37 tulosta
Find vulnerabilities in custom code using static analysis. Prevent new vulnerabilities from being introduced by scanning every PR. Lue lisää tuotteesta GitHub
Find vulnerabilities in custom code using static analysis. Prevent new vulnerabilities from being introduced by scanning every pull request. We have security tools for every level of user - Dependency Graph is a map of the code libraries and repos your project relies on. Dependabot alerts you when these libraries were updated. These are available to every user. When you use GitHub Enterprise, you can add Token, Secret and Code Scanning to your repos for automatic security updates. Lue lisää tuotteesta GitHub

Ominaisuudet

  • Haavoittuvuuksien etsintä
  • Reaaliaikainen analytiikka
  • Integroitu kehitysympäristö
  • API (ohjelmointirajapinta)
esChecker verifies runtime defenses and protections against reverse engineering. Lue lisää tuotteesta esChecker
esChecker, your MAST automation companion Reduce the time wasted to qualify your Mobile Application Protections thanks to MAST automation (SAST static tests and DAST dynamic tests). The slow, manual days of pentesting mobile applications are over. esChecker is an online tool, combined with a set of APIs and plugins to facilitate your recurring security testing, designed by world-class pentesters. The tool follows OWASP standards. Lue lisää tuotteesta esChecker

Ominaisuudet

  • Haavoittuvuuksien etsintä
  • Reaaliaikainen analytiikka
  • Integroitu kehitysympäristö
  • API (ohjelmointirajapinta)
Cloud-based DevOps solution that enables businesses to improve workflow processes using time tracking, regulatory compliance, and more.
GitLab is a complete DevOps platform, delivered as a single application, fundamentally changing the way Development, Security, and Ops teams collaborate. GitLab helps teams accelerate software delivery from weeks to minutes, reduce development costs, and reduce the risk of application vulnerabilities while increasing developer productivity. Lue lisää tuotteesta GitLab

Ominaisuudet

  • Haavoittuvuuksien etsintä
  • Reaaliaikainen analytiikka
  • Integroitu kehitysympäristö
  • API (ohjelmointirajapinta)
Dynatrace provides software intelligence to simplify cloud complexity and accelerate digital transformation.
Dynatrace is an application performance and lifecycle management solution designed to help retail businesses, financial markets, transportation companies, emergency services, and government bodies monitor and analyze the performance of applications on a unified dashboard. Key features of the platform include anomaly detection, root cause determination, network process monitoring, log entry analysis, cross-team collaboration, AI-assistance, and more among others. Lue lisää tuotteesta Dynatrace

Ominaisuudet

  • Haavoittuvuuksien etsintä
  • Reaaliaikainen analytiikka
  • Integroitu kehitysympäristö
  • API (ohjelmointirajapinta)
DevSecOps platform with SAST and SCA, IDE integration and distributed analysis to shield your applications from external threats
Manage your application's vulnerabilities with Static Application Security Testing (SAST) and Software Composition Analysis (SCA) by Kiuwan. It's easy to set up and use. Scan your code locally, then share results in the cloud. Tailored reports with industry standard security ratings help you make informed decisions, reduce technical debt, and mitigate risk. Kiuwan provides comprehensive language coverage, integrates with leading IDEs, and fits seamlessly into your CI/CD/DevSecOps process. Lue lisää tuotteesta Kiuwan

Ominaisuudet

  • Haavoittuvuuksien etsintä
  • Reaaliaikainen analytiikka
  • Integroitu kehitysympäristö
  • API (ohjelmointirajapinta)
SonarQube helps developers control code security by detecting Vulnerabilities and Security Hotspots early in the workflow.
SonarQube is the leading tool for continuously inspecting the Code Quality and Security of your codebases, and guiding development teams during Code Reviews. Covering 29 programming languages, while pairing up with your existing software pipeline, SonarQube provides clear remediation guidance for developers to understand and fix issues, and for teams overall to deliver better and safer software. Lue lisää tuotteesta SonarQube

Ominaisuudet

  • Haavoittuvuuksien etsintä
  • Reaaliaikainen analytiikka
  • Integroitu kehitysympäristö
  • API (ohjelmointirajapinta)
Cloud-based solution that enables businesses to detect & prevent cyber threats with website scanning, malware removal and more.
SiteLock, the global leader in website security solutions, is the only provider to offer complete, cloud-based website protection. Its 360-degree monitoring detects and fixes threats, prevents future attacks, accelerates website performance, and meets PCI compliance standards for businesses of all sizes. Founded in 2008, the company protects over 12 million websites worldwide. Lue lisää tuotteesta SiteLock

