Latest Content

The global increase in connectivity and reliance on software is opening doors to exploits daily. Software quality and security is more important now than ever before.

Linux Foundation’s ELISA Project to Bring Linux to Safety Critical Systems

The Linux Foundation’s announcement of the ELISA (Enabling Linux in Safety Applications) project was of interest to us because it requires a significant effort in evaluating open source...

Read Article
Webinar Recording - What's New in CodeSonar 5.1?

Interested in upgrading to CodeSonar 5.1? In this webinar, Mark Hermeling, Senior Director of Product Marketing, will walk through all of the new features...

Read Article
Easing the Adoption of Static Analysis into Existing Projects

Read the document
DevSecOps - Integrating Static Application Security Tools (SAST) in DevSecOps

Read the document
Static Analysis and UL 2900 Standard for Software Cybersecurity

The UL 2900 is a software cybersecurity standard, specifically a Cybersecurity Assurance Program or CAP, released by Underwriter’s Laboratory (UL). Yes, this is the same company whose...

Read Article
Using Static Analysis with Legacy Code

The adoption of any new tool into an existing software development process and established code base is always a challenge. Static analysis tools are no different but there are steps to...

Read Article
FDA Updates Guidance for Managing Cybersecurity for Medical Devices

In a previous post, I discussed the role of static analysis in managing cybersecurity for medical devices. It was in reaction to initial guidance published by the FDA in the document...

Read Article
GrammaTech Releasing Binary Analysis and Rewriting Interface into Open Source

...

Read Article
Open-source Tools for Binary Analysis and Rewriting

Unfortunately binary-only software is unavoidable; dependencies of active software projects, firmware and applications distributed without source access, or simply old software whose...

Read Article
56:28

Automotive Safety from the Ground Up Hardware, OS and Static Analysis

You need all the help you can get if you are the one responsible for building these complex safety-critical software systems on-time, on-budget, on-quality, on-security and with all of the required fe

Watch Video
28:56

Static Analysis for Automotive Webinar | Looking Beyond MISRA

Looking to learn more? Visit: https://www.grammatech.com/software-assurance/certifications-compliance/misra

Watch Video
58:20

Safety, Security, and Agile Development - Pick Any Three Webinar

People often connect safety and security with archaic development methodologies: strict processes, long development times, big budgets and waterfall development starting from requirements. However, th

Watch Video
11:16

Integration Between GrammaTech CodeSonar and Wind River Workbench | GrammaTech

With this integration, software developers can annotate and resolve the software vulnerabilities that CodeSonar highlights without leaving the Wind River Workbench development environment, thereby sig

Watch Video
1:18

GrammaTech CodeSonar 90 Second Overview

Learn how you can utilize the deepest static analysis to ensure your code is resilient in today's connected world.

Watch Video
23:33

Embedded World 2019 Presentation: Static Analysis for Safety and Security

Mark Hermeling, Senior Director of Product Marketing at GrammaTech, discusses how CodeSonar can be used to amp up safety and security measures in your software development life cycle.

Watch Video
Memory Safety Issues Are Still the Leading Source of Security Vulnerabilities

A recent headline was published in several technology news outlets, at ZDNet “Microsoft: 70 percent of all security bugs are memory safety issues” and Fudzilla, “More than 70 percent of...

Read Article
The Industrial Internet Reference Architecture and Security Framework

The Industrial Internet Consortium (IIC) is a non-profit, industry group that is investigating and proposing the standards needed for a successful deployment of the Industrial Internet...

Read Article
Static Analysis for Python in CodeSonar

In a previous post we discussed the continuing popularity of C and C++ as a programming language, the surveys referenced there showed that Python is more popular each year and is now...

Read Article
Embedded World 2019 Presentation: Static Analysis for Safety and Security

Read Article
Integrating Clang Static Analyzer with CodeSonar using SARIF

We have discussed the benefits of using SARIF, an open standard for exchanging static analysis results, in a previous post. Integration between tools is simplified by using this open...

Read Article
Loading More...

Latest Content

Linux Foundation’s ELISA Project to Bring Linux to Safety Critical Systems

The Linux Foundation’s announcement of the ELISA (Enabling Linux in Safety Applications) project was of interest to us because it requires a significant effort in evaluating open source...

Webinar Recording - What's New in CodeSonar 5.1?

Interested in upgrading to CodeSonar 5.1? In this webinar, Mark Hermeling, Senior Director of Product Marketing, will walk through all of the new features...

Easing the Adoption of Static Analysis into Existing Projects

DevSecOps - Integrating Static Application Security Tools (SAST) in DevSecOps

Static Analysis and UL 2900 Standard for Software Cybersecurity

The UL 2900 is a software cybersecurity standard, specifically a Cybersecurity Assurance Program or CAP, released by Underwriter’s Laboratory (UL). Yes, this is the same company whose...

Using Static Analysis with Legacy Code

The adoption of any new tool into an existing software development process and established code base is always a challenge. Static analysis tools are no different but there are steps to...

FDA Updates Guidance for Managing Cybersecurity for Medical Devices

In a previous post, I discussed the role of static analysis in managing cybersecurity for medical devices. It was in reaction to initial guidance published by the FDA in the document...

GrammaTech Releasing Binary Analysis and Rewriting Interface into Open Source

...

Open-source Tools for Binary Analysis and Rewriting

Unfortunately binary-only software is unavoidable; dependencies of active software projects, firmware and applications distributed without source access, or simply old software whose...

Automotive Safety from the Ground Up Hardware, OS and Static Analysis

You need all the help you can get if you are the one responsible for building these complex safety-critical software systems on-time, on-budget, on-quality, on-security and with all of the required fe

Static Analysis for Automotive Webinar | Looking Beyond MISRA

Looking to learn more? Visit: https://www.grammatech.com/software-assurance/certifications-compliance/misra

Safety, Security, and Agile Development - Pick Any Three Webinar

People often connect safety and security with archaic development methodologies: strict processes, long development times, big budgets and waterfall development starting from requirements. However, th

Integration Between GrammaTech CodeSonar and Wind River Workbench | GrammaTech

With this integration, software developers can annotate and resolve the software vulnerabilities that CodeSonar highlights without leaving the Wind River Workbench development environment, thereby sig

GrammaTech CodeSonar 90 Second Overview

Learn how you can utilize the deepest static analysis to ensure your code is resilient in today's connected world.

Embedded World 2019 Presentation: Static Analysis for Safety and Security

Mark Hermeling, Senior Director of Product Marketing at GrammaTech, discusses how CodeSonar can be used to amp up safety and security measures in your software development life cycle.

Memory Safety Issues Are Still the Leading Source of Security Vulnerabilities

A recent headline was published in several technology news outlets, at ZDNet “Microsoft: 70 percent of all security bugs are memory safety issues” and Fudzilla, “More than 70 percent of...

The Industrial Internet Reference Architecture and Security Framework

The Industrial Internet Consortium (IIC) is a non-profit, industry group that is investigating and proposing the standards needed for a successful deployment of the Industrial Internet...

Static Analysis for Python in CodeSonar

In a previous post we discussed the continuing popularity of C and C++ as a programming language, the surveys referenced there showed that Python is more popular each year and is now...

Embedded World 2019 Presentation: Static Analysis for Safety and Security

Integrating Clang Static Analyzer with CodeSonar using SARIF

We have discussed the benefits of using SARIF, an open standard for exchanging static analysis results, in a previous post. Integration between tools is simplified by using this open...