Methods and means of static and dynamic code analysis
DOI:
https://doi.org/10.30837/rt.2023.1.212.01Keywords:
SAST, DAST, HAST, data–flow analysis, Symbolic executionAbstract
The purpose of the article is to explore the methods and tools used to analyze software code in order to identify errors and potential problems. Static and dynamic code analysis are key processes in software development, as they allow you to detect errors in the early stages of development, reduce the risk of problems later and ensure high quality of the software product. The article discusses various methods and means of static and dynamic code analysis. For each method and tool, examples of their use and advantages and disadvantages are described.
The article will be useful for software developers who want to improve the quality of their products and reduce the risk of problems. It will provide readers with an in-depth understanding of code analysis techniques and tools and help them choose the most appropriate tool for their needs.
References
OWASP [Електронний ресурс]. Режим доступу: //owasp.org/www–community/controls/Static_Code_Analysis
Citeseerx[Електронний ресурс]. Режим доступу: https://citeseerx.ist.psu.edu/viewdoc/summary?doi=10.1.1.394.5540
Techopedia [Електронний ресурс]. Режим доступу: https://www.techopedia.com/definition/30958/dynamic–application–security–testing–dast
Contrast security[Електронний ресурс]. Режим доступу: https://www.contrastsecurity.com/glossary/dynamic–application–security–testing
Downloads
Published
How to Cite
Issue
Section
License
Authors who publish with this journal agree to the following terms:
1. Authors retain copyright and grant the journal right of first publication with the work simultaneously licensed under a Creative Commons Attribution License that allows others to share the work with an acknowledgement of the work's authorship and initial publication in this journal.
2. Authors are able to enter into separate, additional contractual arrangements for the non-exclusive distribution of the journal's published version of the work (e.g., post it to an institutional repository or publish it in a book), with an acknowledgement of its initial publication in this journal.
3. Authors are permitted and encouraged to post their work online (e.g., in institutional repositories or on their website) prior to and during the submission process, as it can lead to productive exchanges, as well as earlier and greater citation of published work (See The Effect of Open Access).