Optimized solution in finding vulnerabilities based on source code analysis

Abstract

Static analysis is a well-known technique to detect software vulnerabilities. To ensure that static analysis can detect vulnerabilities, we need to have updated issues modeling, or the rule sets that model the involved patterns or methods relating to vulnerabilities. However, as the number of software vulnerabilities is on the rise in the current year, static analysis tools cannot produce a completely accurate result. Therefore our team decided to integrate the static analysis toolkit to give it a more complete and more accurate result. From the project, we integrated the tools and developed them to be able to use online which can be easier for users to use without having to install them.