Skip to Main Content

Java Security

Announcement

For appeals, questions and feedback about Oracle Forums, please email oracle-forums-moderators_us@oracle.com. Technical questions should be asked in the appropriate category. Thank you!

Open Source Java Code Vulnerability Tool

VladKMar 20 2013
Hello,

We are looking for a product that would scan our Java application and identify all known published open-source code vulnerabilities.

I found one such tool, and we are in the process of evaluating it:
Sonatype Application Health Check
http://www.sonatype.com/Products/Application-Health-Check


Another more expensive product is HP Fortify
http://www8.hp.com/us/en/software-solutions/software.html?compURI=1337262


I wanted to reach out to the community to see if anyone has used any such product.


Thanks,
Vlad

Comments

Locked Post
New comments cannot be posted to this locked post.

Post Details

Locked on Apr 17 2013
Added on Mar 20 2013
0 comments
928 views