Source Code Auditing
Ғылым және технология
Get Drek: github.com/chrisallenlane/drek
Sample Drek Signatures: github.com/chrisallenlane/dre...
Full Disclosure link: seclists.org/fulldisclosure/2...
Check out the follow up video to this titled "Powering up your source code auditing with parsers"
• Powering up your sourc...
Thumbnail photo by Clément Hélardot on Unsplash.
Пікірлер: 7
Really nice vid! I am a scientist and coder w/ little experience auditing... was wondering about auditing Signal or any app for its security claims... searched how to audit code in general and saw ur vid... insightful approach. I am also reminded that what is intended (and therefore possibly claimed) in programming is not necessarily what follows, intentional or not, lol!❤
Great video! I love the way you explain things, keep it up!
Excited to try this tool out, thank you for this video!
thanks for going over this topic!
Im good at PHP where should i start the auďiting?
hi @hackovert, what do you think about sonarqube ? thanks for the video :)
@HackOvert
2 жыл бұрын
I don’t use it often - but have used it as a part of our CI process in the past on a development team. It was pretty great. Set up is easy, it’s fast, and it helps catch some silly issues. If you’re looking to help minimize technical debt it’s really nice.