Static Analysis Security Testing uses tools that inspect an application without running it. This can be done by either looking at the source code or at the compiled version of it.

A major player in this area is HP Fortify.

Previous: AppSec Next: Threat Model

Please Join the Discussion

Please log in using one of these methods to post your comment: Logo

You are commenting using your account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s