SecInspector

Detailed Introduction

Overview

The SecInspector is a static code scanning plugin for IntelliJ IDEA designed to help developers identify potential security risks while coding. It is powered by the Deep Blue Lab team at Sangfor Technologies.

Key Features

• Real-time Code Scanning: Automatically scans the current active code during development to alert on possible security vulnerabilities.
• Custom Rule Inspection: Utilizes IDEA's native Inspection mechanisms to define and scan for user-defined rules across projects.
• Vulnerability Detection: Covers common vulnerabilities such as RCE, deserialization, SQL injection, JNDI injection, and arbitrary file read/write.
• Efficient Audit Processes: Simplifies project audits by allowing users to easily track and pinpoint security issues in their codebase.

Benefits

• Enhanced Security: Increases the code security quality by integrating security checks directly into the development process.
• Time Efficiency: Saves time by allowing developers to search for sink points easily as opposed to traditional methods.
• User-Friendly: The plugin is easy to install and can be integrated seamlessly into existing projects using IDEA.

Highlights

• Supports IntelliJ IDEA Community and Ultimate version >= 2021.3.
• Can be installed locally by selecting the SecInspector.jar file from settings.
• Provides one-click remediation capabilities for some vulnerabilities to enhance security practices.