ARTICLE Dranzer v1.9.1 - Testing ActiveX Controls

Wednesday 26 August 2009 - 619 read - ( Keywords : Code Auditing , Dranzer )

CERT developed this open source tool so that software developers can test ActiveX controls for vulnerabilities before the software is released to the public.

GIF - 2.3 kb

Users must agree to the terms of a license before installing the tool.

More information regarding the history, motivations, and rationale for Dranzer is available in Vulnerability Detection in ActiveX Controls through Automated Fuzz Testing.


POSTSCRIPTUM

Download Dranzer v1.9.1


COMPLIANCE MANDATES

Code Auditing : PCI/DSS 6.3.6, 6.3.7, 6.6, SOX A12.8, GLBA 16CFR Part 314.4(b) and (2);FISMA RA-5, SC-18, SA-11 SI-2, and ISO 27001/27002 (12.4.1, 12.4.3, 12.5)


RELATED ARTICLES

Code Auditing, Dranzer,

26 August 2009 : Dranzer v1.9.1 - Testing ActiveX Controls