Buscar
Mostrando ítems 1-10 de 1082
On Combining Static, Dynamic and Interactive Analysis Security Testing Tools to Improve OWASP Top Ten Security Vulnerability Detection in Web Applications
The design of the techniques and algorithms used by the static, dynamic and interactive security testing tools differ. Therefore, each tool detects to a greater or lesser extent each type of vulnerability for which they ...
Benchmarking Approach to Compare Web Applications Static Analysis Tools Detecting OWASP Top Ten Security Vulnerabilities
To detect security vulnerabilities in a web application, the security analyst must choose the best performance Security Analysis Static Tool (SAST) in terms of discovering the greatest number of security vulnerabilities ...
Forming Teams for Teaching Programming based on Static Code Analysis
(2012-07-04)
The use of team for teaching programming can be effective in the classroom because it helps students to generate and acquire new knowledge in less time, but these groups to be formed without taking into account some respects, ...
Combinatorial method with static analysis for source code security in web applications
Security weaknesses in web applications deployed in cloud architectures can seriously affect its data confidentiality and integrity. The construction of the procedure utilized in the static analysis tools of source code ...
Estudo Comparativo de Ferramentas de Análise Estática de Código
(Universidade Federal do Rio Grande do NorteBrasilUFRNBacharelado em Engenharia de Software, 2017-11-24)
Static code analysis is becoming more popular among system developers due to the many
benefits it brings to the software development and to the growing need of developing
better software. In this scenario, several static ...
Practical static analysis of context leaks in Android applications
Android native applications, written in Java and distributed in APK format, are widely used in mobile devices. Their specific pattern of use lets the operating system control the creation and destruction of resources, such ...
Practical JFSL verification using TACO
(Wiley, 2013-11)
Translation of Annotated COde (TACO) is a SAT-based tool for bounded verification of Java programs. One challenge many formal tools share is to provide a practical interface for a non-proficient user. In this article, we ...
Técnicas para identificação de funções de bibliotecas em binários vinculados estaticamente
(Universidade Federal de São CarlosUFSCarPrograma de Pós-Graduação em Ciência da Computação - PPGCCCâmpus São Carlos, 2020-08-21)
Statically-linked libraries can cause the work of a reverse engineering analyst to get disproportionately hard compared to the work of the programmer who developed the software under study. This situation often arises not ...