Badges
55 Points
6 Years
User Activity
Almost 5 years ago
Answered a question: Why Do I Need Application Security Software?
Different AppSec software tools do different things. Some do penetration testing, some do binary scanning, some scan for known vulnerabilities in open-source components, some do static analysis for common software weaknesses. It depends on what your needs are.
Over 5 years ago
Answered a question: Is SonarQube Better Than Veracode?
Or if you want to do both quality and security in one SAST tool, Parasoft C/C++test and Jtest can do both.
Over 5 years ago
Answered a question: Which would you recommend to a colleague, Kiuwan or SonarQube?
It depends on your role and what you're trying to accomplish. If you're trying to harden your own code then a tool that does SAST or static code analysis like SonarQube is a great idea. For example, Parasoft C/C++test is the only tool that has full support for every rule in…
About 6 years ago
Answered a question: When evaluating Open Source Databases, what aspect do you think is the most important to look for?
It's gotta be stable - I love fast, but you can never, ever lose data.
Experience
Following
Answers
Over 5 years ago
Application Security Tools
About 6 years ago
Open Source Databases
About me
20+ years experience in various aspects of software development. From coding in C,Java,HTML,JavaScript,Basic,Fortran,PHP,SQL to database and web applications and automation at all levels including testing, build, deployment, and monitoring.
Specialties: Security, Static Analysis, Automation, Database, web, unix, linux, testing, java
I blog about appsec, software development, testing, and automotive software at http://codecurmudgeon.com
