Bug-Injector Research Receives IEEE SCAM 2019 Distinguished Paper

During the International Working Conference on Source Code Analysis & Manipulation (SCAM), a GrammaTech research publication...

C was Programming Language of the Year 2019

About a year and a half ago, I was discussing the relative popularity of C and C++ in the face of relative newcomers Python,...

Static Analysis in Automotive SPICE

The Automotive SPICE (software process improvement and capability determination) is a software development process standard...

Using CodeSonar to Evaluate Software for the 2019 CWE Top 25 Most Dangerous Software Errors

The Common Weakness Enumeration (CWE) Top 25 most dangerous software errors, a.k.a., the CWE Top 25 is a list of the most...

Tainted Data and Format String Attack Strike Again

A recent code execution vulnerability (we also call this a code injection vulnerably) was discovered in Palo Alto Networks’...