Microsoft Code Analysis Tool .NET (CAT.NET) v1 CTP - 64 bit

Language:
English
CAT.NET is a binary code analysis tool that helps identify common variants of certain prevailing vulnerabilities that can give rise to common attack vectors such as Cross-Site Scripting (XSS), SQL Injection and XPath Injection.
  • Version:

    1.1.1.9

    File Name:

    CATNETx64CTP.exe

    Date Published:

    6/26/2009

    File Size:

    2.7 MB

      CAT.NET is command line tool that helps you identify security flaws within a managed code (C#, Visual Basic .NET, J#) application you are developing. It does so by scanning the binary and/or assembly of the application, and tracing the data flow among its statements, methods, and assemblies. This includes indirect data types such as property assignments and instance tainting operations. The engine works by reading the target assembly and all reference assemblies used in the application -- module-by-module -- and then analyzing all of the methods contained within each. It finally displays the issues its finds in a list that you can use to jump directly to the places in your application's source code where those issues were found. The following rules are currently support by this version of the tool. - Cross Site Scripting - SQL Injection - Process Command Injection - File Canonicalization - Exception Information - LDAP Injection - XPATH Injection - Redirection to User Controlled Site
  • Supported Operating System

    Windows Vista, Windows XP 64-bit

      OS: XP, Vista Software: .NET Framework 2.0
    • 1. Download the file by clicking on the "Download" button. 2. Select "Save” and specify a directory on your local disk. 3. Unzip the files into a local directory.
Site feedback
Microsoft

What category would you like to give web site feedback on?



Rate your level of satisfaction with this web page today:

Comments:

Submit