Welcome to the new Parasoft forums! We hope you will enjoy the site and try out some of the new features, like sharing an idea you may have for one of our products or following a category.
Discussion List
Suitability of Parasoft C/C++ for performing Static Code Analysis
Hi All , My necessity is to evaluate options to consider usage of Parasoft C/C++ for conducting Static code analysis ( i) whether Parasoft C/C++ integrates seamlessly into VS 2015(IDE) , GIT and Jenkins ii) does it involve C++/CLI (Managed C++) for static analysis in addition to languages used C, C++, MFC & C#, .NET iii)…
Jtest support for OWASP Top 10 - 2017 available
OWASP Top 10 - 2017 has finally been released today. Some old items were merged, some removed, and a few new ones added. A new configuration for static analysis will be in the next release of Jtest, but for now you can download it directly from here. Get your jump start on OWASP Top 10 support.
Using Static Analysis to Achieve “Secure-by-Design” for GDPR
Parasoft has configurations available for static analysis to support GDPR. While GDPR is big and covers MANY cybersecurity topics, we've focused on the "security-by-design" aspects and created static analysis configurations to support this part of GDPR. Configurations are available below and will be in future product…
Validating which cacerts file Parasoft is using
In the Security preferences section of SOAtest or Virtualize, there is an option to "Use default Java cacerts file" as the trust store for server certificates. However, depending on which install of Java SOAtest/Virtualize is using, the cacerts file may vary. This article explains how to find the location of the cacerts…
Parasoft Support for OWASP Top 10 - 2017 available now.
Parasoft has configurations available for static analysis to support OWASP Top 10 - 2017. OWASP Top 10 - 2017 was released today. Some old items were merged, some removed, and a few new ones added. New configurations for static analysis will be in the next release of each product, but for now you can download them directly…
Parasoft Support for CWE "On the cusp" rules
Parasoft has configurations available for static analysis to support the "On the cusp" list from CWE. These are the security weaknesses that didn't quite make the top 25 but are still important issues. New configurations for static analysis will be in the next release of each product, but for now you can download them…
Parasoft support for UL 2900 device cybersecurity standard
The latest releases of Jtest, C/C++test and dotTEST have configurations available for static analysis to support the new UL 2900 cybersecurity coding standard for devices. This standard has been recognized by the FDA, making it a good choice if you're working on medical devices. In a nutshell, the standard requires you to…
How do I improve code security with Jtest?
Parasoft Jtest scans your Java code for various security violations so they can be addressed development, which is a critical step in building security into your application. The best approach to building safe applications is to build security into the application software (as opposed to testing for security…