Tag: static code analysis

Static Application Security Testing (SAST) Tool Implementation

We have just published a new article on our website that discusses the process of achieving a successful SAST (Static Application Security Testing) tool implementation. It covers the various questions and concerns Checkmarx customers face when running evaluations of the available tools in the SAST category.

Read More ›

Path Manipulation, Directory Traversal, and interesting JAVA code

Directory Traversal Attacks Directory Traversal (CWE: 22) is usually considered a subset of Path Manipulation (CWE: 73). Directory Traversal, also referred to as Path Traversal,  attacks occur by manipulating variables with the ‘../’ (dot-dot-slash is another name this attack sometimes goes by) sequences, and attempt to access directories and files stored in a system. Path Directory

Read More ›

Jump to Category