Automated source code analysis for the developer desktop
Enterprise-proven source code analysis is now available as a standalone developer desktop tool. Find critical defects and security vulnerabilities in your Java code efficiently with very high accuracy.
Find critical Java defects and security vulnerabilities
Klocwork automatically looks for hundreds of different defects and security vulnerabilities in Java, including:
For a full explanation of the defects and security vulnerabilities detected by Klocwork Developer for Java, refer to the Online Documentation on our Technical Support page.
IDE Integration
Eclipse
Klocwork is an Eclipse Foundation Member and an Eclipse Add-In-Provider. Klocwork Developer for Java uses the Eclipse Plug-in framework to fully integrate with the Eclipse Java IDE.
IBM® Rational® Application Developer
Klocwork Developer for Java is certified as "Ready For Rational" for use with IBM Rational Application Developer.
IDEs based on Eclipse 3.x can also make use of the KDJ Eclipse plugin including Borland JBuilder 2007, IBM WebSphere Studio, SAP Netweaver Developer Studio, and others.
Java Analysis Aligned with OWASP
Klocwork detects all OWASP Top 10 vulnerabilities which can be found through source code analysis, including:
Customizable
Customize the code analysis to suit your needs. Klocwork Developer for Java allows you to modify specific defect parameters to focus on the errors you want to find and to reduce the detection of errors you aren't interested in. You can change sources (defect start points), sinks (defect end points), propagations (defect escape points) and threshold values. For more information about Product Customization, refer to the Online Documentation on our Technical Support page.
Low Cost, Enterprise Proven
Klocwork Developer for Java is based on Klocwork's award-winning, enterprise proven, static analysis technology but is available to individual developers for only $299USD per year.
Enterprise-proven source code analysis is now available as a standalone developer desktop tool. Find critical defects and security vulnerabilities in your Java code efficiently with very high accuracy.
Find critical Java defects and security vulnerabilities
Klocwork automatically looks for hundreds of different defects and security vulnerabilities in Java, including:
- Array index is out of range
- Cross Site Scripting
- NULL pointer exception
- Process Injection
- Resource Leaks
- SQL Injection
- Un-validated inputs
For a full explanation of the defects and security vulnerabilities detected by Klocwork Developer for Java, refer to the Online Documentation on our Technical Support page.
)
EclipseKlocwork is an Eclipse Foundation Member and an Eclipse Add-In-Provider. Klocwork Developer for Java uses the Eclipse Plug-in framework to fully integrate with the Eclipse Java IDE.
IBM® Rational® Application DeveloperKlocwork Developer for Java is certified as "Ready For Rational" for use with IBM Rational Application Developer.
IDEs based on Eclipse 3.x can also make use of the KDJ Eclipse plugin including Borland JBuilder 2007, IBM WebSphere Studio, SAP Netweaver Developer Studio, and others.
Java Analysis Aligned with OWASP
Klocwork detects all OWASP Top 10 vulnerabilities which can be found through source code analysis, including:
- Unvalidated Input
- Broken Access Control
- Broken Authentication and Session Management
- Cross Site Scripting
- Buffer Overflow
- Injection Flaws
- Improper Error Handling
- Insecure Storage
- Application Denial of Service
Customizable
Customize the code analysis to suit your needs. Klocwork Developer for Java allows you to modify specific defect parameters to focus on the errors you want to find and to reduce the detection of errors you aren't interested in. You can change sources (defect start points), sinks (defect end points), propagations (defect escape points) and threshold values. For more information about Product Customization, refer to the Online Documentation on our Technical Support page.
Low Cost, Enterprise Proven
Klocwork Developer for Java is based on Klocwork's award-winning, enterprise proven, static analysis technology but is available to individual developers for only $299USD per year.