Friday | 19 March, 2010
CSO
Scanning tool looks to wipe out vulnerable code
Howard Dahdah (Computerworld) 14/07/2005 16:46:50

A new of piece software promises to provide an instant audit of source code, notifying developers of insecure coding practices and vulnerabilities.

CodeScan, developed by CodeScan Labs and released by Security-Assessment.com, analyses source code looking for vulnerabilities such as Cross-site scripting, SQL injection and input filtering.

To process the source files, CodeScan attempts to emulate a Web server by interpreting the source code. The processing starts at the main or global function of the source file, and traces the execution flow into and between functions and other routines. Variable assignments are then tracked, allowing CodeScan to build a picture of what has happened to a variable in its lifetime.

"By tracking the assignment of possible user input, CodeScan can make intelligent decisions about whether the input is used in a dangerous way," said Drazen Drazic, general manager Security-Assessment.com Australia.

He said most of the CodeScan rules are based around the detection of functions that are used with user-supplied input that has not being "filtered or sanitized".

CodeScan traces the possible values of variables as part of its vulnerability detection engine. During the life of a variable, values may be passed through functions that can perform 'filtering' of user-supplied input. CodeScan attempts to rank these functions and gives them a 'filter score'.

According to Drazic, CodeScan comes with information on the most commonly used syntax terms for each language with a predetermined filter score. Filter scores range between 0 and 100.

"Reported results with a low value or a value of zero are more likely to be vulnerable than those results with a higher value. This filtering allows the user to make a good judgement about whether a reported vulnerability could be exploited by a malicious user, and is used to reduce the number of false positives reported," he said.

The current version is for ASP with PHP to follow. Drazic said Java and .Net versions were also in development.

Security-Assessment.com, the sister company of CodeScan Labs, is the distributor and also the reseller of CodeScan in Australia. Drazic said it is currently looking at developing a reseller channel and is in discussions with a few organizations.

Licences are subscription-based and priced on the number of seats. There is also a package for consultants.

Comments

Post new comment

The content of this field is kept private and will not be shown publicly.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Allowed HTML tags: <a> <em> <strong> <cite> <code> <ul> <ol> <li> <dl> <dt> <dd>
  • Lines and paragraphs break automatically.

More information about formatting options

Enter the fully qualified URL, eg. http://www.example.com/
Users posting comments agree to the CSO Online comments policy.
Login or register to link comments to your user profile, or you may also post a comment without being logged in.
Add to Google
Additional Resources
Newsletter Subscription
Sign up for our CSO Online newsletters!
RSS Feeds
Syndicate content
 
Get a job Careerone
Whitepaper


Read Whitepaper

Making the move to Ethernet | A DECISION GUIDE

While enterprises today need higher bandwidth, there is increasing demand for solutions that can provide scalability, performance, simplicity and control at lower costs. Get the best of both worlds - read about Ethernet adoption today.

Sponsored Links