Secure Coding Inspector(SAST)CSI
01Support of Various Analyses
Large capacity analysis (analysis of one million lines), parallel analysis, changed portion analysis, etc.
02Offering Correction Guide
Detailed information of defects to help with the understanding of defects and a method for correcting defects
03Web-based UI
Offering UI (User Interface) through which the correction process and inspection results can be identified at a glance.
04Offering Report
Diagnosis reports for developers and statistics report for administrators in the formats of PDF, EXCEL, Word, and Hangeul
sec1_arrow
Secure Coding Standard
47
MOIS 47 Vunlnerabilities
8
NIS Top 8 Vulnerabilities
10
OWASP Top10 Vulnerabilities
25
CWE/SANS Top25 Vulnerabilities
Power of 10 Rules, CERT Secure coding Standard
sec1_arrow
Supported Environment
Configuration Mgt Linkage
SVN, Git, etc.
Framework
E-government, many Java frameworks, Web development-related frameworks, etc.
Plug in
Eclipse, Visual Studio, IntelliJ, etc.
OS
Linux, Windows, OS X
Languages
C/C++, C#, Java, JSP, Javascript, PHP, ASP, ASP,Net, Python, HTML, XML, SQL, iOS(Objective-C), Android(Java), etc.
Interlocking Extension
CLI, REST API, etc.
sec1_arrow
Offered Functions
Precise Semantic Analysis
Linkage analysis of value and memory
Precise analysis between procedures
Graph DB-based static analysis
CC Certification
Covers more rules than other CC certification companies
(See the CC certification report).
On the Fly
The large capacity code analysis results can be checked in real time.
Defect Tracking Graph
An analysis of intelligent source code that automatically tracks the causes of defects.