[WEB SECURITY] C# test suite for testing static code analyzers

romain r at fuckthespam.com
Sat Jan 24 12:40:10 EST 2009


Mostafa:
He is looking for a test suite, not a tool... but you're right, CAT.NET 
seems to be a nice tool (glorified LAPSE for .NET? :))

Michael:
I am not aware of any test suite for C# and this is a shame, it would be 
interesting to create a "securibench" for C#...

--Romain
http://rgaucher.info

Mostafa Siraj wrote:
> CAT.NET <http://CAT.NET> is a nice free tool that integrates with Visual 
> Studio
> 
> On Fri, Jan 23, 2009 at 10:55 PM, steve jensen <sjensen1207 at hotmail.com 
> <mailto:sjensen1207 at hotmail.com>> wrote:
> 
>     There are several on the market. Just google for .NET source code
>     analysis.
> 
> 
>     ------------------------------------------------------------------------
> 
>     From: mw7301 at hotmail.com <mailto:mw7301 at hotmail.com>
>     To: websecurity at webappsec.org <mailto:websecurity at webappsec.org>
>     Date: Fri, 23 Jan 2009 20:00:11 +0000
>     Subject: [WEB SECURITY] C# test suite for testing static code analyzers
> 
> 
>     Do any of you know of a suite of C# programs that could be used to
>     test static code analyzers for their ability to find distinct
>     security vulnerabilities? There is lots of this kind of code
>     available for C, C++ and Java but I haven't been able to find a
>     similar thing for C#.
> 
>      
>      
>      
>      
>      
> 
> 
> 
> 
> 
> 
> 
>     ------------------------------------------------------------------------
> 
>     Windows Live™: E-mail. Chat. Share. Get more ways to connect. See
>     how it works.
>     <http://windowslive.com/howitworks?ocid=TXT_TAGLM_WL_t2_allup_howitworks_012009>
> 
>     ------------------------------------------------------------------------
>     Hotmail® goes where you go. On a PC, on the Web, on your phone. See
>     how.
>     <http://www.windowslive-hotmail.com/learnmore/versatility.aspx#mobile?ocid=TXT_TAGHM_WL_HM_versatility_121208>
> 
> 
> 
> 
> -- 
> "Our deepest fear is not that we are inadequate. Our deepest fear is 
> that we are powerful beyond measure. It is our light, not our darkness, 
> that most frightens us. We ask ourselves, who am I to be brilliant, 
> gorgeous, talented, and fabulous?Actually, who are you not to be? You 
> are a child of God. Your playing small doesn't serve the world. There's 
> nothing enlightened about shrinking so that other people won't feel 
> insecure around you. We are all meant to shine, as children do. We are 
> born to make manifest the glory of God that is within us. It's not just 
> in some of us, it's in everyone. And as we let our own light shine, we 
> unconsciously give other people permission to do the same. As we are 
> liberated from our own fear, our presence automatically liberates 
> others." --Nelson Mandela--

----------------------------------------------------------------------------
Join us on IRC: irc.freenode.net #webappsec

Have a question? Search The Web Security Mailing List Archives: 
http://www.webappsec.org/lists/websecurity/archive/

Subscribe via RSS: 
http://www.webappsec.org/rss/websecurity.rss [RSS Feed]

Join WASC on LinkedIn
http://www.linkedin.com/e/gis/83336/4B20E4374DBA



More information about the websecurity mailing list