security Analysis Tool

The customer company was established in 2015 as a spin-off of a global application security firm.

Our customer team has transformed the tools and intellectual property created by their controlling company into a suite of accessible, streamlined tools for a broad population of developers.

The customer company is committed to building and evolving security products that are efficient and easy for any developer to use, whether they’re maintaining enterprise-scale software or prototyping new applications for a startup.

download pdf

About the project

An analysis tool we had worked with is a client and server-side software, integrated into such development environments as Eclipse, Visual Studio and IntelliJ IDEA. Developers can be sure of building security from the very start and of detecting vulnerabilities as they appear, hence they can be fixed immediately. This analysis tool is a lightweight static analysis tool that detects vulnerabilities automatically and provides just-in-time security guidance to your developers in the process of coding. With this tool you can eliminate common security errors before they are committed to the code base or released to the public.

Challenges

  • Implement a plugin from the very beginning until the end with very strict deadlines of product delivery (5 months)

  • Creating plugins for IntelliJ IDEA was not a piece of cake, as it’s quite a narrow specialization area. It was new for us, but the challenge was handled successfully, meeting all customer objectives

  • We had to carry out a huge refactoring of the Eclipse plugin code to make the code scanner much faster than it was. And we’ve achieved magnificent improvements: about 50 times faster

Fast analysis

Analysis tool plugins can scan large projects with thousands of files in just a few seconds

Fits a Modern Agile Process
Sustain the tight feedback loops that you need for a modern agile environment
Builds Security Skills Every Day
Educate your developers about best practices in secure coding without leaving the coding environment
Customizes to your Organization
Create custom rules and guidance to support your enterprise-specific policies

Technologies

TeamCity
Java 7/8
Java Concurrency.
Java FX
Angular
Spring
Eclipse
Visual Studio
IntelliJ IDEA
MySQL

Do you have a similar project idea?

Contact us — and get a project cost estimate for free!
Contact us
Download PDF

© instinctools

instinctools.com

contact@instinctools.com