Blog
 

How to integrate a static analyzer into the development process

23.10.2020
How to integrate a static analyzer into the development process
This post will be useful if you are about to choose or implement such a solution. How to set up a process in such a way that code vulnerabilities are not only detected, but also fixed? In this post, I’ll try to help you with this challenge.

The Truth about Static Code Analysis

28.08.2020
The Truth about Static Code Analysis
Recently, we have increasingly heard about the importance of static analysis as a tool for newly developed software quality assurance, especially in terms of security. Static analysis helps discover vulnerabilities and other errors and can be integrated into existing development processes. However, this raises many questions. What is the difference between free and commercial tools? Why using a linter is not enough? What do statistics have to do with it?

(S)SDLC, or How to Make Development More Secure? Part 1

04.06.2020
(S)SDLC, or How to Make Development More Secure? Part 1
With the development culture continuing to evolve rapidly, new code quality assurance tools are appearing on the market and being used in dramatically new and innovative ways. We’ve already written about static analysis, what to pay attention to when choosing an analyzer, and, finally, how to establish a static analysis-based process for your organization.

Comparing some Java Decompilers

17.03.2020
Comparing some Java Decompilers

In this post, we will review and compare the following four decompilers: Fernflower, CFR, Procyon, and jadx. Disclaimer: this is neither a formal nor a scientific comparison, but rather an overview of all Java bytecode decompilers relevant, as of autumn 2019.



News 1 - 4 of 16
First | Prev. | 1 2 3 4 | Next | Last
Buy a Solar appScreener
.