Categories

A sample text widget

Etiam pulvinar consectetur dolor sed malesuada. Ut convallis euismod dolor nec pretium. Nunc ut tristique massa.

Nam sodales mi vitae dolor ullamcorper et vulputate enim accumsan. Morbi orci magna, tincidunt vitae molestie nec, molestie at mi. Nulla nulla lorem, suscipit in posuere in, interdum non magna.

What are different kinds of static analysis testing tools?

The effectiveness of a software testing methodology is obviously affected by the effectiveness of the tools that it uses. This holds true for all types of software testing methodologies. Better tools provide a better handling of the testing methodology and also saves the time of the tester and his/her efforts. This article is devoted to a discussion about the tools that are deployed for static program analysis. For the purpose of static program analysis, several tools have been devised based on some criteria about which we shall discuss one by one:
1. Historical: Earlier for static program analysis, only two tools were available:
(a) NuMega Code Review: This tool has now been incorporated in to the Micro Focus Dev Partner Suite.
(b) Lint: This tool was the only original static code analyzer for the C language.
2. Tools supporting multiple languages:
(a) Black duck suite: This tool analyzes the composition of the binary files and source code of the software program. It is used for finding the reusable code from the whole program and manages the third party approval and open sources, check for the security vulnerabilities and associated legal obligations.
(b) Axivion Bauhaus suite: This tool supports C, C++, C#, Ada and Java etc. it analyses the interface, architecture and clones of the software program.
(c) Bug scout: This tool proves effective in checking out the security issues in the web applications created by java, ASP, C#, PHP etc.
(d) ChecKing: Tt is something more than a tool i.e., it is an integrated software quality portal and is deployed for the management of the quality issues at all the phases of the software development life cycle. It is comprised of static code analyzers for the languages: JSP, javascript, java, HTML, .NET, SQL, C, C++, JCL, XML etc.
(e) CAST application intelligence platform: This is the most detailed and specified tool developed for the measurement of the software productivity as well as the quality. There are around 30 plus languages supported by this tool which includes C, C++, .NET, Java, SAP, and Oracle etc.
(f) Coverity static analysis: This tool identifies the defects and potential security vulnerabilities in the applications developed using C#, C, C++ etc. it analysis the dynamic code and architecture of the program.
(g) Code rocket: This tool tests the flowchart design, pseudo code and documentation for the applications written in C, C++, C# and Java etc.
(h) DMS software re- engineering tool kit: This is the tool supporting custom analysis for the languages in C, C++, C#, Cobol, visual basic and many more languages. It is also suitable for dead code analysis, style checking and clone analysis.
(i) Dev partner code review: This tool is suitable for the bug pattern detection and static metrics for the applications developed in languages C, C++, C, COBOL, java, PHP etc. It has got customized parsers through which the regular expressions and rule sets can be extended.
(j) Compuware dev enterprise: This tool helps in analyzing the application using JCL, CICS, IMS, and COBOL etc.
(k) Gramma tech code sonar: This is the simplest tool of all and analyzes C++ and C.
(l) HP fortify source code analyzer: This is another tool in the queue of the tools that help identify the potential security vulnerabilities of a software developed in languages like Java, JSP, ASP. NET, PHP, VBscript, SQL, Python, and COBOL etc.
(m) Imagix 4D: This is a tool developed for the identification of the issues related to the task interaction and concurrency in the embedded software systems that have been developed using C, C++ or java etc.
(n) Intel: Developed by the Intel corporation, it has all the static security analysis features that support languages Fortran, C, C++ etc.

Software Verification and Analysis Static Analysis of Software Software Testing and Analysis

Leave a Reply

You can use these HTML tags

<a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>