Secure Coding Analysis Tool - CODE-RAY XG

CODE-RAY XG is a static analysis tool that detects security vulnerabilities in source code during the early stages of software development. With highly accurate detection technology and a low false-positive rate, it strengthens software security.

• 

  Support for Multiple Programming Languages

  Supports a wide range of development languages, including Java, Android Java, JavaScript, JSP, ASP, C/C++, Objective-C, and more.
• 

  Relationship Analysis

  Visually presents the linkage information of source code related to identified security weaknesses.
• 

  Distributed Inspection Engine

  Inspection workload can be distributed through separate engines for developers and security personnel.
• 

  Exception Handling Approval Control

  Allows exception handling of detected security weaknesses through administrator approval.

Key Features

• Integrated Information Management

  Provides consolidated source code information through the main dashboard.
  

• Source Code Version Control

  Offers an SVN-based version control system.
  

• Project Workflow Control

  Enables security vulnerability analysis and history review within the assigned project scope.
  

• Static Analysis via Virtual Compilation

  Analyzes security weaknesses without requiring a development environment, and enhances detection accuracy through virtual compilation.
  

• User-Defined Tools

  Allows users to create custom rules via the GUI in addition to built-in system rules.
  

Diagnostic Items

Security vulnerabilities in source code are analyzed based on the 47 security weaknesses defined by the Ministry of the Interior and Safety (MOIS), OWASP TOP 10, and other standards.

Purchase and Maintenance Procedure

• Purchase Inquiry
• Consultation & Demo
• Contract Signing
• Product Delivery
• Technical Support & Maintenance