Help needed #itsec I have to do a source code analysis for my bachelor thesis but I'm a total noob. Are there any good tools out there to help me compensate my lacking skills? Thank you! - ThreadSky

kalo.bsky.social • 507 days ago

Help needed #itsec
I have to do a source code analysis for my bachelor thesis but I'm a total noob. Are there any good tools out there to help me compensate my lacking skills?
Thank you!

Comments

ekennedy80.bsky.social•461 days ago

SonarQube

cyclist.bsky.social•507 days ago

hier eine Liste. https://owasp.org/www-community/Source_Code_Analysis_Tools

bei den Audits die ich begleitet habe wurde zumeist AppSweep und Agnito verwendet

badlogic.bsky.social•507 days ago

what kind of analysis? i.e. what should the results look like?

kalo.bsky.social•507 days ago

Looking for vulnerabilities

badlogic.bsky.social•507 days ago

what programming language(s)?

kalo.bsky.social•507 days ago

Honestly I don't know - it's this:
https://github.com/project-chip/connectedhomeip

badlogic.bsky.social•507 days ago

Ah, firmware written in C++ (see src/ folder). That's going to be a tough one.

Here's a list of a few C++ static analyzers.

https://gist.github.com/akirill0v/4d7ac89196a06922f9119fe201f69087#cc

Most of them don't look for security vulns, but things like memory leaks, undefined behaviour etc. based on which you do manual analysis

badlogic.bsky.social•507 days ago

If you are able to run (portions of) the code, you can also use fuzzers. Those will execute functions with "random" inputs and also uncover things like leaks, buffer overflows, etc.

But again, those are only indicators for vulnerabilities, not vulnerabilities themselves.

badlogic.bsky.social•507 days ago

there's a plethora of static code analysis tools for various languages. NIST has a pretty comprehensive list.

https://www.nist.gov/itl/ssd/software-quality-group/source-code-security-analyzers

That said, they'll spit out so many false positives, that they are usually almost useless.

Sadly, there's no way around manual analysis.

badlogic.bsky.social•507 days ago

However, these tools may help identify portions of the code that are likely good places to start manual analysis in.

A tool that can spit out good results is simply not possible for general purpose programming languages. halting problem be damned :)

Posting Rules

Be respectful to others
No spam or self-promotion
Stay on topic
Follow Bluesky's terms of service

Comments

Posting Rules

Reply