darkking Posted September 7, 2006 Report Share Posted September 7, 2006 Security compass Web Application Auditing Tool (SWAAT) is a free static web application source code auditing tool. The aim of SWAAT is to help developers, testers, security staff, and auditors locate potentially dangerous portions of source code; it is designed to assist source code review. After reviewing millions of lines of source code, we at Security Compass believe that automated run-time analysis tools are useful at identifying simple, common vulnerabilities. In most cases, however, the vast majority of vulnerabilities require human intelligence and knowledge of the application. SWAAT helps to reduce the burden of source code review by identifying potentially dangerous functions and strings in code and explaining both how they may be dangerous and how to mitigate potential risks.[url='http://www.securitycompass.com/swaat/swaat.zip']http://www.securitycompass.com/swaat/swaat.zip[/url] Quote Link to comment Share on other sites More sharing options...