Microsoft CAT.NET is a binary code analysis tool that helps identify common variants of certain prevailing vulnerabilities that can give rise to common attack vectors such as Cross-Site Scripting (XSS), SQL Injection and XPath Injection.
The goal of this product is to identify insecure configuration at all layers of the application (configuration files, code level configuration, etc.) which should be remediated prior to deployment on a production environment.
Architecture behind CAT.NET is well explained in this video: http://channel9.msdn.com/posts/Jossie/Architecture-behind-CATNET/
To download CAT use this link: https://connect.microsoft.com/Downloads/DownloadDetails.aspx?SiteID=734&DownloadID=23328
0 commenti:
Post a Comment