Compuware Debuts New Analysis Tool

Compuware released Jan. 30 a new version of its security analysis tool, DevPartner SecurityChecker 2.0, which will support Microsoft's Visual Studio 2005.

Compuware released Jan. 30 a new version of its security analysis tool, DevPartner SecurityChecker 2.0, which will support Microsofts Visual Studio 2005.

Compuware also announced a new security assessment offering to help organizations improve application security.

At VSLive in San Francisco, Compuware launched DevPartner SecurityChecker 2.0, which enables development and testing teams to improve the quality of their Microsoft ASP.Net Web applications by quickly locating and fixing security vulnerabilities early in the application life cycle, saving time and money.

DevPartner SecurityChecker helps organizations secure applications by automatically identifying security vulnerabilities through a combination of white-box (code scanning and run-time analysis) and black-box (penetration testing) testing techniques and pinpoints the location of the vulnerability in source code, according to John Carpenter, the tools product manager.

New features include full integration with Visual Studio 2005 and Microsoft .Net Framework 2.0. Other features include the reduction of false-positive reporting; improvements to creating and managing discovery maps; and improvements to existing SQL Injection, XSS (Cross-Site Scripting) and Parameter Tampering vulnerability detection, Carpenter said. A discovery map tells where all the security features are in your application, said Ken Cowan, DevPartner product line manager.