22 results
Why Capterra is free
Software that enables development teams to collaborate, and review and manage code. Works with Windows, Mac and mobile devices. Learn more about GitHub
Software that enables development teams to collaborate, and review and manage code. Works with Windows, Mac and mobile devices. Learn more about GitHub
Software that enables development teams to collaborate, and review and manage code. Works with Windows, Mac and mobile devices.

Features

  • Vulnerability Scanning
  • Real Time Analytics
  • Integrated Development...
  • API
Cloud-based DevOps solution that enables businesses to improve workflow processes using time tracking, regulatory compliance, and more.
GitLab is a complete DevOps platform, delivered as a single application, fundamentally changing the way Development, Security, and Ops teams collaborate. GitLab helps teams accelerate software delivery from weeks to minutes, reduce development costs, and reduce the risk of application vulnerabilities while increasing developer productivity.
GitLab is a complete DevOps platform, delivered as a single application, fundamentally changing the way Development, Security, and Ops teams collaborate. GitLab helps teams accelerate software...

Features

  • Vulnerability Scanning
  • Real Time Analytics
  • Integrated Development...
  • API
DevSecOps platform with SAST and SCA, IDE integration and distributed analysis to shield your applications from external threats
Manage your application's vulnerabilities with Static Application Security Testing (SAST) and Software Composition Analysis (SCA) by Kiuwan. It's easy to set up and use. Scan your code locally, then share results in the cloud. Tailored reports with industry standard security ratings help you make informed decisions, reduce technical debt, and mitigate risk. Kiuwan provides comprehensive language coverage, integrates with leading IDEs, and fits seamlessly into your CI/CD/DevSecOps process.
Manage your application's vulnerabilities with Static Application Security Testing (SAST) and Software Composition Analysis (SCA) by Kiuwan. It's easy to set up and use. Scan your code locally, then...

Features

  • Vulnerability Scanning
  • Real Time Analytics
  • Integrated Development...
  • API
Dynatrace provides software intelligence to simplify cloud complexity and accelerate digital transformation.
Dynatrace is an application performance and lifecycle management solution designed to help retail businesses, financial markets, transportation companies, emergency services, and government bodies monitor and analyze the performance of applications on a unified dashboard. Key features of the platform include anomaly detection, root cause determination, network process monitoring, log entry analysis, cross-team collaboration, AI-assistance, and more among others.
Dynatrace is an application performance and lifecycle management solution designed to help retail businesses, financial markets, transportation companies, emergency services, and government bodies...

Features

  • Vulnerability Scanning
  • Real Time Analytics
  • Integrated Development...
  • API
Cloud-based solution that enables businesses to detect & prevent cyber threats with website scanning, malware removal and more.
SiteLock, the global leader in website security solutions, is the only provider to offer complete, cloud-based website protection. Its 360-degree monitoring detects and fixes threats, prevents future attacks, accelerates website performance, and meets PCI compliance standards for businesses of all sizes. Founded in 2008, the company protects over 12 million websites worldwide.
SiteLock, the global leader in website security solutions, is the only provider to offer complete, cloud-based website protection. Its 360-degree monitoring detects and fixes threats, prevents future...

Features

  • Vulnerability Scanning
  • Real Time Analytics
  • Integrated Development...
  • API
For Salesforce dev teams, CodeScan provides the leading code analysis solution, ensuring quality and security of orgs on Salesforce
For Salesforce development teams, CodeScan is the leading static code analysis solution. Our solutions are used exclusively for Salesforce and Salesforce DevOps team. We have the largest Salesforce rule set, are compatible with all languages, and have provided more than 21B line checks. Control quality, by customizing code gates; Boost security according to CWE and OWASP; Track technical debt by scanning your projects quickly; Increase productivity by automating the code review process.
For Salesforce development teams, CodeScan is the leading static code analysis solution. Our solutions are used exclusively for Salesforce and Salesforce DevOps team. We have the largest Salesforce...

Features

  • Vulnerability Scanning
  • Real Time Analytics
  • Integrated Development...
  • API
United Kingdom Local product
Open source security platform that helps find and remediate riska and vulnerabilities across business environments.
Snyk is a developer-first security solution that helps organizations use open source and stay secure. Snyk is the only solution that seamlessly and proactively finds and fixes vulnerabilities and license violations in open source dependencies and Docker images. The Snyk solution integrates its comprehensive proprietary vulnerability database maintained by its expert security research team in Israel and London.
Snyk is a developer-first security solution that helps organizations use open source and stay secure. Snyk is the only solution that seamlessly and proactively finds and fixes vulnerabilities and...

