Code Dx is an award-winning application security tool that correlates weakness data from open source and commercial source code and dynamic analysis tools, putting them into the proper context for effective triage and mitigation. Code Dx integrates the results of multiple software analysis tools into one coherent picture, offers a workﬂow that lets analysts visually analyze and prioritize results, explore them to uncover trends, and assign remediation tasks.
Flying Squirrel Suite
A wireless discovery & mapping application: To enhance the security posture of DoD networks, Flying Squirrel provides real-time wireless discovery, integrated visualization and mapping, and post-hoc analysis capabilities. These capabilities are provided in the Flying Squirrel Wireless Assessment Tool Suite via the Flying Squirrel + MeerCAT-FS software, combined with Caribou and the Ubertooth™ One components.
MeerCAT-Pro is an award-winning visualization tool speciﬁcally developed to help decision makers locate wireless assets and networks, and assess the risk they pose to the organization. What distinguishes MeerCAT-Pro are its advanced visual analytics speciﬁcally designed to support and expedite wireless security risk assessment. MeerCAT-Pro presents interactive geospatial, topological, and spatiotemporal 3D views to quickly locate potential security issues, and to eﬃciently identify relevant vulnerabilities, threats, and remediation.
Penetration testing has proven to be a valuable preventive application security technique. A variety of automated tools and manual approaches are used to assess and expose vulnerabilities in target applications. By definition, black box testing offers little insight into the internals of target applications. Therefore, understanding the code coverage and testing overlap, or perhaps more importantly the coverage boundaries, has often been diﬃcult to ascertain. Secure Decisions has built a free open source tool, Code Pulse, to help overcome these challenges. Code Pulse is a visualization-centric tool that provides insight into the real-time code coverage of black box testing activities. It is a desktop application that runs on most major platforms. Code Pulse has been transitioned into an OWASP project. For more information, please visit the Code Pulse OWASP Project page.