The FREE 30-day trial download is now Sempre Developer Professional!
SEMPRE OVERVIEW
"I have other static analysis tools - Sempre is by far the best. Being able to see the code, view the audit results, do tracebacks,
and review metrics are valuable as a single package."
- Dr. Joel Henry, University of Montana
REVIEW
Sempre delivers its innovative features through a code improvement environment resembling familiar IDEs.
Automated Contextual Analysis of large C code bases includes extensive support of language elements for the most reliable results possible.
Sempre significantly increases the amount of code that can be reviewed by development and QA teams.
Flexible project definitions allow for completely customized set of files, defines, and function aliases.
Rapid analysis provides an interactive code/compile/test cycle
Selectable audit components for automated, project wide analysis of potential exploits and other best practices.
Support for malloc, strlen, and sizeof C library calls
Missing files simply ignored
Extensive C Language support
Support for function aliasing to allow for custom allocators or other function wrappers
Use #include files external to a given project to provide more accuracy in analysis
Command line support provides integration with build systems
Automatic recognition of file changes helps Sempre play well with your favorite IDE
Usage Audit Builder for quick construction of specialized audits
Color coded graphical reports and metrics
Output filters help focus on specific audit results
Extensive code navigation and comprehension features such as syntax highlighting, margin maps, context sensitive tooltips and gutter icons
Extensive searching capabilities to quickly locate and understand declarations, references and context
INSPECT
Sempre provides code comprehension features ideal
for even the largest bodies of code. Visual Backtrace™ technology
delivers enhanced multi-path tracing that builds an exhaustive list detailing
critical aspects of entities as they are traced.
Backtrace Explorer™ facilitates on-demand visualization of complex multi-path call structures using an
intuitive interface that helps auditors analyze a greater number of paths, in less time, across the entire code base
Accurate determination of entity value and size at any point in the call graph, including entities belonging to multi-dimensional arrays and structures.
Context-heavy details communicate information important to path selection and flaw identification.
Path filtering helps focus on tracing paths with specific characteristics
Trace entities back through transformations and even across assignments
to originating declarations
Can be launched from audit errors tied to analysis results for immediate inspection of identified vulnerable paths,
or from any selectable point in code
Visual Backtrace integration with Source Editor and change-file sensitivity keeps all views current
REFACTOR
Refactoring is the incremental, disciplined improvement of fundamental code structures that eventually transform the design of an
application toward greater efficiency and stability. Sempre lets developers visualize and comprehend source code, then use its interactive code improvement environment to make high
quality changes that support best practices such as refactoring. The Sempre Code Improvement Environment assists with code changes and
makes it easy to navigate large code bases.
Intuitive setup allows for multiple code bases per project.
Ability to easily manage multiple source roots, along with any associated library includes, within an intuitive
source tree navigation UI.
Source Editor integrates with code exploration features and analysis results for direct navigation to and correction of all
statement lines related to a discovered vulnerability
Context-sensitive lookups of Knowledge Reference for suggestions on improving identified code structures
Hover tool tips for quick reference in source code editor on suspect code structures
Integrated functionality of analysis, backtrace, navigation, and source editing delivers complete toolset
for significant code improvement using a single solution.
