On Thursday 16 October 2003 01:33, John Viega wrote: > There are many more tools listed at: > https://www.sardonix.org/Auditing_Resources.html and at: > http://www.secureprogramming.com/ Excellent additions, thanks John. I should also point out that I forgot to mention David Wheeler's superb (and free) document, "Secure Programming for Linux and Unix HOWTO" (see http://www.dwheeler.com/secure-programs/ Secure-Programs-HOWTO/index.html). Although I'm not sure if the original poster was writing for Linux/Unix, the section on Java (http:// www.dwheeler.com/secure-programs/Secure-Programs-HOWTO/java.html) is a must-read for any Java programmer, IMHO. Not the automated tool that the poster requested, but a wonderful list of guidelines and tips. Cheers, Ken van WykReceived on Thursday, 16 October 2003 15:49:56 GMT
This archive was generated by hypermail 2.2.0+W3C-0.50 : Wednesday, 31 October 2007 00:17:07 GMT