Static Application Security Testing

API Security

Offensive 360 on SecurityListing: SAST tool using virtual compilers to analyze source code for vulnerabilities

Container Security

BoostSecurity Continuous AppSec Testing on SecurityListing: Continuous AppSec testing platform with zero-touch provisioning for CI/CD

Static Application Security Testing

Delphos Labs Analyze on SecurityListing: AI-powered reverse engineering tool for analyzing compiled binaries

Security Scanning

DeepSource SAST on SecurityListing: SAST engine that scans code commits for security vulnerabilities

Static Application Security Testing

DARPA Bin2Math on SecurityListing: Extracts mathematical algorithms from binary programs for CPS analysis.

API Security

Ghost Security Exorcist on SecurityListing: AI-driven code analysis tool for API discovery and vulnerability detection

Static Application Security Testing

Vidoc Security on SecurityListing: VIDOC is an AI-powered security tool that automates code review, detects and fixes vulnerabilities, and monitors external security, ensuring the integrity of both human-written and AI-generated code in software development pipelines.

Container Security

Kodem C.O.R.E. on SecurityListing: Unified engine correlating static & runtime analysis for app security

Software Composition Analysis

Flyingduck Secure Every Commit on SecurityListing: Commit-level code security scanning for vulnerabilities, secrets, and licenses

Security Scanning

DeepSource IaC Security on SecurityListing: IaC security scanner that detects misconfigurations in infrastructure code

Static Application Security Testing

SearchCode on SecurityListing: SearchCode is an extensive code search engine that indexes 75 billion lines of code from millions of projects to help developers find coding examples and libraries.

Static Application Security Testing

DerSecur DerScanner on SecurityListing: SAST tool that scans source code and binaries for security vulnerabilities

Dynamic Application Security Testing

GuardRails on SecurityListing: DevSecOps platform for vulnerability detection and developer security training

Static Application Security Testing

Offensive 360 O360 on SecurityListing: SAST tool using virtual compilers to analyze source code for vulnerabilities

Dynamic Application Security Testing

DigitSec Automated Application Security Testing on SecurityListing: Automated app security testing platform for Salesforce and B2C Commerce

Static Application Security Testing

Entropy Source Evaluation on SecurityListing: Using high-quality entropy sources for CSPRNG seeding is crucial for security.

Container Security

BoostSecurity Secrets Detection on SecurityListing: Scans source code and containers for 130+ types of hardcoded secrets

Static Application Security Testing

DeepSource Autofix™ AI on SecurityListing: AI-powered code cleanup tool that automatically fixes security and quality issues

Software Composition Analysis

Flyingduck Code Security Intelligence on SecurityListing: SAST tool that detects logical flaws and business logic vulnerabilities

Static Application Security Testing

Software Improvement Group Sigrid® on SecurityListing: Software portfolio governance platform for code quality and security analysis

Security Scanning

SonarQube Server on SecurityListing: A self-managed static code analysis platform that conducts continuous inspection of codebases to identify security vulnerabilities, bugs, and code quality issues.

Static Application Security Testing

SonarSource SonarQube Cloud on SecurityListing: Cloud-based SAST platform for code quality and security analysis

Static Application Security Testing

Amplify Security Fix Your Code on SecurityListing: Automated vulnerability remediation tool that fixes code security issues

Static Application Security Testing

DryRun Security AppSec Agents on SecurityListing: AI-native SAST tool providing contextual code security analysis in pull requests

Static Application Security Testing

Perforce Klocwork on SecurityListing: Static code analyzer & SAST tool for C, C++, Java, JavaScript, Python, Kotlin

Static Application Security Testing

Pixee Pixeebot on SecurityListing: AI-powered automated code security remediation bot for vulnerability fixes

Static Application Security Testing

Sonarsource SonarQube IDE on SecurityListing: IDE plugin for real-time code quality and security issue detection

Software Composition Analysis

SonarSource Advanced Security on SecurityListing: SAST and SCA platform for code security analysis with taint analysis

Static Application Security Testing

Offensive 360 Secure Code Analysis on SecurityListing: SAST tool that analyzes source code for vulnerabilities using virtual compilers

Risk Assessment

DryRun Security Codebase Intelligence on SecurityListing: AI-native SAST tool with natural language query interface for codebase security

Dynamic Application Security Testing

DerScanner Full Cycle Application Security Testing on SecurityListing: Full-cycle app security platform with SAST, DAST, MAST, SCA & binary analysis

Static Application Security Testing

Offensive360 Offensive 360 Virtual Compiler on SecurityListing: AI-driven SAST tool using virtual compilers for source code analysis

Vulnerability Assessment

The Code Registry Technical Due Diligence on SecurityListing: AI-powered code analysis platform for technical due diligence and audits

Static Application Security Testing

Variegate on SecurityListing: Source code diversification tool that creates program variants with diversity

Static Application Security Testing

The Code Registry AI-Powered Code Intelligence on SecurityListing: AI-powered code analysis platform for security, quality, and developer insights

Static Application Security Testing

CodeThreat AI-Native AppSec Platform on SecurityListing: AI-native AppSec platform for code security analysis and vulnerability detection

API Security

CloudDefense.AI QINA (App Security) on SecurityListing: DevSecOps platform for app security with SAST, DAST, SCA, and API testing