Ominaisuudet

  • Haavoittuvuuksien etsintä
  • Reaaliaikainen analytiikka
  • Integroitu kehitysympäristö
  • API (ohjelmointirajapinta)
Artifactory- the world's only universal artifact repository manager supporting all major packaging formats, CI servers and build tools.
The core of the JFrog DevOps Platform, Artifactory provides a single source of truth for binaries, dependencies and build artifacts for release management. It’s a universal binary repository manager, supporting 30+ build packages, artifacts, and their corresponding metadata. DevOps teams can standardize on build bill-of-materials across the Dev, Test, Stage, and Prod steps for both continuous integration (CI) and continuous delivery (CD). Artifactory integrates with your preferred DevOps tools. Lue lisää tuotteesta Artifactory

Ominaisuudet

  • Haavoittuvuuksien etsintä
  • Reaaliaikainen analytiikka
  • Integroitu kehitysympäristö
  • API (ohjelmointirajapinta)
Snyk's Developer Security Platform puts security expertise in the toolbox of every developer.
Snyk is the leader in developer security. Snyk is used by 1,200 customers worldwide today, including industry leaders such as Asurion, Google, Intuit, MongoDB, New Relic, Revolut and Salesforce. Snyk is recognized on the Forbes Cloud 100 2021, the 2021 CNBC Disruptor 50 and was named a Visionary in the 2021 Gartner Magic Quadrant for AST. Lue lisää tuotteesta Snyk

Ominaisuudet

  • Haavoittuvuuksien etsintä
  • Reaaliaikainen analytiikka
  • Integroitu kehitysympäristö
  • API (ohjelmointirajapinta)
CodeScan provides the leading static code analysis solution for Salesforce dev teams, ensuring quality and security of Salesforce orgs.
CodeScan is the leading static code analysis solution built exclusively for Salesforce development teams. Over 600 built-in rules are compatible with all Salesforce development languages to analyze system data and metadata. Reduce technical debt, increase release velocity, track errors, and support data security by ensuring complete code visibility from the moment it is written through production. Give your DevOps teams the tools they need to succeed by eliminating the risk of faulty code. Lue lisää tuotteesta CodeScan

Ominaisuudet

  • Haavoittuvuuksien etsintä
  • Reaaliaikainen analytiikka
  • Integroitu kehitysympäristö
  • API (ohjelmointirajapinta)
CodeScene empowers and guides software development teams to build better quality code more sustainably.
CodeScene is the leading tool that maps hotspots in your codebase and pinpoints the exact lines of unhealthy code impeding software delivery flow. With this knowledge, you can better prioritize new features, bug fixes or improvements. CodeScene also reviews the code health in pull requests and offers refactoring recommendations. CodeScene is the invisible developer on your team that constantly watches out for changes in technical debt, giving you instant feedback on how to improve code health. Lue lisää tuotteesta CodeScene

Ominaisuudet

  • Haavoittuvuuksien etsintä
  • Reaaliaikainen analytiikka
  • Integroitu kehitysympäristö
  • API (ohjelmointirajapinta)
Static code analyzer that helps optimize code quality and production time using continuous integration, reports, and more.
Static code analyzer that helps optimize code quality and production time using continuous integration, reports, etc. Lue lisää tuotteesta Klocwork

Ominaisuudet

  • Haavoittuvuuksien etsintä
  • Reaaliaikainen analytiikka
  • Integroitu kehitysympäristö
  • API (ohjelmointirajapinta)
Help software developers write better code faster using the Codiga Coding Assistant and Automated Code Reviews.
Codiga is a Coding Assistant and an Automated Code Review platform. With the Coding Assistant, you can create, find and import safe and secure reusable code blocks in seconds, saving hours of software development. With the Code Analysis and Code Review platform, you get insights on your code review immediately, ensuring new code is merged with confidence. Lue lisää tuotteesta Codiga

Ominaisuudet

  • Haavoittuvuuksien etsintä
  • Reaaliaikainen analytiikka
  • Integroitu kehitysympäristö
  • API (ohjelmointirajapinta)
Checkmarx is a provider of state-of-the-art web application security solution: static code analysis software.
Checkmarx is a provider of state-of-the-art web application security solution: static code analysis software, seamlessly integrated into development process. Checkmarx can be integrated at every step of the SDLC, which leads to less vulnerabilities, reduced fixes to older code, lower costs and, most importantly, far more secure applications. Allows to achieve PCI DSS Compliance. Free Demo available on web site. Lue lisää tuotteesta CxSAST

