ABSTRACT


The software testing is necessary because during development process a lots of minor defects generate if these defects do not remove at early stage of software development life cycle (SDLC) then these minor defects become major defects and in the end software product will be failed. The software testing is divided into two major categories, static testing and dynamic testing. Static testing is done during verification process and dynamic testing is done during validation process. Verification and Validation are two measures used to check that the software product meets the requirements specifications. They help improve software quality. The focus of research is on static testing only, this testing is performed at first stage of development process. Static testing is done manually and through automated static analysis tools. It is evident from literature that less research of comparison of static analysis tools based on lexical analysis technique has yet been performed. The aim of this study is to identify specific vulnerability problems faced by programmers, developers and users such as wrong code, duplicate code, fussy code, unused variables, unnecessary object, class design problems, method design problems and check code layout. The two specific automated static analysis software testing tools are compared Check style and PMD. The goal of this research was to find out whether the selected tools are capable of finding the specific vulnerability problems present in the code or not.