
Just Announced: SmartBear Acquires Bitbar
Want to know more about this week’s news around the latest SmartBear acquisition? Our own Anand Sundaram sits down to explain why Bitbar was such a natural fit for the SmartBear product portfolio, and what challenges our two companies are teaming up to solve for customers around the globe. Noel: We made a big announcement …
Continue reading “Just Announced: SmartBear Acquires Bitbar”

How Sound Static Analysis Complements Heuristic Analysis
Not all static analysis tools work the same, there are in fact a spectrum of tools that use a variety of techniques ranging from relatively simple syntactic analysis through very sophisticated abstract interpretation-like algorithms that reason about potential executions. Each approach has its strengths and weaknesses and often tools, like GrammaTech CodeSonar, use a combination …
Continue reading “How Sound Static Analysis Complements Heuristic Analysis”

Tainted Data and Format String Attack Strike Again
A recent code execution vulnerability (we also call this a code injection vulnerably) was discovered in Palo Alto Networks’ GlobalProtect SSL VPN, a product that handles SSL handshakes and in particular, certain versions of the software running on these products, PAN-OS. The vulnerability was discovered by security researchers Orange Tsai and Meh Chang and documented on their blog. …
Continue reading “Tainted Data and Format String Attack Strike Again”

Webinar: Continuous Assessment of Code Quality, Metrics that Matter
Date: September 10, 2019 Time: 3pm Registration: https://zoom.us/webinar/register/WN_5itU5G-zRt-VSGGg3Zbcvw Assessing the quality of an application’s code is often a subjective process. This is why we turn to code metrics — quantitative measurements that provide valuable insights into our application’s code. Software Developers and Managers can take advantage of code metrics to understand the quality of the …
Continue reading “Webinar: Continuous Assessment of Code Quality, Metrics that Matter”