Latest Content

The global increase in connectivity and reliance on software is opening doors to exploits daily. Software quality and security is more important now than ever before.

CodeSonar 5 is released with support for C# and Visual Studio, and vulnerability assessments

C# Support CodeSonar 5 enters the world of .NET and C# programming, next to the existing support for C, C++ and Java. This gives CodeSonar coverage of the most popular programming...

Read Article
GrammaTech Releases CodeSonar 5 With Usability Focus

...

Read Article
The Dangers of Copy and Paste

INTRODUCTION: Copying and pasting code (“copy-paste”) is a primitive but very common form of software re-use. Unfortunately, this practice is fraught with dangers not least of which...

Read Article
Tech Preview of CodeSonar and VectorCAST Integration

We've built a powerful integration between GrammaTech CodeSonar and Vector Informatik VectorCAST/C++ that provides advanced static analysis within the VectorCAST/C++ environment....

Read Article
DARPA Awards GrammaTech $6.2M for Autonomous Botnet Neutralization Research

...

Read Article
Integrating Static Analysis into Continuous Integration/Continuous Deployment

Continuous integration (CI) and continuous delivery (CD) are gaining traction in software development as teams try to streamline their development processes to avoid the “big bang”...

Read Article
Technical Debt is Stifling Innovation; but, There is Hope

Apple’s recent announcement at their recent Worldwide Developers’ Conference stated they were going to be reducing the feature count in future versions of iOS and concentrate on...

Read Article
Webinar with AFuzion: Safety, Security, and Agile Development - Pick Any Three

People often connect safety and security with archaic development methodologies: strict processes, long development times, big budgets and...

Read Article
Cybersecurity Alerts for Medical Devices are on the Rise – A Cause for Concern, but what can be done?

The Department of Homeland Security (ICS-CERT) recently issued more warnings about cybersecurity vulnerabilities which has become all too common in recent months. In most cases, these...

Read Article
ScaleIL Becomes Exclusive Israeli Distributor of GrammaTech’s CodeSonar Static Analysis Tool

...

Read Article
Tool Chain Qualification in Safety Critical Systems

Safety critical software usually entails some kind of certification, qualification or approval from a standards body in order to be productized and used by the public. The requirements...

Read Article
On-Demand Webinar: Automotive 042418

When people talk about static analysis for automotive application the term MISRA-C (Motor Industry Software Reliability Association) immediately...

Read Article
Surprising Uses of Static Analysis: Performance Optimization

Static analysis is typically used to find errors in software, often serious bugs, such as buffer overruns that lead to quality or security issues. GrammaTech CodeSonar is an advanced...

Read Article
Detecting the Beep Vulnerability with CodeSonar

The linux beep utility is a small utility command to literally send a tone to the user’s speaker. A subtle error in the utility gives arise to a local privilege escalation that was...

Read Article
On-Demand Webinar: Extending Static Analysis to Include Third Party Libraries

Twenty-five percent of embedded projects use content from commercial third parties. This content is often delivered in binary, not in source....

Read Article
Automatic Detection of Proprietary Coding Rule Violations

Guest Blog by Rob Daulton, Consultant at Valbrio

Read Article
The Anatomy of a Segmentation Fault – A real life example

I was browsing StackOverflow.com and came across a user running into a segmentation fault in their programming assignment. This problem looked like an ideal case for static analysis....

Read Article
Using Dynamic Metrics with Static Analysis

GrammaTech CodeSonar is primarily a static analysis tool, but there are some circumstances where it is useful to present dynamic information alongside static results. For example,...

Read Article
New Features of C++: Small but Useful Features

C++11 added multiple smaller language features as well as the marquee features we've already talked about. Despite these being smaller language features, they're still powerful...

Read Article
Embedded World 2018 Presentation: Static Analysis ++

vfff Mark Hermeling details how we can make static analysis better using examples from GrammaTech's advanced static analysis tool, CodeSonar.

Read Article
Loading More...

Latest Content

CodeSonar 5 is released with support for C# and Visual Studio, and vulnerability assessments

C# Support CodeSonar 5 enters the world of .NET and C# programming, next to the existing support for C, C++ and Java. This gives CodeSonar coverage of the most popular programming...

GrammaTech Releases CodeSonar 5 With Usability Focus

...

The Dangers of Copy and Paste

INTRODUCTION: Copying and pasting code (“copy-paste”) is a primitive but very common form of software re-use. Unfortunately, this practice is fraught with dangers not least of which...

Tech Preview of CodeSonar and VectorCAST Integration

We've built a powerful integration between GrammaTech CodeSonar and Vector Informatik VectorCAST/C++ that provides advanced static analysis within the VectorCAST/C++ environment....

DARPA Awards GrammaTech $6.2M for Autonomous Botnet Neutralization Research

...

Integrating Static Analysis into Continuous Integration/Continuous Deployment

Continuous integration (CI) and continuous delivery (CD) are gaining traction in software development as teams try to streamline their development processes to avoid the “big bang”...

Technical Debt is Stifling Innovation; but, There is Hope

Apple’s recent announcement at their recent Worldwide Developers’ Conference stated they were going to be reducing the feature count in future versions of iOS and concentrate on...

Webinar with AFuzion: Safety, Security, and Agile Development - Pick Any Three

People often connect safety and security with archaic development methodologies: strict processes, long development times, big budgets and...

Cybersecurity Alerts for Medical Devices are on the Rise – A Cause for Concern, but what can be done?

The Department of Homeland Security (ICS-CERT) recently issued more warnings about cybersecurity vulnerabilities which has become all too common in recent months. In most cases, these...

ScaleIL Becomes Exclusive Israeli Distributor of GrammaTech’s CodeSonar Static Analysis Tool

...

Tool Chain Qualification in Safety Critical Systems

Safety critical software usually entails some kind of certification, qualification or approval from a standards body in order to be productized and used by the public. The requirements...

On-Demand Webinar: Automotive 042418

When people talk about static analysis for automotive application the term MISRA-C (Motor Industry Software Reliability Association) immediately...

Surprising Uses of Static Analysis: Performance Optimization

Static analysis is typically used to find errors in software, often serious bugs, such as buffer overruns that lead to quality or security issues. GrammaTech CodeSonar is an advanced...

Detecting the Beep Vulnerability with CodeSonar

The linux beep utility is a small utility command to literally send a tone to the user’s speaker. A subtle error in the utility gives arise to a local privilege escalation that was...

On-Demand Webinar: Extending Static Analysis to Include Third Party Libraries

Twenty-five percent of embedded projects use content from commercial third parties. This content is often delivered in binary, not in source....

Automatic Detection of Proprietary Coding Rule Violations

Guest Blog by Rob Daulton, Consultant at Valbrio

The Anatomy of a Segmentation Fault – A real life example

I was browsing StackOverflow.com and came across a user running into a segmentation fault in their programming assignment. This problem looked like an ideal case for static analysis....

Using Dynamic Metrics with Static Analysis

GrammaTech CodeSonar is primarily a static analysis tool, but there are some circumstances where it is useful to present dynamic information alongside static results. For example,...

New Features of C++: Small but Useful Features

C++11 added multiple smaller language features as well as the marquee features we've already talked about. Despite these being smaller language features, they're still powerful...

Embedded World 2018 Presentation: Static Analysis ++

vfff Mark Hermeling details how we can make static analysis better using examples from GrammaTech's advanced static analysis tool, CodeSonar.