Static Analyzer for C Source Code
Supporting various kinds of vulnerabilities such as integer overflow, buffer overflow and null pointer dereferences.1
Supporting fine-grained adjustment on precision-efficiency trade-off by configuration.
Supporting a single source file, multiple source files and various compilation environments.
Friendly user interface for locating, tracing and managing analysis results.
A CWE-compatible tool.2
Precise, and Efficient
On the Juliet Test Suite, the overall false-positive rate is 0.6%, and the overall false-negative rate is 0.6%3
The overall time cost on analyzing Wireshark project which has more than 2.97 MLOC in approximately 1.4 hours.4