Parasoft C/C++test

Parasoft® C/C++test® is an integrated Development Testing solution for automating a broad range of testing best practices proven to improve development team productivity and software quality.


Static Analysis

  • Broad support for languages and standards: Security | C/C++ | Java | .NET | FDA | Safety-critical
  • Static analysis tool industry leader since 1994
  • Simple out-of-the-box integration into your SDLC
  • Prevent and expose defects via multiple analysis techniques
  • Find and fix issues rapidly, with minimal disruption
  • Integrated with Parasoft's suite of development testing capabilities, including unit testing, code coverage analysis, and code review
Parasoft Unit Testing Results Dashboard

Unit Testing

  • Unit testing industry leader since 1997
  • Rapidly build a high-coverage test suite
  • Easily extend and customize generated tests
  • Expose functional problems and crash-causing defects
  • Remove barriers to creating/maintaining robust test suites
  • Integrated with static analysis, code review — more.

Code Coverage Analysis

  • Integrate coverage tracking from unit-level through application-level tests
  • Measure multiple metrics, including line, statement, block, path, decision (branch), simple condition, and MC/DC coverage
  • Generate and optimize test cases to increase coverage
  • Document coverage for FDA and safety-critical with robust reporting
  • Integrated with static analysis, unit testing, code review, and other Development Testing practices
Peer review configuration

Peer Review

  • Automates preparation, notification, and tracking of peer review
  • Works in concert with automated code review
  • Asynchronous, unobtrusive process—ideal for distributed teams
  • Supports any language and file type, all common dev environments
  • Integrated with collaborative development & testing framework

Runtime Error Detection

  • Expose critical defects as the application is exercised
  • Works from unit testing through application/system testing
  • Reports only defects that actually occur
  • Lightweight and suitable for embedded testing
  • Integrated with static analysis, unit testing, code review & more
Traceability for standards compliance


Bidirectional requirements traceability with Parasoft

  • Take control of requirements definition, management and testing
  • Link requirements with code, code changes, peer review, code analysis, manual and automated tests
  • Prevent unexpected changes and regression
  • Satisfy industry standard requirements, such as FDA, DO-178C and ISO 26262.

Supported environments

Coding Standards

MISRA Compliance

As software becomes the centerpiece for differentiating the driver's experience, there is no room for application failure. Parasoft helps you achieve industry-defined standards defined in MISRA and delivers a platform for continuous process improvement of the software development lifecycle.

ISO 26262 & ASIL

Parasoft for ISO 26262 compliance combines the industry’s broadest platform for Development Testing practices with Parasoft's groundbreaking infrastructure for development policy management. This provides unprecedented process visibility and control throughout the SDLC for all flavors of C, C++, Java, and .NET code.


Parasoft's DO-178B/C compliance solution combines the industry’s deepest and broadest development testing tools with Parasoft's groundbreaking infrastructure for development policy management. This provides organizations with unprecedented process visibility and control throughout the SDLC for all flavors of C, C++, Java, and .NET code.

FDA and Medical Device Software Development

Parasoft Development Testing Platform (DTP) for medical device software development helps organizations achieve compliance with submitted and approved processes. Parasoft DTP also assists organizations to continuously improve software quality practices as documented by the General Principles of Software Validation.


Parasoft's Embedded Software Quality solution for safety-critical development seamlessly integrates project and task management into any development environment and toolset. This enables comprehensive process visibility and control throughout the entire SDLC to effectively satisfy quality and compliance requirements.

Joint Strike Fighter (JSF) Compliance

Parasoft's Development Testing solution for JSF compliance combines the industry’s broadest platform for Development Testing practices with Parasoft's groundbreaking infrastructure for development policy management.

Coding Standards Compliance with Parasoft

Parasoft’s code analysis monitors whether code meets uniform expectations around security, reliability, performance, and maintainability. We provide a foundation for producing solid code by exposing structural errors and preventing entire classes of errors. An automated framework is provided to ensure consistency across development languages, development teams, and third-party partners. Parasoft uses a blended approach to implementing coding standards that includes:
  • prevention patterns
  • bug detection patterns
  • code metrics patterns
  • runtime error detection

Reduce Noise with Process Intelligence

Parasoft merges analysis results with data generated throughout the development lifecycle to deliver meaningful, actionable information. This enables you to eliminate false positives, pinpoint business risk in the code, and incrementally improve processes that result in more faster delivery without affecting quality.

Types of Defects Detected

  • API usage errors
  • Best practice coding errors
  • Build system issues
  • Buffer overflows
  • Class hierarchy inconsistencies
  • Code maintainability issues
  • Concurrent data access violations
  • Control flow issues
  • Cross-site scripting (XSS)
  • Cross-site request forgery (CSRF)
  • Deadlocks
  • Error handling issues
  • Hard-coded credentials
  • Incorrect expression
  • Insecure data handling
  • Integer handling issues
  • Integer overflows
  • Memory – corruptions
  • Memory – illegal accesses
  • Null pointer dereferences
  • Path manipulation
  • Performance inefficiencies
  • Program hangs
  • Race conditions
  • Resource leaks
  • Rule violations
  • Security best practices violations
  • Security misconfigurations
  • SQL Injection
  • Uninitialized members

Custom Messages

Comprehensive Software Quality Tools for C and C++

Help development teams produce better code, test it more efficiently, and consistently monitor progress towards quality goals. Automate proven Development Testing practices—such as static analysis, peer review, unit testing, coverage analysis, and runtime error detection—on the desktop early in the SDLC. For embedded and cross-platform development, C/C++test can be used in both host-based and target-based code analysis and test flows.
Comprehensive Software Quality Tools for C and C++