Ominaisuudet

  • Haavoittuvuuksien etsintä
  • Reaaliaikainen analytiikka
  • Integroitu kehitysympäristö
  • API (ohjelmointirajapinta)
A SAST solution designed to help businesses manage risks across the application portfolio and address quality defects in the SDLC.
Coverity is an intelligent, highly scalable static analysis (SAST) solution that helps developers find and fix critical security and quality issues as they code with help from the CodeSight IDE plug-in. Coverity works with 22 different languages and integrates into your CI/CD pipeline, allowing teams to address security and quality defects early in the SDLC. Coverity provides detailed reporting and issue management dashboards, which helps ensure compliance with security and coding standards. Lue lisää tuotteesta Coverity

Ominaisuudet

  • Haavoittuvuuksien etsintä
  • Reaaliaikainen analytiikka
  • Integroitu kehitysympäristö
  • API (ohjelmointirajapinta)
The all-in-one code health platform that equips organizations with everything they need to build maintainable and secure software.
DeepSource is an all-in-one code health platform that equips organizations with everything they need to build maintainable and secure software while elevating the velocity of their software developmen t cycle. Developers and security engineers are empowered to discover and fix maintainability and security issues in the codebase during the earliest stages of software development. Organizations enable velocity without risking technical debt. Lue lisää tuotteesta DeepSource

Ominaisuudet

  • Haavoittuvuuksien etsintä
  • Reaaliaikainen analytiikka
  • Integroitu kehitysympäristö
  • API (ohjelmointirajapinta)
Static Application Security Testing platform that empowers developers to create secure applications by providing continuous security.
GuardRails provides the perfect customizable SAST security solution for organizations that need a flexible approach to their internal process. With thousands of possible coding vulnerabilities, you can stay ahead of threats and weaknesses in your organizations software by tracking which ones matter the most and need the most prior attention! Lue lisää tuotteesta GuardRails

Ominaisuudet

  • Haavoittuvuuksien etsintä
  • Reaaliaikainen analytiikka
  • Integroitu kehitysympäristö
  • API (ohjelmointirajapinta)
Pair Sonatype Lift with your favorite SAST tool to find and fix performance, reliability, and style issues deep in your code.
Sonatype's Nexus Platform scales open source security monitoring across the software supply chain and reclaims time spent fighting risks in the software development life cycle. Software developers, application security professionals, and DevSecOps experts are empowered with the highest quality Nexus vulnerability intelligence to drive faster releases, decrease false positives, and deliver in-depth, developer remediation guidance. Lue lisää tuotteesta Nexus Lifecycle

Ominaisuudet

  • Haavoittuvuuksien etsintä
  • Reaaliaikainen analytiikka
  • Integroitu kehitysympäristö
  • API (ohjelmointirajapinta)
SonarCloud is an online service to catch Bugs and Security Vulnerabilities in your Pull Requests and throughout your code repositories.
SonarCloud is the leading online service to catch Bugs and Security Vulnerabilities in your Pull Requests and throughout your code repositories. Totally free for open-source projects (paid plan for private projects), SonarCloud pairs with existing cloud-based CI/CD workflows, and provides clear resolution guidance for any Code Quality or Code Security issue it detects. With more than 1 billion lines of code analyzed every week, SonarCloud empowers development teams of all sizes to write cleaner Lue lisää tuotteesta SonarCloud

Ominaisuudet

  • Haavoittuvuuksien etsintä
  • Reaaliaikainen analytiikka
  • Integroitu kehitysympäristö
  • API (ohjelmointirajapinta)
BuildPiper: The Most Powerful Microservice Delivery Platform
BuildPiper is an end-to-end Kubernetes & Microservices Application Delivery Platform that enables dockerized code to be deployed across environments and enables seamless management of Production operations with all the required observability, security, and compliance baked in. The goal is to simplify and accelerate the 'microservices’ application journey for any organization & make it hugely rewarding. Lue lisää tuotteesta BuildPiper

Ominaisuudet

  • Haavoittuvuuksien etsintä
  • Reaaliaikainen analytiikka
  • Integroitu kehitysympäristö
  • API (ohjelmointirajapinta)
Apiiro helps organizations secure their Software Development Lifecycle (SDLC).
Apiiro performs deep code risk assessment across all source control systems and CI/CD pipelines and uses context across multiple data sources to remediate critical risks such as design flaws, misconfigurations, vulnerabilities, drifts & supply chain attacks before production. Lue lisää tuotteesta Apiiro

