Difference between revisions of "Static Application Security Testing (SAST)"
Jump to navigation
Jump to search
(→Tools) |
(→Tools) Tags: Mobile web edit, Mobile edit |
||
Line 4: | Line 4: | ||
== Tools == | == Tools == | ||
* [[GitLab Ultimate 10.3]] https://docs.gitlab.com/ee/user/application_security/sast/ .[[gitlab-ci.yml]] or [[Auto SAST]] by [[Auto DevOps]], support for many languages including C/C++ ([[flawfinder]]) | * [[GitLab Ultimate 10.3]] https://docs.gitlab.com/ee/user/application_security/sast/ .[[gitlab-ci.yml]] or [[Auto SAST]] by [[Auto DevOps]], support for many languages including C/C++ ([[flawfinder]]) | ||
+ | * [[Coverity]] (2002) | ||
== Related terms == | == Related terms == |
Revision as of 08:41, 21 February 2020
Static Application Security Testing (SAST)
Tools
- GitLab Ultimate 10.3 https://docs.gitlab.com/ee/user/application_security/sast/ .gitlab-ci.yml or Auto SAST by Auto DevOps, support for many languages including C/C++ (flawfinder)
- Coverity (2002)
Related terms
- Application Security Testing (SAST, DAST, IAST): Fortify WebInspect, GitLab Ultimate, flawfinder, Kubesec, Coverity, SonarQube, SCA, Checkmarx
See also
- Security: Security portfolio, Security standards, Hardening, CVE, CWE, Wireless Network Hacking, vulnerability scanner, Security risk assessment, SCA, Application Security Testing, OWASP, Data leak, NIST, SANS, MITRE, Security policy, Access Control attacks, password policy, password cracking, Password manager, MFA, OTP, UTF, Firewall, DoS, Software bugs, MITM, Certified Ethical Hacker (CEH) Contents, Security+ Malware, FIPS, DLP, Network Access Control (NAC), VAPT, SIEM, EDR, SOC, pentest, PTaaS, Clickjacking, MobSF, Janus vulnerability, Back Orifice, Backdoor, CSO, CSPM, PoLP, forensic, encryption, Keylogger, Pwn2Own, CISO, Prototype pollution
Advertising: