Thursday, April 22, 2010

OWASP Code Crawler 2.7 released


A Windows Form application built using .NET (C#). It's reg ex based grepping tool with reporting functionality, testing utilities and other interesting features. Code Crawler is also extensible it's built upon an XML database with around 290 library patterns.

Code Crawler has recently reached version 2.7. The engine of this tool is yet not complete, so don't be surprised to find a lot of false positives. At the moment there is no schedule for any further development of the tool unless someone is willing to sponsor the project or wants to contribute.

Change log
Removed unused References and Objects
Reduced Noise (.NET Files)
Replaced old scanning engine with new multi step engine (Only Stage 1 is active in this release for Single File Scan Only)
New DarkMoon IDE Theme
Single Scan Window : Mark a Threat as False positive (remove Highlighting, remove threat from ThreatCollection object)

Download: http://codecrawler.codeplex.com

No comments: