Angel Santoyo

Some code auditing tools!

2 min read

Hello!

Recently I’ve been reading up on code-auditing. Here are some different tools that I read are effective in assisting code-auditing.

This is all very new to me, so for my own purposes I am documenting what softwares exist out there so I can go explore and test them out. I will probably end up writing more blog posts about what I like/dislike about some of these.

Source Code navigators

Source code navigators are very similar to IDEs.(integrated development environments, like vscode) Instead they focus on readability and making the code easy to follow rather than building out the code. Here are some source code navigators below.

Free:

Paid:

Debuggers

Debuggers help understand code paths and put stop points in those paths. Here are some debuggers that exist. Debuggers can offer lots of features like Kernel Debugging, memory searching, scripting/automation methods, conditional breakpoints, thread support and quick-assembling, and network debugging.

Free:

Paid:

Binary Navigation Tools

Since some applications don’t give you the available source code you can read the program binary by reading in the assembly code. Binary navigation tools help make this less difficult. They offer lots of cool stuff like built in annotation, markers, graphing, structure definition and automation/scripting methods.

Paid:

Fuzz-testing Tools

Fuzz testing tools help find bugs that you miss during code-auditing and can help with time constraints in a pinch.

Bye!

These are some of the tools I read that help get started on code auditing. I’m excited to get started with some of these in my free time. Peace out!

Angel Santoyo

I’m Angel, an aspiring software/security engineer based in California who studied CS at CSUF. I write random stuff that I thought was cool to learn about here!