This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Difference between revisions of "OWASP Code Pulse Project"

From OWASP
Jump to: navigation, search
(Add related project link for OWASP Attack Surface Detector)
m (Announce Code Pulse 2.6.1)
Line 13: Line 13:
 
==How it works==
 
==How it works==
  
Code Pulse does its magic by monitoring the runtime of the target application using an agent-based approach. Code Pulse currently supports Java programs, up to Java 9, and .NET Framework programs for CLR versions 2 and 4. It can track code coverage details at the method or source code level to show what's being called and when. Although Code Pulse works for desktop applications, our current focus is on providing the best experience for web application testing. Code Pulse 2.6 incorporates the [https://www.owasp.org/index.php/OWASP_Attack_Surface_Detector_Project OWASP Attack Surface Detector] and helps you see code coverage details for the endpoints of a web application.
+
Code Pulse does its magic by monitoring the runtime of the target application using an agent-based approach. Code Pulse currently supports Java programs, up to Java 11, and .NET Framework programs for CLR versions 2 and 4. It can track code coverage details at the method or source code level to show what's being called and when. Although Code Pulse works for desktop applications, our current focus is on providing the best experience for web application testing. Code Pulse 2.6 incorporates the [https://www.owasp.org/index.php/OWASP_Attack_Surface_Detector_Project OWASP Attack Surface Detector] and helps you see code coverage details for the endpoints of a web application.
  
 
==Why Code Pulse?==
 
==Why Code Pulse?==
Line 34: Line 34:
  
 
== News and Events ==
 
== News and Events ==
* <span style="background: #66CCFF; font-size:85%;padding:2px;">12 Nov 2018</span> [https://github.com/secdec/codepulse/releases/tag/v2.6.0 Version 2.6.0 is out!]
+
* <span style="background: #66CCFF; font-size:85%;padding:2px;">04 Jan 2019</span> [https://github.com/codedx/codepulse/releases/tag/v2.6.1 Version 2.6.1 is out!]
* <span style="background: #66CCFF; font-size:85%;padding:2px;">08 Aug 2018</span> [https://github.com/secdec/codepulse/releases/tag/v2.5.0 Version 2.5.0 is out!]
+
* <span style="background: #66CCFF; font-size:85%;padding:2px;">12 Nov 2018</span> [https://github.com/codedx/codepulse/releases/tag/v2.6.0 Version 2.6.0 is out!]
* <span style="background: #66CCFF; font-size:85%;padding:2px;">13 Apr 2018</span> [https://github.com/secdec/codepulse/releases/tag/v2.0.0 Version 2.0.0 is out!]
+
* <span style="background: #66CCFF; font-size:85%;padding:2px;">08 Aug 2018</span> [https://github.com/codedx/codepulse/releases/tag/v2.5.0 Version 2.5.0 is out!]
  
 
== Contact Us ==
 
== Contact Us ==

Revision as of 20:18, 4 January 2019

Lab big.jpg

About Code Pulse

The OWASP Code Pulse Project is a tool that provides insight into the real-time code coverage of black box testing activities. It is a cross-platform desktop application that runs on most major platforms.

Codepulse-screenshot.png

How it works

Code Pulse does its magic by monitoring the runtime of the target application using an agent-based approach. Code Pulse currently supports Java programs, up to Java 11, and .NET Framework programs for CLR versions 2 and 4. It can track code coverage details at the method or source code level to show what's being called and when. Although Code Pulse works for desktop applications, our current focus is on providing the best experience for web application testing. Code Pulse 2.6 incorporates the OWASP Attack Surface Detector and helps you see code coverage details for the endpoints of a web application.

Why Code Pulse?

Whereas in the past it’s been very difficult to understand which parts of an application a DAST or manual penetration test covered, Code Pulse automatically detects the coverage information while the tests are being conducted and will even make it possible to understand the overlaps and boundaries of the different tools’ coverage.

Code Pulse presents the coverage information in a visual form to make it easy to understand at-a-glance which parts of an application have been covered, and how much. The real-time coverage feedback makes it easy to adjust testing activity based on the observed coverage. In addition for testing activities relying on multiple techniques (a variety of dynamic analysis tools for instance), it’s fairly easy to split up the recorded activity to understand which code was covered by each tool independently or to view where the coverage overlaps between multiple tools.

Licensing

OWASP Code Pulse project is free to use. It is licensed under the Apache 2.0 License.

Quick Links

News and Events

Contact Us

Project Leader: Ken Prole

Email: ken.prole@codedx.com

Related Projects

Classifications

New projects.png Owasp-breakers-small.png
Owasp-defenders-small.png
Cc-button-y-sa-small.png
Project Type Files TOOL.jpg
Retrieved from "https://wiki.owasp.org/index.php?title=OWASP_Code_Pulse_Project&oldid=246383"