Security Reviewer Knowledge Center

 About Us

An innovative StartUp

Security Reviewer is an Italian startup from Tuscany, born in 2015, owning some Patents, like Dynamic Syntax Tree algorithm, built around small, tight-knit team of talented software engineers, architects, quality assurance professionals, who are passionate about their work and have all the skills, professional certifications and knowledge required to produce outstanding IT solutions since 2001.

 Why Choose Us ?

A Choice that makes the Difference

Security Reviewer is not just another Code Review suite. We provide a low-cost, accurate and super-fast set of tools, 52x Faster than average AppSec tools, based on most modern technologies (Machine Learning, new AI algorithms, our Blockchain), easily integrated to your DevOps, covering all vulnerability detection provided by our competitors (like Micro Focus Fortify, CheckMarx, HCL AppScan, Veracode, Kiuwan, Corvallis Julia™, Coverity, SonarQube™, etc.), and adding further 100+ detection rules for each of 40+ supported programming Languages. Further, we provide a toolset covering SAST (Static Application Security Testing, Mobile iOS and Android included), IAST (Interactive Application Security Testing, agent-based), DAST (Dynamic Analysis), Firmware Analysis (both Static and Dynamic), Software Resilience Analysis and SCA (Software Composition Analysis). 

Project Success Guaranteed

We do not offer Consultancy Services directly to Customers. Beware of false Security Reviewer 'experts'. To ensure Project success, we offer a Certification Program mandatory for every Consultancy Firm using our Products in a Consultancy Project at Customer's site. Check our Resellers Network and our Customer Community.

Just In Time Development

Following your Enhancement requests, we guarantee the deployment of your Change Requests in about 48 hours and your Feature Requests developed during next 30 working days. We are committed to help our clients reaching their goals, to personalize their Secure Review experience, to provide an innovative environment, and to make the difference.

Core team

20+ people @ your service. Our Core Team since 2001:



Dynamic Syntax Tree

Dynamic Image Interpreter

for Mobile & Firmware Emulation

Universal Vulnerability

Description Language

Agent-based Firmware Analysis





Analyzes both Sources (SAST) and compiled Classes (Sandbox), eliminating 99% of False Positives

Reveals Async Inputs, Application Status Changes, Lost Connections, Unhandled Errors and more, by interpreting the images dynamically

A unique Vulnerability Description Language to rule them all

Installs an Agent to the bootfs and monitors even encrypted Firmware images

Useful Links

Find more information

Security Reviewer Web Site

LinkedIn Profile

EquityNet Profile

Wikipedia SQALE

Security Reviewer suite is recognized as an Official SQALE Tool

Security Reviewer participates to ‘Managing Technical Debt’ Agile Alliance group

Static Reviewer is listed on SAMATE and NIST Source Code Security Analyzers

Static Reviewer is listed on OWASP Source Code Analysis Tools

Security Reviewer suite is certified CWE Compatible




Security Reviewer Srl
Via della Pace, 154
58100 Grosseto, Italy

Quick navigation

Scientific Articles



Static Analysis: New Emerging Algorithms

A detailed analysis of existing

Static Analysis Algorithms.

Dynamic Syntax Tree: Optimized Binary Sandboxing

Dynamic Syntax Tree (DST) implementations 

use Binary Sandboxing for enhancing the

Static Analysis process.

Dynamic Syntax Tree: Implementation Results

We present some Dynamic Syntax

Tree implementation results