Extend CWE Testing.
Document Compliance.

The Common Weakness Enumeration (CWE) standard is used to review software, to improve its security, quality and reliability.

Some CWE rules can be fully tested automatically via static analyzers. At the other extreme are rules that don't apply to C, C++ or Java code.

In the middle are a large number of rules that are most efficiently tested by static analysis augmented by source code analysis and inspection. These are addressed by Imagix 4D, using a CWE guided checklist.

Guided Code Review
Checklist guided code review leverages user inspection with static analysis to automate: Source Code Inspection Process Management Document Generation Audit Trail Reuse of Test Artifacts
Read More

Supported CWE Rules
Over 200 CWE rules are checked, such as: CWE-116 Improper Encoding or Escaping of Output CWE-311 Missing Encryption of Sensitive Data CWE-408 Incorrect Behavior Order: Early Amplification
Read More

Download Now
Use the free trial to test drive Imagix 4D, and evaluate how it analyzes your source code. The tool supports language extensions of: C++98 through C++23 Visual Studio and gcc/g++ Embedded Cross-Compilers JNI, RTOS's
Download

General	Imagix 4D Features	Downloads
Home	Source Code Analysis	Software Download
Contact & Partners	Static Analysis & Metrics	Plugins Download
About Imagix	Delta Analysis	Data Sources Download
	Code Review	Installation Instructions
	Document Generation

Support	Resources	Application Notes
Documentation	Blog	Subsystem Architecture Diagrams
Compatibility	App Notes & Videos	UML Class Diagrams
Contact Us	Reverse Engineering	Class Design, Dependencies and Usage
	Software Maintenance	Function and Variable Dependencies
	Software Metrics	Function Internal Control Flow
	C / C++ Language	+ many more

Extend CWE Testing.Document Compliance.

Guided Code Review

Supported CWE Rules

Download Now

Home

Imagix 4D Features

Software Downloads

Support

Resources

About Imagix

Extend CWE Testing.
Document Compliance.