方法证据记录
Static Application Security Testing
Static Application Security Testing (SAST) is a security analysis technique that examines source code or compiled binaries without executing the program to identify vulnerabilities, code quality issues, and security flaws. Developed in the 2000s, SAST analyzes code structure, data flow, and control flow to detect potential bugs such as SQL injection, buffer overflows, and insecure cryptographic usage. SAST is widely integrated into development workflows as a shift-left security practice, enabling early detection of vulnerabilities before code reaches production.
源记录
引文逐字复制自方法源记录。这些引文不代表任何层级的验证。
Static Application Security Testing (SAST)
分类方法记录 · ml-model / cryptography
- Chess, B., & West, J. (2007). Secure Programming with Static Analysis. Addison-Wesley Professional. · ISBN 978-0321424778
- Walz, C., Seifert, H. P., & Fischer, A. (2010). Static source code analysis tools. In Secure Software Development (SANS Institute), pp. 1-20. · URL
精选声明
声明已持久化到证据分类账中,每个声明都有自己的评估。
尚无精选声明
当分类账中没有声明时,此视图不会自行创建声明评估。
相关方法
从方法图中生成,显示为机器建议的关系 — 不推断任何证据声明。