Analytics

Hardening



Metric Description

Measure how applications implement defense in depth mechanisms to deter generic attack vectors.

The hardening analytic measures and displays the defense in depth of the binary, with the resilience and strengths of mitigation features generated and used by the toolchain (compiler) against vulnerabilities. 
It assesses the presence of security protections introduced by compilers to deter generic classes of vulnerabilities, for instance ASLR and stack cookies.

This measure of hardening is not accessible from source code analysis, as this is a compiler decision.

Example

Screencast

See Moabi in action with this screencast