CodePro AnalytiX is a comprehensive set of software analysis tools composed of a collection of native Eclipse plugins. It seamlessly integrates into any Eclipse-based Java desktop development environment, adding code audit, security analysis, metrics, test generation, JUnit test editing, code coverage and team collaboration functionality. 

Read this chapter from “Implementing Database Security and Auditing” by database security expert, Ron Ben Natan Ph.D., to learn best practices and specific tips for effectively securing most database environments, including tracking security vulnerabilities, the anatomy of buffer overflow vulnerabilities, and database auditing. 

ArcSight Logger is a turnkey appliance for collection, efficient storage, and high-performance search and reporting of all enterprise log data. Read this paper to learn more details. 

Active Directory becomes very complex to manage in Windows networks. Administrators leave, users are given elevated privileges, applications require special accounts - very soon you have an Active Directory full of security weaknesses. 

Read this chapter from "HOWTO Secure and Audit Oracle 10g and 11g" (CRC Press, 2009) and learn how to secure Oracle by checking for weak passwords, configuring failed login policies, preventing DoS attacks with resource limits, and auditing user profiles. 

Sitel, Inc is a global provider of business process outsourcing (BPO). They needed to establish audit readiness and compliance across multiple regulatory standards and at the same time develop multi-tier change and configuration controls. Read this brief paper to learn how Tripwire was able to help Sitel meet all their needs and more. 

Taxes are certainly not fun, but there is something worse: an audit. The good news is that there are ways to reduce the audit tax burden. This whitepaper outlines five methods organizations should consider to streamline their compliance efforts and thereby reduce their audit tax. 

Join Randy Rosenbaum of Alert Logic as he discusses ways to not only reduce the amount of time spent reviewing logs, but how to quickly respond to suspicious activity found in log data and evidence of log review to satisfy PCI auditors. 

Unfortunately, many organizations focus their energy on simply passing their PCI audit and lose sight of the main objective of the PCI DSS -- securing cardholder data. They still suffer a security breach even though they pass the compliance audit. Read this solution brief to learn more about securing cardholder data and proving PCI compliance. 

Authored by Ron Ben Natan, Ph.D., author of "HOWTO Secure and Audit Oracle 10g and 11g" (CRC Press, March 2009), this white paper describes 8 essential best practices that provide a holistic approach to safeguarding databases and achieving compliance. 

Compliance is a fact of business life that challenges organizations of all sizes. Just ticking off boxes on audits is not enough to keep you secure. You must account for compliance in your physical and virtualized environments. Read this paper to learn about an operational security solution that delivers compliance as an ongoing feature. 

In this podcast featuring expert Adrian Lane, learn how to improve database security quickly. Get tips on key points such as conducting a data inventory, developing a security plan, creating an audit trail and prioritizing risks. 

CodePro AnalytiX provides you with the metrics you need to incorporate self-improvement and optimization into the software process. Thus, CodePro AnalytiX is a full set of tools to support your organization in its quest for sustainable high levels of software quality, security and productivity