CxAudit - gain control of your
software risk
Security risk managers have no time for tools that need babysitting and have historically been saddled with expensive static analysis tools that had high false positive rates and required significant consulting to integrate into the development process. Trust in the tools is low when false positive rates are high. Build your confidence with CxAudit.
CxAudit is the next generation of static security analysis tooling for .NET and J2EE environments. Employing high performance, in-memory code models and a purpose-built query language, CxAudit is the fastest, most accurate and most extensible security analysis and reporting tool on the market. Key features include:
-
Near-zero false positive rates - the entire code path, from presentation back to root cause, is verified before it’s reported as a defect
-
Flexible queries- built in query language is completely extensible and allows organizations to add, modify and group queries to meet their process and regulatory needs using their own resources
-
Graphical representations of vulnerabilities - allows for rapid and cost-effective remediation
-
Integrations with Visual Studio - allows audit, scanning and analysis activities to be executed from within the shellwhile a complete standalone UI and CLI capabilities meet the needs of security auditors and constant integration environments.
-
Multiple language support - C/C++, Java, C#, APEX
-
32 & 64 bit operation
 |
Key CxAudit Benefits
 |
Accurate and rapid results |
|
Virtually zero false-positives |
|
|
Valuable results for effective remediation |
|
Low overhead and trouble-free deployment |
|
|
Scanning near-compiling code |
|
Coverage of Vulnerability Types |
|
|
Configurable Queries |
|
Cost Effective |
Technical Specifications
| System Requirements | Supported Platforms | Supported Languages | |||
|
|
250 GB disk space |
|
Microsoft .NET |
|
C/C++, C# |
|
|
2 Ghz CPU (32 or 64 bit) |
|
J2EE |
|
Java |
|
|
2 GB RAM minimum |
|
APEX | ||
|
|
Windows XP, Vista, Windows Server 2003/2008 |
|
Easily adaptable for other languages | ||
