ITS4: A Static Vulnerability Scanner for C and C++ Code
نویسندگان
چکیده
We describe ITS4, a tool for statically scanning security-critical C source code for vulnerabilities. Compared to other approaches, our scanning technique stakes out a new middle ground between accuracy and efficiency. This method is efficient enough to offer real-time feedback to developers during coding while producing few false negatives. Unlike other techniques, our method is also simple enough to scan C++ code despite the complexities inherent in the language. Using ITS4 we found new remotelyexploitable vulnerabilities in a widely distributed software package as well as in a major piece of e-commerce software. The ITS4 source distribution is available at http: //www.rstcorp.com/its4.
منابع مشابه
ITS 4 : A Static Vulnerability Scanner for C and C + +
We describe ITS4, a tool for statically scanning security-critical C and C++ source code for vulnerabil-ities. Compared to other techniques, our results indicate that this approach stakes out a new middle ground on accuracy, while being eecient enough to give real-time feedback to a developer during coding. Our technique is also simple enough that it can easily be applied to C++, despite the co...
متن کاملITS A Static Vulnerability Scanner for C and C Code
We describe ITS a tool for statically scanning security critical C and C source code for vulnerabil ities Compared to other techniques our results indi cate that this approach stakes out a new middle ground on accuracy while being e cient enough to give real time feedback to a developer during coding Our tech nique is also simple enough that it can easily be ap plied to C despite the complexiti...
متن کاملStatic Analysis for Security
source-code security analysis with static analysis tools. Since ITS4's release in early 2000 (www.cigital.com/its4/), the idea of detecting security problems through source code has come of age. ITS4 is extremely simple—the tool basically scans through a file looking for syntactic matches based on several simple " rules " that might indicate possible security vulnera-bilities (for example, use ...
متن کاملTowards Vulnerability Discovery Using Extended Compile-time Analysis
Eliminating vulnerabilities from low-level code is vital for securing software. Static analysis is a promising approach for discovering vulnerabilities since it can provide developers early feedback on the code they write. But, it presents multiple challenges not the least of which is understanding what makes a bug exploitable and conveying this information to the developer. In this paper, we p...
متن کاملUsing Testing Techniques for Vulnerability Detection in C Programs
This paper presents a technique for vulnerability detection in C programs. It is based on a vulnerability formal model called “Vulnerability Detection Conditions" (VDCs). This model is used together with passive testing techniques for the automatic detection of vulnerabilities. The proposed technique has been implemented in a dynamic code analysis tool, TestInv-Code, which detects the presence ...
متن کامل