSS 6.3.6, 6.3.7, 6.6, SOX A12.8, GLBA 16CFR Part 314.4(b) and (2);FISMA RA-5, SC-18, SA-11 SI-2, and ISO 27001/27002 (12.4.1, 12.4.3, 12.5)


Related Articles

Code Auditing
Code Crawler
Configurations checks
Owasp