VisualCodeGrepper V2.3.2 Activity
Code security review tool for C/C++, C#, VB, PHP, Java, PL/SQL, COBOL.
Brought to you by:
npdunn
Activity for VisualCodeGrepper V2.3.2
-
VisualCodeGrepper V2.3.2 released /VCG-Setup.msi
-
-
-
-
-
-
-
-
kiny.shiue posted a comment on discussion General Discussion
Hi , When we full scan package body , we will get the below error message and we have no idea why get the standard error . the failure to use authid current_user allows a user to run functions from this package in the role of the definer
-
phillip andrews posted a comment on discussion General Discussion
I am attempting to demonstrate that Page ValidateRequest="false" is detected by VCG. I have this in my default.aspx file in the project I am scanning, but it is not being detected. I am using the standard csfunctions.conf file tat has the following in; <%@ ValidateRequest="false" %>=>[2]The application appears to deliberately de-activate the default .NET input validation functionality. However it is not reporting as being detected. Any ideas? Regards Phill
-
Sri modified a comment on discussion General Discussion
Hello, I'm trying to find a tool that will scan code for the use of SHA1 encryption...
-
Hello, I'm trying to find a tool that will scan code for the use of SHA1 encryption...
-
Rakesh modified a comment on discussion General Discussion
Can we run VisualCodeGrepper on Linux? I am trying to use it in CentOS which is running...
-
Can we run VisualCodeGrepper on Linux? I am trying to use it in CentOS which is running...
-
Arthur Lin posted a comment on discussion General Discussion
Dear SIR I used VCG to scan my C# code, and got the result of 7 counts of severity...
-
NetX123 posted a comment on discussion General Discussion
In the Summary Table the memory based detections such as "new without delete" "mallloc...
-
Sorry to bombard you with bug reports, but here's some more observations: 1) strcat...
-
Performing a Full Scan, does not refresh the Results Tab. So for example after performing...
-
Hi, I've just tried your application and found that it is reporting many false positive...
-
Rajesh Chilambi posted a comment on discussion General Discussion
Does this tool detect places where we do <%= in asp.net. This also leads to XSS and...
-
-
-
N1ckDunn posted a comment on discussion General Discussion
Thanks Nikki. I haven't put in any C# checks for integer issues. I'm assuming you...
-
Nikki posted a comment on discussion General Discussion
Does VCG (C#) check for Integer Arithmetic Issues? Awesome tool too!
-
Yet another bugfix to prevent failure to import bad functions from config files when...
-
Yet another bugfix to prevent failure to import bad functions from config files when...
-
The latest release, V2.0.1, is a bug-fix to correct issues with scanning for banned...
-
The latest release is a bug-fix to correct issues with scanning for banned functions...
-
I've (finally) put the VCG source code here: https://github.com/nccgroup/VCG
-
I'll take a look at implementing that in the near future. I'm aware that bigger projects...
-
Hi Raymond That should be fairly simple so I'll add it in to the next release. Thanks...
-
Raymond posted a comment on discussion General Discussion
Would love an option for the "Banned/Insecure Functions" to display the line of code...
-
Alex Bereznyi posted a comment on discussion General Discussion
Is there an option for multi-threaded processing? It would be very useful for scanning...
-
The version which was uploaded yesterday did not write out correctly to the command...
-
Hi Todd The application is written with VisualStudio so any errors like this are...
-
oakleyx posted a comment on discussion General Discussion
Awesome! Thanks!
-
toddgrotenhuis posted a comment on discussion General Discussion
Extra information: I was working in a Windows VM which could see the OSX files (where...
-
I keep getting this error when trying to load a file, but and not seeing anything...
-
Hi I'm currently testing the latest version which should include commandline parameters...
-
Hi, Any updates on this? This would be a great feature. We would like to implement...
-
Hi Raymond Firstly, thanks for the compliment. The 'mark as false findings' phrase...
-
First and foremost thanks for a great product - one of my favorite open source tools...
-
Patrick Tucker posted a comment on discussion General Discussion
That would be great!
-
Hi Pat I'll take a look at implementing a check for this in the next release. Ni...
-
We used VCG 1.6.1.0 to scan some code that we inherited to look for security vulnerabilities...
-
Thanks for the information Rodrigo. I'm currently working on bug-fixes and new features...
-
Hi Rodrigo It makes a fairly simple check for Struts validation in any XML files...
-
Rodrigo Ruiz modified a comment on discussion General Discussion
Hi, VCG generates a lot of results with the following message: The application appears...
-
Hi, VCG generates a lot of results with the following message: The application appears...
-
Hi, First things first, thanks for this tool. It is a great work. Now, I think I...
-
New version 1.6.1 added with improved GUI options and additions to PHP scanning.
-
Hi Unfortunately I haven't added that functionality yet. I'm planning to do this...
-
VCG-user posted a comment on discussion General Discussion
Hi VCG-Team, We are currently looking for a tool that would do a code quality check...
-
Mark Freedman posted a comment on discussion General Discussion
Does VisualCodeGrepper support running automatically via commandline? I'd like to...
-
Michael Serafin posted a comment on discussion General Discussion
When doing a full scan against one of my projects it comes across one of my files...
1
