/Static-analysis-tools

This repository contains Technical report related to the paper entitled "Detecting security vulnerabilities with static analysis - a case study"

Static-analysis-tools

This repository contains Technical report related to the article entitled "Detecting Security Vulnerabilities with static analysis - a case study""

There are two files in this repository: 1)CWEs Rule Detectors.txt: Technical report of the six Common Weaknesses Enumeration rules detectors exist in PMD, SpotBugs(SB), Find Security Bug (FSB), and SonarQube Community Edition (SS) along with their number and categories. 2)The analysis workflow.jpg: The flow chart of the analysis for obtaining the rule list (green part) ,and the results (blue part) of the study.