Home » Static Application Security Testing (SAST) Software » Xanitizer

Xanitizer

Xanitizer
Free Trial
Xanitizer specializes in security analysis of web applications and also considers the behavior of the applied web frameworks. By means of static code analysis the tool systematically scans the program code of an entire system for security vulnerabilities. Xanitizer investigates not only the source code, but also configuration files and templates for rendering the HTML output.
Homepage Linkedin

Languages supported: English

10.0/10 (Expert Score) ★★★★★
Product is rated as #2 in category Static Application Security Testing (SAST) Software
Ease of use
Support
Ease of Setup
Leave a review ↓

Images

Check Software Images

Xanitizer is the essential tool for security auditors. It specializes in security analysis of web applications and also considers the behavior of the applied web frameworks. Xanitizer investigates the code of an application for security vulnerabilities and also checks the server configuration files for misconfigurations.

Xanitizer can easily be integrated into the CI/CD process, automatically and regularly checking the application code to prevent that security vulnerabilities are introduced into the production code.

Xanitizer
Xanitizer
Free Trial

Related Software
Added to wishlistRemoved from wishlist 0
Snyk

Snyk

Added to wishlistRemoved from wishlist 0
CodeScan

CodeScan

Added to wishlistRemoved from wishlist 0
CodeSonar

CodeSonar

Added to wishlistRemoved from wishlist 0
bugScout

bugScout

Related Categories
Show more categories

Customer Reviews

Xanitizer Reviews

Bernhard H.

Advanced user of Xanitizer
★★★★★
Professional Tool for Professional Results

What do you like best?

For me, Xanitizer is my must-have to do source code analysis for Java applications. The taint analysis, based on a data flow analysis. Besides of the classic static source code analysis, which is pattern based, Xanitizer analyses the source code from the user's entry points as the source all the ways through to the sinks. The findings are extraordinary good, much better than in the other tools we evaluated.

I like also the integration of the OWASP Dependency Check and FindBugs, which brings up even more security relevant findings.

What do you dislike?

It is limited to Java. Up until now to backend Java, but I know that they also work on JS analysis.

But to be good as a tool, it is better to focus on one field and do well with it, instead of working on all languages and having poor results.

What problems are you solving with the product? What benefits have you realized?

We do source code analysis with Xanitizer as a service for our internal and external customers, focusing on software security. This can't be done by reading all the code, but you rather have to divide and conquer using clever tools.

Review source: G2.com

Leave a reply

Your total score

B2B Software Guide provides unbiased software reviews to help business owners choose the right software for their needs.

DMCA.com Protection Status
B2B Software Guide