logo       
Google Custom Search
    AddThis Social Bookmark Button
<prev   next>
-->

Taxonomy of Coding Errors: msg#00016

Subject: Taxonomy of Coding Errors 
Hi guys,

While working on the workshop (the audit thingy) I've found an interesting
website that describes different types of security bugs, it's available here:
http://vulncat.fortifysoftware.com/index.html

One interesting thing it that it also includes code snippets and they have
also made a benchmark available for source code analyzers. They have
applied this benchmark to Flawfinder, RATS, PREfast, and CCA. Results
(and source code used with example of vulnerable applications) are available
at 
http://vulncat.fortifysoftware.com/benchmark/index.html

I think it will be useful to have as a reference. Regards

Javier

Attachment: signature.asc
Description: Digital signature

_______________________________________________
Debian-audit mailing list
Debian-audit@xxxxxxxxxxxxx
http://shellcode.org/mailman/listinfo/debian-audit
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Paper for the "Weeding out security bugs" Debconf6 workshop, Chris Palmer
Next by Date:  Re: Paper for the "Weeding out security bugs" Debconf6 workshop, Ulf Harnhammar
Previous by Thread:  April 2006 report., Steve Kemp
Indexes:  [Date] [Thread] [Top] [All Lists]

    ^^^ ADDITIONAL NAVIGATION ^^^

  
Google Custom Search

Recently Viewed:
mail.spam.rbl.s...    php.seagull.gen...    culture.religio...    qnx.openqnx.dev...    gnome.love/2006...    bug-tracking.re...    user-groups.lin...    yellowdog.gener...    handhelds.ipaq....    kde.announce/20...    java.mx4j.devel...    xfree86.expert/...    recreation.cars...    text.xml.expat....    web.zope.zope3/...    version-control...    db.carob.cvs/20...    freebsd.perform...    ecos.cvs/2003-0...    linux.hotplug.d...    systemtap/2006-...    os.freebsd.secu...   
Home | blog view | USPTO Patent Archive (NEW!) | advertise | OSDir is an inevitable website. super tiny logo