{"id":3162,"date":"2011-08-10T11:13:11","date_gmt":"2011-08-10T10:13:11","guid":{"rendered":"https:\/\/www.darknet.org.uk\/?p=3162"},"modified":"2015-09-09T19:37:09","modified_gmt":"2015-09-09T11:37:09","slug":"agnitio-v2-0-released-code-security-review-tool","status":"publish","type":"post","link":"https:\/\/www.darknet.org.uk\/2011\/08\/agnitio-v2-0-released-code-security-review-tool\/","title":{"rendered":"Agnitio v2.0 Released &#8211; Code Security Review Tool"},"content":{"rendered":"<p>It&#8217;s been a while since we&#8217;ve mentioned Agnitio, it was earlier this year in March: <a href=\"https:\/\/www.darknet.org.uk\/2011\/03\/agnitio-v1-2-manual-security-code-review-tool\/\">Agnitio v1.2 \u2013 Manual Security Code Review Tool<\/a>.<\/p>\n<p>The author notified me of a new version that was recently released with quite a few additions. For those not familiar with it, Agnitio is a tool to help developers and security professionals conduct manual security code reviews in a consistent and repeatable way. Agnitio aims to replace the adhoc nature of manual security code review documentation, create an audit trail and reporting.<\/p>\n<p><strong>Changes in V2.0<\/strong><\/p>\n<p>The major changes in v2.0 is the addition of a code analysis module which comes with Android and iOS rules, an editor for the checklist questions and the ability to create\/edit\/remove code analysis rules.<\/p>\n<ul>\n<li> Fixed verify report button bug. It used to make the app crash if the report path field was empty because it didn\u2019t check if it was empty before trying to use the field value.<\/li>\n<li>    Delete profile functionality added on the \u201cview profiles\u201d tab. Some users requested this functionality.<\/li>\n<li>    Removed hard coded filesystem paths and database names\/locations from the code and make them configuration items.<\/li>\n<li>    Data editor for both principles and checklist guidance sections. This allows users to customise the guidance using their own languages, guidance text etc.<\/li>\n<li>    Increase the max size value of the text boxes on the principles guidance tab to allow more information to be entered by users.<\/li>\n<li>    More accurate error on the profile creation tab \u2013 specify exactly what fields have been missed rather than listing all.<\/li>\n<li>    Added \u201cAbout\u201d form with info, license, credits etc<\/li>\n<li>    Regular expressions expanded to include a wider range of characters including non English characters.<\/li>\n<li>    Turn the \u201cother\u201d language box red if the user clicks save with the other check box ticked but not language entered on the create and view profile tabs.<\/li>\n<li>    Metrics tab now \u201creturns\u201d if only one app is available rather than trying to load all graphs and throwing a separate error for each one.<\/li>\n<\/ul>\n<script async src=\"https:\/\/pagead2.googlesyndication.com\/pagead\/js\/adsbygoogle.js?client=ca-pub-3033787195489589\"\r\n     crossorigin=\"anonymous\"><\/script>\r\n<!-- Darknet Responsive Post Ad Links [previously link ad unit] -->\r\n<ins class=\"adsbygoogle\"\r\n     style=\"display:block\"\r\n     data-ad-client=\"ca-pub-3033787195489589\"\r\n     data-ad-slot=\"5456620019\"\r\n     data-ad-format=\"auto\"><\/ins>\r\n<script>\r\n     (adsbygoogle = window.adsbygoogle || []).push({});\r\n<\/script>\n<p>The author is always interested in feedback and has integrated a lot of it into v2.0 of Agnitio, if you want to give some suggestions\/bug reports or whatever after using the tool you can do so via the Security Ninja blog <a href=\"https:\/\/www.securityninja.co.uk\/contact-us\/\">here<\/a>, or on Twitter <a href=\"https:\/\/twitter.com\/#!\/securityninja\">@securityninja<\/a>.<\/p>\n<p>You can download Agnitio v2.0 here:<\/p>\n<p><a href=\"http:\/\/downloads.sourceforge.net\/project\/agnitiotool\/v2.0\/Agnitio%20v2.zip?r=http%3A%2F%2Fsourceforge.net%2Fprojects%2Fagnitiotool%2F&#038;ts=1312970717&#038;use_mirror=ncu\">Agnitio v2.zip<\/a><\/p>\n<p>Or read more <a href=\"http:\/\/sourceforge.net\/projects\/agnitiotool\/\">here<\/a>.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>It&#8217;s been a while since we&#8217;ve mentioned Agnitio, it was earlier this year in March: Agnitio v1.2 \u2013 Manual Security Code Review Tool. The author notified me of a new version that was recently released with quite a few additions. For those not familiar with it, Agnitio is a tool to help developers and security [&hellip;]<\/p>\n","protected":false},"author":25,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_seopress_robots_primary_cat":"","_seopress_titles_title":"","_seopress_titles_desc":"","_seopress_robots_index":"","_genesis_hide_title":false,"_genesis_hide_breadcrumbs":false,"_genesis_hide_singular_image":false,"_genesis_hide_footer_widgets":false,"_genesis_custom_body_class":"","_genesis_custom_post_class":"","_genesis_layout":"","footnotes":""},"categories":[12,29,11],"tags":[6510,4336,6507],"featured_image_src":null,"featured_image_src_square":null,"author_info":{"display_name":"Darknet","author_link":"https:\/\/www.darknet.org.uk\/author\/darknet\/"},"_links":{"self":[{"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/posts\/3162"}],"collection":[{"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/users\/25"}],"replies":[{"embeddable":true,"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/comments?post=3162"}],"version-history":[{"count":0,"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/posts\/3162\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/media?parent=3162"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/categories?post=3162"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.darknet.org.uk\/wp-json\/wp\/v2\/tags?post=3162"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}