"The Codenomicon tools are amazing. Using them is like being attacked by the most relentless adversary who uses every possible method to find flaws in your code

We fixed subtle crash bugs in Samba that had been in the code for over ten years. We would never have found those bugs without the Codenomicon tools.

If you're serious about implementing protocols correctly, you need the Codenomicon tools."

-- Jeremy Allison,
   Co Creator of Samba

Codenomicon Best Practices

Making the Most Out of Your Robustness and Security Testing


This document presents a set of process practices for applying Codenomicon DEFENSICS robustness testing solutions throughout your development lifecycle. It is intended as a collection of solid process ideas that should be applicable for different audiences and organizations. Since every organization is unique, the contents of this document should be applied in a way that is appropriate for your specific needs. We do not presume to know your product development practices better than you, but we have seen up-close how our other customers have applied Codenomicon tests from which we can apply lessons learned. This document is an encapsulation of that knowledge, and it is our sincere hope that you find some good and useful things in it.

  • Chapter 1 - Introduces software security and Codenomicon robustness testing theory and methodology
  • Chapter 2 - Integration of tests into your development lifecycle and how to maximize Codenomicon results
  • Chapter 3 - Codenomicon DEFENSICS test tool usage
  • Chapter 4 - 5 Guidance for advanced DEFENSICS test tool usage
  • Chapter 6 - Conclusion
  • Appendices - Quick test recording templates and glossary

Download [PDF] PDF