Aqui está nossa lista de aplicativos para Software SAST (Teste de Segurança de Aplicativo Estático). Use os filtros para restringir os resultados e encontrar exatamente o que você está procurando.

Classificar por

33 opções de software

O DeepSource é uma plataforma de integridade de código que todas as ferramentas necessitam para escrever código seguro e sustentável, melhorar a estabilidade do software e aumentar a velocidade do desenvolvedor. Leia mais sobre o DeepSource
Bytesafe is a firewall for dependencies. Using the source code and vulnerability management platform, businesses can protect applications, stay in control and keep unwanted dependencies out of the organization. Leia mais sobre o Bytesafe
O esChecker é uma ferramenta que testa automaticamente se a segurança implementada no aplicativo móvel responde aos ataques que pode vir a sofrer. O esChecker oferece vários testes DAST. Leia mais sobre o esChecker
O GitHub é um local para compartilhar código com amigos, colegas de trabalho, colegas de classe e desconhecidos, ajudando indivíduos e equipes a escrever um código mais rápido e melhor. Leia mais sobre o GitHub
O GitLab é uma plataforma integrada de gerenciamento de ciclo de vida de DevOps de código aberto para equipes de desenvolvimento de software planejarem, codificarem, testarem, implantarem e supervisionarem alterações de produtos. Leia mais sobre o GitLab
O Kiuwan é uma solução de segurança de aplicativos baseada na nuvem que combina a verificação automática de código com o gerenciamento automatizado de componentes de código aberto. A plataforma é compatível com uma variedade de tecnologias e se integra a várias ferramentas, como sistemas de construção, rastreamento de erros e repositórios de... Leia mais sobre o Kiuwan
O SonarQube é uma ferramenta para inspecionar continuamente a qualidade e a segurança do código pelas equipes de desenvolvimento durante as revisões do código. Leia mais sobre o SonarQube
SiteLock is a static application security testing (SAST) software designed to help businesses protect websites against malware and distributed denial-of-service (DDoS) attacks. Key features of the platform include threat detection, database scanning, bad bot blocking, automated plugin patching, security vulnerability repair, and website acceleratio... Leia mais sobre o SiteLock
JFrog Artifactory is a binary repository management SaaS solution that provides software development and DevOps teams with a single source of truth for sourcing, storing, sharing, and deploying software components. Release your software with security and ease. Leia mais sobre o Artifactory
Snyk is a cloud-based application security and testing platform, which helps enterprises discover and fix vulnerabilities across open source libraries, containers, or codes throughout the development process. Features include runtime monitoring, reporting, exploitability indicators, alerts, and prioritization. Leia mais sobre o Snyk
Para equipes de desenvolvimento e operações do Salesforce, o CodeScan ajuda as empresas a digitalizar e analisar códigos do Salesforce, definir padrões de qualidade e segurança e garantir a conformidade com as diretrizes estatutárias em todos os projetos de desenvolvimento de código. Tem mais de 350 regras e dá suporte a todos os idiomas e... Leia mais sobre o CodeScan
CodeScene is a tool that maps hotspots in a codebase and pinpoints the exact lines of unhealthy code hindering software delivery flow. Leia mais sobre o CodeScene
Codiga is a coding assistant that helps software developers write better code faster. With the Codiga coding assistant, businesses can create, find, and import safe and secure reusable code blocks in seconds, saving hours of software development. Leia mais sobre o Codiga
Klocwork is a web-based static code analysis software designed to help businesses identify and manage software security and quality in compliance with regulatory guidelines. It lets DevOps teams detect various security vulnerabilities including tainted data, SQL injection, vulnerable coding practices, buffer overflow, and more. Leia mais sobre o Klocwork
Coverity is a static application security testing (SAST) solution designed to help businesses manage risks across the application portfolio, address quality defects in the software development life cycle, and maintain compliance with many coding and security standards. Leia mais sobre o Coverity
Checkmarx Static Application Security Testing (CxSAST) is designed to help businesses conduct static analysis for identifying vulnerabilities in custom codes and open source applications. It enables DevOps teams to scan source codes in the software development lifecycle (SDLC), mitigate risks, and gain insights into the system's security framework. Leia mais sobre o CxSAST
With GuardRails, you can finally feel safe on every level of your security. The platform enhances development processes and gives developers control via its layered approach that shields them from code to the cloud for complete protection against attackers. Leia mais sobre o GuardRails
Nexus Lifecycle by Sonatype is an application security and dependency management solution designed to help organizations manage open-source governance and automatically find and fix vulnerabilities across the entire software development lifecycle (SDLC). The platform enables developers to monitor security standards in the development process and... Leia mais sobre o Nexus Lifecycle
Apiiro is re-inventing the secure development lifecycle for agile and cloud-native development. It helps businesses transform application security into multidimensional application risk. Leia mais sobre o Apiiro
BuildPiper is a product by OpsTree Labs, which is an end-to-end Kubernetes and microservices Delivery Platform. It is a hybrid cloud-enabled system that facilitates the deployment of dockerized code across multiple environments. Leia mais sobre o BuildPiper
Argon connects to development environments and tools. It protects the entire CI/CD pipeline from code manipulation misconfigurations, code leaks, and vulnerabilities. This solution enables smooth AppSec orchestration by providing a unified view, full visibility, security, and code integrity. Leia mais sobre o Argon
Hex-Rays develops and supports the IDA disassembler. This famous software analysis tool, which is a de-facto standard in the software security industry, is an indispensable item in the toolbox of a software analyst, security expert, software developer, or software engineer. Leia mais sobre o IDA Pro
Conviso is a SaaS-based tool that helps businesses secure application development pipelines via vulnerability scanning, automated testing, and more. Leia mais sobre o Conviso
SonarLint is a free and open-source IDE extension that allows developers to detect and fix code quality & security issues as they code. Leia mais sobre o SonarLint
Bearer enables security and engineering teams to implement data security policies and mitigate risks throughout the development lifecycle. Leia mais sobre o Bearer
ThunderScan by DefenseCode is a Static Application Security Testing (SAST) software that allows businesses to perform deep and extensive security analysis of various application source codes. ThunderScan can be integrated with existing CI/CD pipelines and DevOps environment, offering a platform that requires almost no user input, easy to use, and... Leia mais sobre o ThunderScan
Veracode is a static application security testing (SAST) software designed to help businesses review applications' source code to identify vulnerabilities. The platform allows software developers to conduct application analysis and receive automated security feedback in the IDE and CI/CD pipeline. Leia mais sobre o Veracode
ShiftLeft CORE is an application security platform that improves collaboration between Dev and AppSec teams and provides early scans of code at scale. Leia mais sobre o ShiftLeft CORE
AppSonar helps automate static application security testing to find hidden security and quality bugs at the source. Unlimited code scanning and free email and phone support. Leia mais sobre o AppSonar
Ostorlab is a cloud-based vulnerability management platform designed to help businesses detect, monitor, and remediate risks across enterprises' external attack surfaces. Leia mais sobre o Ostorlab
Tanzu Observability is a user-friendly enterprise observability solution that offers full-stack visibility for applications running on any cloud. Leia mais sobre o VMware Tanzu Observability
Fortify enables businesses of all sizes to protect their applications, data and the rest of their assets from cyber criminals. With strategic outcomes ranging from DevSecOps to secure data analytics, Fortify helps enterprises gain visibility into their applications, detect threats quickly and defend against them effectively with automated incident... Leia mais sobre o Fortify

Categorias relacionadas