Security in any industry today is a major competitive advantage. Any attack on organization can reduce its credibility, decrease profits, reduce productivity and cost a lot of money. Source code analysis means to analyze the application code for security flaws and vulnerabilities. The purpose of analyzing source code for security flaws is to find backdoor in the application that may be used by the attackers to inject malicious code.
Until few years back majority of the applications were desktop based which would mean for an attacker to get access to the application they will need to first get access to the workstation. However with the web applications taking over as a norm and most application exposing web based APIs the importance of analyzing source code for security flaws is more important than ever. The web opens up the application to a wider audience making it a prime target for attacks.
There are quite a few source code analysis tools out there and the following two in my opinion are the best of them.