"Scan your Code as you would do with your Heart"
Quickly identify security threats in your application landscape and easily pinpoint high-risk vulnerabilities with ECG.Request Trial
The first and the only solution able to detect real and complex security vulnerabilities in TCL/ADP files. ECG scans your TCL code for previously unknown security flaws; it supports ACS and OpenACS frameworks, NaviServer and AOLserver webserver.
Scan your code repository as a local file path or archive upload for hundreds of issue categorie and review findings in real-time. In-depth security analysis in minutes instead of hours (or days) for continuous testing.
ECG summarizes and traceback all code lines that are related to the issue, this speed up the process of reviewing the affected code and applying a security patch at the best location.
Highly accurate analysis results to focus on meaningful findings without wasting time. A human Security Analyst will check each reported issues, filtering out false positives, for the most accurate analysis possible. With our mixed approach, complex security bugs in the source code will be accurately detected.
Review the root cause of each issue and understand how a threat actor can abuse this vulnerability. Quickly fix vulnerabilities without further ado by reviewing the reliable and actionable information and the code samples presented by ECG.
Instantly review which sensitive function calls are affected by unsanitized input from a malicious user. You can check how inputs could tamper the affected expression with our unique context view.