Sign Up to our social questions and Answers Engine to ask questions, answer people’s questions, and connect with other people.
Login to our social questions & Answers Engine to ask questions answer people’s questions & connect with other people.
Lost your password? Please enter your email address. You will receive a link and will create a new password via email.
Please briefly explain why you feel this question should be reported.
Please briefly explain why you feel this answer should be reported.
Please briefly explain why you feel this user should be reported.
These tools are also knows as security scanners. I am looking for such open source and free scanners for Ajax driven grails/Java web application that would identify major security flaws such as Injection and XSS Attacks. Such top 10 security risks are identified by OWASP Top 10.
As a bonus question what is Java/groovy source code level scanner for such purpose?
You should try to use Sonar. Sonar has the ability to analyse the quality of your code and in addition to detect :
etc…
You can read this for more information !
Some great screencasts are available here.
A online demo Sonar is available here if you want to test the tool before installing.