CAT.NET is a binary code analysis tool, that helps identify common variants of certain prevailing vulnerabilities, that can give rise to common attack vectors such as Cross-Site Scripting (XSS), SQL Injection, and XPath Injection.
Even though the development of CAT.NET has been discontinued by Microsoft in 2009, it is still a valid and helpful tool to analyze SharePoint projects. Unfortunately, the performance of CAT.NET analysis is very poor, therefore we recommend to run it for example in a team build, where the delay has minimal impact on the developer's productivity.
The 2.0 CTP of Cat.NET can be downloaded from Microsoft Connect:
There can be several reasons why CAT.NET may not be recognized by SPCAF. Below are main causes, a brief explanation of the cause and what is required to remedy the problem:
For more details on these issues, causes and fixes please click here.
Pre-Production | CAT.NET | 3rd | third | Party | Integrate | Integration