...
You can use the following compliance modules to apply coding standards across your codebase. And you’ll get fewer False Positives and False Negatives in your diagnostics. With Security Reviewer, Security By Design will be easy to accomplish in your Security Development Life Cycle. Security Reviewer provides a Qualification Kit for checking our tool at your premises against coding standards as well as OWASP Benchmark and WASC Reports.
...
CWE identifies common security weaknesses in all Supported Languages.
The CWE compatibility module identifies code with those security weaknesses. And , and Security Reviewer prioritizes these CWE 4.0 4 violations.
This makes it easy for you to fix the most critical errors first. And by using Security Reviewer, you’ll improve overall code security.
...
This data-driven approach is used by Security Reviewer to generate a CWE/SANS Top 25 2019 2020 list on a regular basis with minimal effort.
...
Security Reviewer has been evaluated using Web Application Security Scanner Evaluation Criteria (WASSEC).
OWASP
...
The OWASP Application Security Verification Standard (ASVS) is full covered by Security Reviewer. It provides a basis for testing web application technical security controls and also provides developers with a list of requirements for secure development.
...
Security Reviewer leads on OWASP Benchmark.
COPYRIGHT (C) 2014-2021 SECURITY REVIEWER SRL. ALL RIGHTS RESERVED.