31 October 2006 | 11,075 views

PMD – Java Source Code Scanner

Want to Learn Penetration Testing

Continuing with the series of tools I’ve been posting on source code auditing and application security, here is PMD a Java Source Code Scanner.

PMD scans Java source code and looks for potential problems like:

  • Possible bugs – empty try/catch/finally/switch statements
  • Dead code – unused local variables, parameters and private methods
  • Suboptimal code – wasteful String/StringBuffer usage
  • Overcomplicated expressions – unnecessary if statements, for loops that could be while loops
  • Duplicate code – copied/pasted code means copied/pasted bugs

PMD is integrated with JDeveloper, Eclipse, JEdit, JBuilder, BlueJ, CodeGuide, NetBeans/Sun Java Studio Enterprise/Creator, IntelliJ IDEA, TextPad, Maven, Ant, Gel, JCreator, and Emacs.

You can read more about PMD at the homepage here.

You can download everything from here:

Download PMD

Post to Twitter Post to Facebook Post to Google Buzz Post to Delicious Post to Digg Post to Reddit Post to StumbleUpon


Tags: , , , , , , , , , , , , , , , , ,


# Posted in: Programming, Security Software | * Comments Off


Recent in Programming:
- Agnitio v2.0 Released – Code Security Review Tool
- Metasploitable – Test Your Metasploit Against A Vulnerable Host
- ksymhunter – Routines For Hunting Down Kernel Symbols

Related Posts:
- Angry IP Scanner – Cross Platform Port Scanner
- FindBugs – Find Bugs in Java Programs
- LAPSE Sourcecode Analysis for JAVA J2EE Web Applications

Most Read in Programming:
- FLARE – Flash Decompiler to Extract ActionScript - 51,530 views
- 4f: The File Format Fuzzing Framework - 23,568 views
- Modern Exploits – Do You Still Need To Learn Assembly Language (ASM) - 19,412 views

Advertise on Darknet


Comments are closed.