Automate Code Analysis for Monitoring Compliance

Prevent entire classes of programming errors by ensuring compliance with coding standards specific to your group or organization. Hundreds of built-in rules—including implementations of MISRA standards, as well as guidelines from Meyers’ Effective C++ and Effective STL books, and other sources—help identify defects, enforce best coding practices, and improve code maintainability and reusability. Enforce standard API usage and prevent the recurrence of application-specific defects after a single instance has been found.
Automate Code Analysis for Monitoring Compliance

Identify Runtime Bugs without Executing Software

Simulate feasible application execution paths across multiple functions and files—which is critical for embedded applications in which detailed runtime analysis for is ineffective or impossible. C/C++test also provides a complete path for each potential defect in the IDE and cross-links it to the code, enabling users to quickly jump to any point in the highlighted analysis path. Defects detected include using uninitialized or invalid memory, null pointer dereferencing, array and buffer overflows, division by zero, memory and resource leaks, and various flavors of dead code.
Identify Runtime Bugs without Executing Software

Complete and Effective Peer Review

C/C++test enables an efficient team-oriented process by automating the preparation, notification, and tracking of peer code reviews. Coding policy is automatically monitored during static analysis, which virtually eliminates line-by-line inspections. Because violations have already been identified and cleaned by the time code is submitted for review, reviews can focus on examining algorithms, reviewing design, and searching for subtle errors that automatic tools cannot detect. C/C++test is also highly-adaptable—supporting both post- and pre-commit code review workflows.
Complete and Effective Peer Review

Unit, Integration, and Regression Testing

Automatically generate complete tests, including test drivers and test cases for individual functions, and use them for initial validation of the functional behavior of the code. Automatically-generated test cases can also check function responses to unexpected inputs, exposing potential reliability problems. A multi-metric test coverage analyzer, including statement, branch, path, and MC/DC coverage, helps users gauge the efficacy and completeness of tests, as well as demonstrate compliance with test and validation requirements. C/C++test also facilitates the development of a robust regression test suite that detects if incremental code changes break existing functionality.

Embedded and Cross-Platform Development

C/C++test can be used in both host-based and target-based code analysis and test flows. For extremely quality-sensitive industries, such as avionics, medical, automobile, transportation, and industrial automation, integrating C/C++test with Parasoft Development Testing Platform (DTP) enables efficient and auditable quality processes with complete visibility into compliance efforts. DTP and C/C++test provides full bi-directional traceability to help you achieve your compliance goals


SELEX-ES Automated Defect Prevention Case Study

SELEX-ES wanted to eliminate software defects early in the SDLC. Learn how Parasoft static analysis helped them increase reliability while reducing reduced development time, costs, and resources.
Download »

Samsung Static Analysis Case Study

To deliver more and more complex functionality in less time than ever before, Samsung turned to static analysis. Learn how they accelerated development while maintaining stringent quality standards.
Download »

Bovie Medical Device Testing Case Study

Bovie Medical had been using an outside vendor to perform the software validation required for FDA compliance, but they wanted to improve the effectiveness of testing while at the same time reduce testing costs. Learn how Parasoft helped them move verification and validation testing in-house - cutting costs approximately in half and getting to market 6 months sooner.
Download »

TransCore Static Analysis and Unit Testing Case Study

TransCore needed a cost-effective way to ensure the reliability of their Java-based toll-road payment collection systems. Learn how static analysis and unit testing helped them achieve this by exposing defects early when they could be resolved with minimal rework and added costs.
Download »

Best Practices for Bulletproofing C/C++ Code

Examines several techniques that reduce the risks of errors when extending an existing code base, as well as improve the stability and quality of the project's evolving code base.
Download »

C and C++ Data Flow Static Analysis

Demonstrates how Parasoft's data flow analysis for C and C++ provides automated detection of runtime errors such as memory and resource management problems, buffer overruns, thread management errors, dead code, exceptions, and security vulnerabilities
Download »

Development Testing Maturity Model

Parasoft developed this open Development Testing Maturity Model to help organizations move from a tool-centric data aggregation approach to a process-based strategy, which prevents defects at the policy level.
Download »

FDA Software Validation Compliance

Details how Parasoft supports FDA General Principles of Software Validation sections 3, 4, and 5.
Download »

7-Point Plan for Securing Automotive Software

Our automotive software and security experts team up to discuss how to improve embedded software security in the automotive environment. Topics covered include MISRA and ISO 26262 compliance, problem resolution, issue priority and impact management, and more.
Watch »

Cloudy with a Chance of Cyber Attacks

Learn about 1) New cloud service technologies that have made software infrastructure more vulnerable. 2) The exorbitant costs of failing to meet security standards. 3) The most effective development testing solution for improving application security.
Watch »

Development Testing for Agile Teams

Learn how the systemic adoption of a Development Testing Platform exponentially helps Agile teams implement Development Testing activities (static analysis, unit testing, peer review, coverage analysis, runtime error detection, etc.) while helping to reduce technical debt and enable early defect prevention.
Watch »

Expose Hidden C and C++ Defects Automatically

This 40-minute video explains how Insure++'s runtime memory error detection exposes memory corruption, memory leaks, access outside of array bounds, invalid pointers, and other defects.
Watch »