Ominaisuudet

  • Haavoittuvuuksien etsintä
  • Reaaliaikainen analytiikka
  • Integroitu kehitysympäristö
  • API (ohjelmointirajapinta)
Holistic Security For Your CI/CD Pipeline. Prevent software supply chain attacks and vulnerabilities, from commit to release.
Argon provides security for software development environments' CI/CD pipelines, eliminating the risk from misconfigurations, vulnerabilities and preventing supply chain attacks. This new bread of attacks is an issue all enterprises are dealing with and Argon's solution materially solves the problem in a meaningful way. Argon provides end-to-end AppSec visibility and security platform for the development process and boost your overall security posture. Lue lisää tuotteesta Argon

Ominaisuudet

  • Haavoittuvuuksien etsintä
  • Reaaliaikainen analytiikka
  • Integroitu kehitysympäristö
  • API (ohjelmointirajapinta)
IDA Pro is a powerful disassembler and a versatile debugger.
The source code of the software we use on a daily basis isn’t always available. A disassembler like IDA Pro is capable of creating maps of their execution to show the binary instructions that are actually executed by the processor in a symbolic representation called assembly language. This disassembly process allows software specialists to analyze programs that are suspected to be nefarious in nature, such as spyware or malware. Lue lisää tuotteesta IDA Pro

Ominaisuudet

  • Haavoittuvuuksien etsintä
  • Reaaliaikainen analytiikka
  • Integroitu kehitysympäristö
  • API (ohjelmointirajapinta)
SaaS-based tool that helps businesses secure application development pipelines via vulnerability scanning, automated testing, and more.
Conviso Platform has got the whole security pipeline covered to empower developers to build secure applications. Because Security shouldn't be an isolated part of your development pipeline — it should be an ongoing, collaborative activity between all teams. Conviso now presents five products within its platform to help you in this mission. Lue lisää tuotteesta Conviso

Ominaisuudet

  • Haavoittuvuuksien etsintä
  • Reaaliaikainen analytiikka
  • Integroitu kehitysympäristö
  • API (ohjelmointirajapinta)
Bearer enables security and engineering teams to implement data security policies and mitigate risks throughout the DevOps lifecycle.
Bearer is a Static Application Security Testing (SAST) tool that brings the principles and the benefits of the DevSecOps model to the data security practice. Bearer enables security and engineering teams to implement data security policies and mitigate risks of data leaks, data breaches, regulatory fines, and revenue loss throughout the development lifecycle. Lue lisää tuotteesta Bearer

Ominaisuudet

  • Haavoittuvuuksien etsintä
  • Reaaliaikainen analytiikka
  • Integroitu kehitysympäristö
  • API (ohjelmointirajapinta)
Static Application Security Testing, WhiteBox Testing solution.
DefenseCode ThunderScan® is a SAST (Static Application Security Testing, WhiteBox Testing) solution for performing deep and extensive security analysis of application source code. ThunderScan® is easy to use, requires almost no user input and can be deployed during or after development with easy integration into your DevOps environment and CI/CD pipeline. Lue lisää tuotteesta ThunderScan

Ominaisuudet

  • Haavoittuvuuksien etsintä
  • Reaaliaikainen analytiikka
  • Integroitu kehitysympäristö
  • API (ohjelmointirajapinta)
All in one security risk management platform.
All in one security risk management platform. Lue lisää tuotteesta Veracode

Ominaisuudet

  • Haavoittuvuuksien etsintä
  • Reaaliaikainen analytiikka
  • Integroitu kehitysympäristö
  • API (ohjelmointirajapinta)
Tanzu Observability enables DevOps teams to troubleshoot and resolve application production issues quickly and cost-effectively.
Tanzu Observability is an enterprise observability platform that provides full-stack visibility for modern applications running on any cloud. It enables development, SRE and DevOps teams to quickly identify and troubleshoot performance issues by securely and reliably providing granular visibility into containerized applications and cloud infrastructure. Lue lisää tuotteesta VMware Tanzu Observability

Ominaisuudet

  • Haavoittuvuuksien etsintä
  • Reaaliaikainen analytiikka
  • Integroitu kehitysympäristö
  • API (ohjelmointirajapinta)
SonarLint is a free and open source IDE extension that allows developers to detect and fix code quality & security issues as they code.
SonarLint is a free and open source IDE extension that allows developers to instantly detect and fix code quality and security issues as they write code. Like a spell checker, SonarLint highlights coding flaws so issues can be addressed right in the IDE, before code is committed. Backed by hundreds of language specific Static Code Analysis rules, the tool provides immediate in-context help and examples to guide users to understand and fix issues. Lue lisää tuotteesta SonarLint

