-
Notifications
You must be signed in to change notification settings - Fork 1
Expand file tree
/
Copy pathindex.htm
More file actions
183 lines (161 loc) · 7.56 KB
/
index.htm
File metadata and controls
183 lines (161 loc) · 7.56 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
<!DOCTYPE html>
<html lang="en">
<head>
<title>Home - Roslyn Security Guard</title>
<meta charset="utf-8">
<link href="css/bootstrap.min.css" media="screen" rel="stylesheet">
<link href="css/bootstrap-theme.min.css" media="screen" rel="stylesheet">
<link href="//fonts.googleapis.com/css?family=Ubuntu:400,500,700,400italic" rel="stylesheet" type="text/css">
<link href="css/font-awesome.min.css" media="screen" rel="stylesheet">
<!-- Custom styles -->
<link href="css/styles.css" media="screen" rel="stylesheet">
<!-- Mobile support -->
<meta content="width=device-width, initial-scale=1" name="viewport">
<meta property="og:locale" content="en_US" />
<meta property="og:type" content="website" />
<meta property="og:title" content="Roslyn Security Guard" />
<meta property="og:description" content="Security Guard is a set of Roslyn analyzers that aim to help security audits on .NET applications." />
<meta property="og:site_name" content="Roslyn Security Guard" />
<meta name="twitter:card" content="summary" />
<meta name="twitter:description" content="Security Guard is a set of Roslyn analyzers that aim to help security audits on .NET applications." />
<meta name="twitter:title" content="Roslyn Security Guard" />
<meta name="keywords" content="security,owasp,csharp,c#,vb,.net,dotnet,asp.net,mvc,scanner,vulnerability,injection" />
<!-- IE 6-8 support of HTML 5 elements -->
<meta http-equiv="X-UA-Compatible" content="IE=edge">
<!--[if lt IE 9]>
<script src="https://oss.maxcdn.com/html5shiv/3.7.2/html5shiv.min.js"></script>
<![endif]-->
<script type="text/javascript">
window.location.href = "https://security-code-scan.github.io/";
</script>
</head>
<body>
<a id="skippy" class="sr-only sr-only-focusable" href="#content"><div class="container"><span class="skiplink-text">Skip to main content</span></div></a>
<header class="navbar navbar-default navbar-fixed-top" id="top" role="banner">
<div class="container">
<div class="navbar-header">
<button class="navbar-toggle collapsed" type="button" data-toggle="collapse" data-target="#vertx-navbar-collapse">
<span class="sr-only">Toggle navigation</span>
<span class="icon-bar"></span>
<span class="icon-bar"></span>
<span class="icon-bar"></span>
</button>
<a href="/" class="navbar-brand"><img alt="Security Guard Logo" src="images/logo-small.png"></a>
</div>
<nav class="collapse navbar-collapse" id="vertx-navbar-collapse">
<ul class="nav navbar-nav navbar-right">
<li><a href="index.htm">Download</a></li>
<li><a href="#comingsoon">Tutorial</a></li>
<li><a href="rules.htm">Rules</a></li>
</ul>
</nav>
</div>
</header>
<div class="index-header" id="content">
<div class="container">
<div class="row">
<div class="col-sm-offset-2 col-sm-8 text-center">
<h2><b>Security Guard</b> is a set of roslyn analyzers that aim to help security audits on .<b>NET applications</b></h2>
<div class="buttons">
<a class="btn btn-default btn-lg btn-transparent btn-download"
href="https://marketplace.visualstudio.com/items?itemName=PhilippeArteau.RoslynSecurityGuard" role="button">
<i class="fa fa-download" aria-hidden="true"></i>
Download v2.3.0</a><br><br>
<span class="github-btn">
<iframe src="https://ghbtns.com/github-btn.html?user=dotnet-security-guard&repo=roslyn-security-guard&type=star&count=true&size=large"
frameborder="0" scrolling="0" width="130px" height="30px"></iframe>
<iframe src="https://ghbtns.com/github-btn.html?user=dotnet-security-guard&repo=roslyn-security-guard&type=fork&count=true&size=large"
frameborder="0" scrolling="0" width="130px" height="30px"></iframe>
</span>
</div>
</div>
</div>
</div>
</div>
<section id="features" class="feature-list">
<div class="container">
<div class="row">
<div class="col-lg-12 text-center">
<h2 class="section-heading">Features</h2>
</div>
</div>
<div class="row">
<div class="col-md-4 col-sm-6">
<h4><i class="fa fa-bug"></i> 29 bug patterns</h4>
It can detect <a href="rules.htm">29 vulnerability patterns</a> with 69 different signatures.
