Ci Cd

API Security

Flyingduck Software Composition Analysis on SecurityListing: SCA tool for identifying & resolving vulnerabilities in dependencies

Container Security

Conviso AppScan on SecurityListing: Orchestrates and centralizes app security testing results from multiple scanners

Container Security

BoostSecurity Continuous AppSec Testing on SecurityListing: Continuous AppSec testing platform with zero-touch provisioning for CI/CD

Security Scanning

DeepSource SAST on SecurityListing: SAST engine that scans code commits for security vulnerabilities

Software Composition Analysis

BoostSecurity Software Supply Chain Protection on SecurityListing: Software supply chain security platform for SDLC infrastructure protection

Software Composition Analysis

FossID Software Composition Analysis on SecurityListing: SCA tool for code scanning, license identification, and SBOM generation

Software Composition Analysis

Flyingduck Secure Every Commit on SecurityListing: Commit-level code security scanning for vulnerabilities, secrets, and licenses

Dynamic Application Security Testing

DigitSec Automated Application Security Testing on SecurityListing: Automated app security testing platform for Salesforce and B2C Commerce

Risk Assessment

Conviso Vuln Intelligence on SecurityListing: Risk-based vuln mgmt platform centralizing findings from multiple scanners

Threat Intelligence Platforms

Heeler Runtime, Fixability-First SCA on SecurityListing: Runtime SCA tool prioritizing fixable & exploitable open-source vulnerabilities

Container Security

MatosSphere Software Composition Analysis on SecurityListing: SCA tool for detecting vulnerabilities & license risks in open-source deps

Security Scanning

DeepSource IaC Security on SecurityListing: IaC security scanner that detects misconfigurations in infrastructure code

Threat Intelligence Platforms

Mindgard Automated AI Red Teaming on SecurityListing: Automated AI red teaming platform for testing AI systems and LLMs

Container Security

BoostSecurity Secrets Detection on SecurityListing: Scans source code and containers for 130+ types of hardcoded secrets

Risk Assessment

Mindgard AI Security Risk Discovery & Assessment on SecurityListing: AI security platform for risk discovery, red teaming, and vulnerability assessment

Application Security Posture Management

Invicti ASPM on SecurityListing: ASPM platform for vulnerability mgmt, deduplication, triage & remediation

Risk Assessment

BoostSecurity ASPM on SecurityListing: ASPM platform for monitoring and hardening app security across SDLC

Static Application Security Testing

DeepSource Autofix™ AI on SecurityListing: AI-powered code cleanup tool that automatically fixes security and quality issues

Container Security

Plexicus Container Security on SecurityListing: Container security platform scanning images, enforcing K8s policies & runtime threats

Dynamic Application Security Testing

DerScanner Full Cycle Application Security Testing on SecurityListing: Full-cycle app security platform with SAST, DAST, MAST, SCA & binary analysis

Container Security

Wiz Supply Chain Security on SecurityListing: Cloud-native SCA and SBOM platform for supply chain security across code to runtime

Static Application Security Testing

CodeThreat AI-Native AppSec Platform on SecurityListing: AI-native AppSec platform for code security analysis and vulnerability detection

Software Composition Analysis

Wiz Unified Security on SecurityListing: Unified security platform for code, CI/CD, and cloud environments

Static Application Security Testing

Offensive 360 Secure Code Analysis on SecurityListing: SAST tool that analyzes source code for vulnerabilities using virtual compilers

Security Awareness Training

Symbiotic Security on SecurityListing: Real-time AI-powered code security tool for IDE vulnerability detection & fix

Static Application Security Testing

Pixee Pixeebot on SecurityListing: AI-powered automated code security remediation bot for vulnerability fixes

Static Application Security Testing

Perforce Klocwork on SecurityListing: Static code analyzer & SAST tool for C, C++, Java, JavaScript, Python, Kotlin

Static Application Security Testing

SonarSource SonarQube Cloud on SecurityListing: Cloud-based SAST platform for code quality and security analysis

API Security

TeejLab API Discovery Manager on SecurityListing: API discovery, security, governance & lifecycle mgmt platform for enterprises

Vulnerability Assessment

Tumeryk AI Trust Score™ Generator on SecurityListing: Automates LLM vulnerability assessments and red teaming with AI Trust Score

API Security

VulnSign Dynamic Application Security Testing on SecurityListing: DAST tool for scanning web apps, microservices, and APIs for vulnerabilities

API Security

Wallarm API Security Testing on SecurityListing: Automated API security testing tool integrated into CI/CD pipelines

Container Security

Anchore Secure on SecurityListing: Container & source code scanning for vulnerabilities, malware, and secrets

Container Security

OX Application Security on SecurityListing: ASPM platform with Code Projection tech for SDLC risk prioritization

API Security

Prophaze API Security on SecurityListing: AI-powered API security platform with threat detection and discovery

Compliance Management

Drata Compliance as Code on SecurityListing: Compliance automation platform integrating security controls into SDLC workflows

API Security

SCANOSS Licence Dataset on SecurityListing: Open source license compliance dataset for detecting code snippets & obligations

Risk Assessment

DryRun Security Codebase Intelligence on SecurityListing: AI-native SAST tool with natural language query interface for codebase security