Ominaisuudet

  • Haavoittuvuuksien etsintä
  • Reaaliaikainen analytiikka
  • Integroitu kehitysympäristö
  • API (ohjelmointirajapinta)
ShiftLeft CORE is a suite of modern AST tools that simplify work between Dev and AppSec teams and provide early scans of code at scale.
ShiftLeft CORE is a suite of modern AST tools that simplify work between Dev and AppSec teams and provide early scans of code at scale. Lue lisää tuotteesta ShiftLeft CORE

Ominaisuudet

  • Haavoittuvuuksien etsintä
  • Reaaliaikainen analytiikka
  • Integroitu kehitysympäristö
  • API (ohjelmointirajapinta)
It is a SAST application that helps businesses to identify common defects, violation of policies, and other vulnerabilities.
It is a SAST application that helps businesses to identify common defects, violation of policies, and other vulnerabilities. Lue lisää tuotteesta CodeSonar

Ominaisuudet

  • Haavoittuvuuksien etsintä
  • Reaaliaikainen analytiikka
  • Integroitu kehitysympäristö
  • API (ohjelmointirajapinta)
Static code analysis software to find security and quality bugs faster. Trusted by many organizations worldwide.
AppSonar Static Code Analyzer Helps Improve the Security and Quality of Your Application Code. Automate static application security testing to find hidden security and quality bugs faster. Over thousands of rules and over 15 programming language support. Based on industry standards. Lue lisää tuotteesta AppSonar

Ominaisuudet

  • Haavoittuvuuksien etsintä
  • Reaaliaikainen analytiikka
  • Integroitu kehitysympäristö
  • API (ohjelmointirajapinta)
CalypsoAI Toolkit is a development environment with end-to-end secure model building with AI capabilities.
CalypsoAI Toolkit is a development environment with end-to-end secure model building with AI capabilities. CalpysoAI Toolkit has a streamlined workflow, verified ML algorithms, testing, evaluation, verification and validation beginning from research and development through model deployment with monitoring and reporting on a model's performance strengths and weaknesses. Lue lisää tuotteesta CalypsoAI Toolkit

Ominaisuudet

  • Haavoittuvuuksien etsintä
  • Reaaliaikainen analytiikka
  • Integroitu kehitysympäristö
  • API (ohjelmointirajapinta)
Security scanning and penetration testing platform that helps DevOps teams automatically assess Salesforce security postures.
Security scanning and penetration testing platform that helps DevOps teams automatically assess Salesforce security postures. Lue lisää tuotteesta S4 for Salesforce

Ominaisuudet

  • Haavoittuvuuksien etsintä
  • Reaaliaikainen analytiikka
  • Integroitu kehitysympäristö
  • API (ohjelmointirajapinta)
A web security software application that provides English-language vulnerability assessments and other online safeguarding measures.
OWASP ZAP is an open-source web content scanning program that helps businesses with online materials perform security assessments. Along with code reviews that specifically look for security vulnerabilities, the English-language utility features penetration testing tools that simulate hacker attacks. Designed for businesses of all kinds that want to provide online materials for employees and clients, it undertakes security testing and assessments from an end-user perspective n real-time. The system is designed to embed itself between the user's browser interface and the web applications offered by companies. However, it can also work in setups that utilize a network proxy. The system can perform security assessments with all major operating systems. The program aims to exploit known cyber threats and identify vulnerabilities that are already known, then reports those with any potential use to malicious users. Lue lisää tuotteesta OWASP ZAP

Ominaisuudet

  • Haavoittuvuuksien etsintä
  • Reaaliaikainen analytiikka
  • Integroitu kehitysympäristö
  • API (ohjelmointirajapinta)
SaaS mobile application testing platform that reduces application analysis costs and time.
Mobix is a SaaS mobile application testing platform that reduces application analysis costs and time, making tests creation and finding vulnerabilities effortless. Mobix's unique features include: -Non-invasive tool, which augments existing SDLC -Automates 90% of entire test coverage for dynamic and static analysis -No code, plug and play analysis -Automated recording of tests -Machine Learning to automatically adapt auto-tests Lue lisää tuotteesta Mobix

Ominaisuudet

  • Haavoittuvuuksien etsintä
  • Reaaliaikainen analytiikka
  • Integroitu kehitysympäristö
  • API (ohjelmointirajapinta)
Cloud-based vulnerability management platform to detect, monitor, and remediate risks across enterprises' external attack surfaces.
Cloud-based vulnerability management platform to detect, monitor, and remediate risks across enterprises' external attack surfaces. Lue lisää tuotteesta Ostorlab

Ominaisuudet

  • Haavoittuvuuksien etsintä
  • Reaaliaikainen analytiikka
  • Integroitu kehitysympäristö
  • API (ohjelmointirajapinta)