May 24, 2017 10:44 AM ET


Company Overview of Grammatech, Inc.

Company Overview

Grammatech, Inc. develops and markets software-development tools for startups, companies, educational institutions, and government agencies. It offers CodeSonar, a source-code analyzer for C/C++ and Java that finds buffer overruns, null-pointer dereferences, and other errors; and CodeSurfer, a code browser for C/C++, which understands pointers, indirect function calls, and whole-program effects. The company also provides products for ADA, such as Ada-ASSURED, a language-sensitive editor, browser, standards enforcement tool, printer, and code analyzer/transformer for Ada 83 and Ada 95; and Ada-Utilities, a language-sensitive toolset for project-wide printing and standards auditing of Ada code...

317 North Aurora Street

Ithaca, NY 14850

United States

Founded in 1988





Key Executives for Grammatech, Inc.

Co-Founder, Chairman and Chief Executive Officer
Co-Founder and President
Chief Financial Officer
Chief Technology Officer
Vice President of Engineering
Compensation as of Fiscal Year 2016.

Grammatech, Inc. Key Developments

Department of Homeland Security Selects GrammaTech for Software-Assurance Tool Project

GrammaTech announced that it has been selected as a prime contractor on the Department of Homeland Security's Static Tool Analysis Modernization Project (STAMP). The goal of GrammaTech's potentially $8 million contract is to significantly advance the software ecosystem of open-source static-analysis tools for software. GrammaTech will perform the work with subcontractors KEYQ (PonteTec division) and Secure Decisions. With over 25 years researching static program-analysis techniques, and a strong history of transitioning that research to polished commercial tools that provide deep analysis, scalability, and results that users can understand, GrammaTech is uniquely positioned to lead the team. The goal of the project includes modernization of as many as eight tools for eight different programming languages, including both dynamic languages (e.g., JavaScript) and static languages (e.g., Java).

US Government Selects GrammaTech for Five New Cybersecurity Projects

GrammaTech has been selected by the US Government to receive five research contracts that will advance techniques and technologies in static analysis and software protection. GrammaTech's research teams will continue their focus on solving the most challenging issues impacting embedded device software. This new set of research projects will augment the company's commercial software, CodeSonar, which finds bugs, security vulnerabilities, and complex programming defects in software. Critical Vulnerability Discovery Using Big Code: Sponsored by the Defense Advanced Research Projects Agency (DARPA): Most modern systems incorporate a significant amount of third-party software with lurking bugs that compromise the security of the entire software chain. GrammaTech will develop a vulnerability assessment tool to scan these binary executables and find critical vulnerabilities, using a combination of statistical and language-based techniques. Anticipating Malware Evolution: Sponsored by the Department of Homeland Security (DHS): Building on existing collections of malware and the results of earlier projects such as DARPA's CyberGenome and MUSE projects, this project will contribute to the battle against harmful malware. GrammaTech will create pattern-recognition and machine-learning algorithms that can identify common characteristics in malware and recognize evolving patterns in new malware, with the goal of spotting evolving threats before they become widespread. Injecting Vulnerabilities for Configurable Cyber Defense: Sponsored by the Defense Advanced Research Projects Agency (DARPA): GrammaTech will develop a tool for generating cybersecurity evaluation benchmarks. The tool will help users evaluate the effectiveness of their current cyber defenses to detect specific vulnerabilities in their software (for instance, by injecting the Heartbleed bug into their software, users could determine if the static analysis tool they are using would have caught the Heartbleed bug, were it part of their applications). Recovering the High-Level Architecture of Embedded Systems: Sponsored by the Office of the Secretary of Defense (OSD): to enable security researchers to rapidly identify potential cyber access points, weaknesses, and susceptibilities, GrammaTech will develop innovative tools and techniques for recovering/reconstructing the architecture of a software system, accurately modeling and displaying the architecture, and assessing its security. Inserting Code into Firmware Image: Sponsored by the U.S. Navy: Fixing the software that runs embedded devices is challenging, especially when no access to its original source code. GrammaTech will develop a tool that will automate the process of turning a high-level patch description into a modified firmware image, allowing users to modify embedded software as simply as if they had access to the original source.

DARPA Selects GrammaTech, Inc. for Software-Assurance-Tool Benchmarking

GrammaTech, Inc. has been notified of its selection by DARPA to develop tooling for measuring and assessing the effectiveness of Software Assurance tools. The project, Grafting Vulnerabilities for Configurable Cyber Defense, will address the need in the current security-tool landscape – the inability for users to know the effectiveness of vulnerability-detection-and-mitigation tools. The rise and continued acceleration of cyber-attacks, spanning from consumer devices to city infrastructure to government databases, has spurred efforts to eliminate security vulnerabilities by performing code audits across specific commercial products, host programs, and domains. Although detected and eliminated bugs are often tallied, undetected bugs are typically unknown, and as a result the overall ROI of the audit endeavor is unmeasured. GrammaTech's research will develop mechanisms leading to the creation of realistic evaluation benchmarks that provide quantitative insights on the strengths and weaknesses of the security tools being used within an operational environment.

Similar Private Companies By Industry

Company Name Region
@RISK, Inc. United States
@YourGate LLC United States
100Insights, Inc. United States
101 Education, LLC United States
10Pearls, LLC United States

Recent Private Companies Transactions

No transactions available in the past 12 months.

The information and data displayed in this profile are created and managed by S&P Global Market Intelligence, a division of S&P Global. does not create or control the content. For inquiries, please contact S&P Global Market Intelligence directly by clicking here.

Stock Quotes

Market data is delayed at least 15 minutes.

Company Lookup

Most Searched Private Companies

Company Name Geographic Region
Lawyers Committee for Civil Rights Under Law United States
Bertelsmann AG Europe
Bloomberg L.P. United States
The Advertising Council, Inc. United States
Rush University United States

Sponsored Financial Commentaries

Sponsored Links

Request Profile Update

Only a company representative may request an update for the company profile. Documentation will be required.

To contact Grammatech, Inc., please visit Company data is provided by S&P Global Market Intelligence. Please use this form to report any data issues.

Please enter your information in the following field(s):
Update Needed*

All data changes require verification from public sources. Please include the correct value or values and a source where we can verify.

Your requested update has been submitted

Our data partners will research the update request and update the information on this page if necessary. Research and follow-up could take several weeks. If you have questions, you can contact them at