OpenBSD Journal

Secure Programming Resources

Contributed by jose on from the going-beyond-grep dept.

Since a lot of OpenBSD users are curious about improving the quality of software out there, here is a brief list of secure programming resources. Mind you it's biased towards C and static analysis, but this should be helpful. Nothing replaces a good, thorough manual code audit by knowledgable eyes, but this can be a start. Also be sure to follow many of the links from these references, these are just some places to start.

(Comments are closed)


Comments
  1. By Anonymous Coward () on

    Of the tools for scanning code listed in the Sardonix link, RATS is currently the strongest/most complete.

    There is another list of resources at the Shmoo Group's website.

Credits

Copyright © - Daniel Hartmeier. All rights reserved. Articles and comments are copyright their respective authors, submission implies license to publish on this web site. Contents of the archive prior to as well as images and HTML templates were copied from the fabulous original deadly.org with Jose's and Jim's kind permission. This journal runs as CGI with httpd(8) on OpenBSD, the source code is BSD licensed. undeadly \Un*dead"ly\, a. Not subject to death; immortal. [Obs.]