Methods and means of static and dynamic code analysis

Authors

DOI:

https://doi.org/10.30837/rt.2023.1.212.01

Keywords:

SAST, DAST, HAST, data–flow analysis, Symbolic execution

Abstract

The purpose of the article is to explore the methods and tools used to analyze software code in order to identify errors and potential problems. Static and dynamic code analysis are key processes in software development, as they allow you to detect errors in the early stages of development, reduce the risk of problems later and ensure high quality of the software product. The article discusses various methods and means of static and dynamic code analysis. For each method and tool, examples of their use and advantages and disadvantages are described.

The article will be useful for software developers who want to improve the quality of their products and reduce the risk of problems. It will provide readers with an in-depth understanding of code analysis techniques and tools and help them choose the most appropriate tool for their needs.

References

OWASP [Електронний ресурс]. Режим доступу: //owasp.org/www–community/controls/Static_Code_Analysis

Citeseerx[Електронний ресурс]. Режим доступу: https://citeseerx.ist.psu.edu/viewdoc/summary?doi=10.1.1.394.5540

Techopedia [Електронний ресурс]. Режим доступу: https://www.techopedia.com/definition/30958/dynamic–application–security–testing–dast

Contrast security[Електронний ресурс]. Режим доступу: https://www.contrastsecurity.com/glossary/dynamic–application–security–testing

Published

2023-03-28

How to Cite

Gapon, A., Fedorchenko, V., & Sievierinov О. (2023). Methods and means of static and dynamic code analysis. Radiotekhnika, 1(212), 7–13. https://doi.org/10.30837/rt.2023.1.212.01

Issue

Section

Articles