</div>
<div class="col-md-4 col-sm-6">
<h4><i class="fa fa-medkit"></i> Code fixes</h4>
Code fixes are automated refactoring to fix vulnerabilities at the source.
</div>
<div class="col-md-4 col-sm-6">
<h4><i class="fa fa-plug"></i> Integration</h4>
The Roslyn analyzers can be run from <a href="#">Visual Studio</a> 2015 and higher.
</div>
<div class="col-md-4 col-sm-6">
<h4><i class="fa fa-search"></i> Taint analysis</h4>
Taint analysis is the capability to track variables in the code flow and trace variable coming from user input. This helps reducing false positives.
</div>
<div class="col-md-4 col-sm-6">
<h4><i class="fa fa-cogs"></i> Continuous integration</h4>
It can be integrated to any continuous integration that supports <a target="_blank" href="https://msdn.microsoft.com/en-us/library/dd393574.aspx">MSBuild</a>.
</div>
<div class="col-md-4 col-sm-6">
<h4><i class="fa fa-github"></i> Open for contributions</h4>
The project is open-source and is <a target="_blank" href="https://github.com/dotnet-security-guard/roslyn-security-guard">open for contributions</a>.
</div>
</div>
</div>
</section>
<section id="feature-visual-studio">
<div class="highlight-gray">
<div class="container highlight highlight-left">
<div class="row">
<div class="col-md-5 col-sm-6">
<h2>Visual Studio integration</h2>
<p>
Scan your application for potential vulnerabilities directly from your IDE.
</p>
</div>
<div class="col-sm-offset-1 col-sm-6 text-right">
<img src="images/visual-studio-small.png">
</div>
</div>
</div>
</div>
</section>
<section id="sonarqube">
<div class="container highlight highlight-right">
<div class="row">
<div class="col-sm-8 code-samples">
<img src="images/cookie_fix_animation.gif" height="100%">
</div>
<div class="col-sm-4">
<h2>Code fixes</h2>
<p>
For some vulnerabilities, automatic code refactoring are provided. Patch vulnerabilities in few clicks.
</p>
</div>
</div>
</div>
</section>
<footer>
<div class="highlight-gray">
<div class="container footer text-center">
<p>.NET Security Guard is open source licensed under the <a href="https://www.gnu.org/licenses/lgpl-3.0.en.html">GNU Lesser General Public License 3.0 (LGPL)</a>.</p>
</div>
</div>
</footer>
<script src="//ajax.googleapis.com/ajax/libs/jquery/1.9.1/jquery.min.js"></script>
<script src="js/bootstrap.min.js"></script>
<!-- Google Analytics -->
<script>
(function(i,s,o,g,r,a,m){i['GoogleAnalyticsObject']=r;i[r]=i[r]||function(){
(i[r].q=i[r].q||[]).push(arguments)},i[r].l=1*new Date();a=s.createElement(o),
m=s.getElementsByTagName(o)[0];a.async=1;a.src=g;m.parentNode.insertBefore(a,m)
})(window,document,'script','https://www.google-analytics.com/analytics.js','ga');
ga('create', 'UA-90570539-1', 'auto');
ga('send', 'pageview');
</script>
</body>
</html>