Here i will list down and update the list of tips i come across while doing code auditing….
1) Where there is one bug, there are more.
2) Programs often share code or Same programmers work on multiple projects.
3) when vulnerabilities are found, surrounding code should be audited, since similar vulnerabilities are likely to exist.
4) Always verify developers "input". (Design document, black board explanations.)