Armorize CodeSecure
Armorize CodeSecure™ is a static source code analysis platform that leverages third generation software verification technologies to identify web application vulnerabilities throughout development. Our web-based solution provides automated compiler-independent code analysis that models tainted dataflow within the application. Reports pinpoint vulnerable code locations and offer prioritized remediation guidance, while SmartWAF™ integration facilitates immediate hot-fix remediation. CodeSecure™ offers proactive and cost-effective remediation for vulnerable code, representing a low-cost, risk-free alternative to the common build-first secure-later paradigm.
Download pdf brochure
Download pdf datasheet
CodeSecure™ Advantages
Proactive Vulnerability Remediation
 |
|
Identifies vulnerable Web application source code throughout the application life cycle
|
|
|
Facilitates early, efficient and cost-effective vulnerability remediation
|
|
|
Detects vulnerabilities in ASP.NET, VB.NET, C#, Java/J2EE, JSP, EJB, PHP, Classic ASP and VBScript.
|
|
|
Models Web application behavior and traces data flow from entry point to vulnerable file.
|
|
|
Calculates outcome of tainted input propagation through the application
|
|
|
Scans source code non-intrusively with no impact on running applications
|
|
|
Integrates with code repository to enable automated code retrieval and analysis
|
|
|
Aligns secure coding efforts with development processes by integrating with IDE and code check-in
|
Third Generation Technology
|
|
Network appliance provides Web accessible role-based project and scan management interface
|
|
|
Built-in language parsers facilitate compiler-independent analysis and flexible deployment
|
|
|
Advanced formal verification algorithms and compiler-independence ensure fast and accurate vulnerability detection
|
|
|
Compiler-independent analysis engine requires only source code access; there is no build-integration requirement
|
|
|
Advanced Traceback feature traces tainted input from source code entry point, across functions, classes and files to resulting vulnerabilities |
Screenshot