Features

  • Vulnerability Scanning
  • Real Time Analytics
  • Integrated Development...
  • API
SonarQube empowers development teams of all sizes to solve code quality and code security issues within their workflows.
SonarQube is the leading tool for continuously inspecting the Code Quality and Security of your codebases, and guiding development teams during Code Reviews. Covering 27 programming languages, while pairing-up with your existing software pipeline, SonarQube provides clear remediation guidance for developers to understand and fix issues, and for teams overall to deliver better and safer software.
SonarQube is the leading tool for continuously inspecting the Code Quality and Security of your codebases, and guiding development teams during Code Reviews. Covering 27 programming languages, while...

Features

  • Vulnerability Scanning
  • Real Time Analytics
  • Integrated Development...
  • API
Static code analyzer that helps optimize code quality and production time using continuous integration, reports, and more.
Static code analyzer that helps optimize code quality and production time using continuous integration, reports, etc.
Static code analyzer that helps optimize code quality and production time using continuous integration, reports, etc.

Features

  • Vulnerability Scanning
  • Real Time Analytics
  • Integrated Development...
  • API
Find and fix potential bug risks, security flaws and other issues during code reviews -- before they end up in production.
DeepSource automatically reviews your code for bug risks, anti-patterns, performance issues, and security vulnerabilities, and reports them in the pull request. With DeepSource Autofix, we automatically fix some of the issues detected as well. It takes a couple of minutes to set up with your GitHub, GitLab, and Bitbucket account, and supports Python, Go, Ruby, Java, and JavaScript. DeepSource is free to use for open source as well as 3 private repositories up to 3 team members.
DeepSource automatically reviews your code for bug risks, anti-patterns, performance issues, and security vulnerabilities, and reports them in the pull request. With DeepSource Autofix, we automatical...

Features

  • Vulnerability Scanning
  • Real Time Analytics
  • Integrated Development...
  • API
Checkmarx is a provider of state-of-the-art web application security solution: static code analysis software.
Checkmarx is a provider of state-of-the-art web application security solution: static code analysis software, seamlessly integrated into development process. Checkmarx can be integrated at every step of the SDLC, which leads to less vulnerabilities, reduced fixes to older code, lower costs and, most importantly, far more secure applications. Allows to achieve PCI DSS Compliance. Free Demo available on web site.
Checkmarx is a provider of state-of-the-art web application security solution: static code analysis software, seamlessly integrated into development process. Checkmarx can be integrated at every step...

Features

  • Vulnerability Scanning
  • Real Time Analytics
  • Integrated Development...
  • API
A SAST solution designed to help businesses manage risks across the application portfolio and address quality defects in the SDLC.
Coverity is an intelligent, highly scalable static analysis (SAST) solution that helps developers find and fix critical security and quality issues as they code with help from the CodeSight IDE plug-in. Coverity works with 22 different languages and integrates into your CI/CD pipeline, allowing teams to address security and quality defects early in the SDLC. Coverity provides detailed reporting and issue management dashboards, which helps ensure compliance with security and coding standards.
Coverity is an intelligent, highly scalable static analysis (SAST) solution that helps developers find and fix critical security and quality issues as they code with help from the CodeSight IDE...

Features

  • Vulnerability Scanning
  • Real Time Analytics
  • Integrated Development...
  • API
Holistic Security For Your CI/CD Pipeline. Prevent software supply chain attacks and vulnerabilities, from commit to release.
Argon provides security for software development environments' CI/CD pipelines, eliminating the risk from misconfigurations, vulnerabilities and preventing supply chain attacks. This new bread of attacks is an issue all enterprises are dealing with and Argon's solution materially solves the problem in a meaningful way. Argon provides end-to-end AppSec visibility and security platform for the development process and boost your overall security posture.
Argon provides security for software development environments' CI/CD pipelines, eliminating the risk from misconfigurations, vulnerabilities and preventing supply chain attacks. This new bread of...

Features

  • Vulnerability Scanning
  • Real Time Analytics
  • Integrated Development...
  • API
SonarCloud is an online service to catch Bugs and Security Vulnerabilities in your Pull Requests and throughout your code repositories.
SonarQube is the leading tool for continuously inspecting the Code Quality and Security of your codebases, and guiding development teams during Code Reviews. Covering 27 programming languages, while pairing-up with your existing software pipeline, SonarQube provides clear remediation guidance for developers to understand and fix issues, and for teams overall to deliver better and safer software.
SonarQube is the leading tool for continuously inspecting the Code Quality and Security of your codebases, and guiding development teams during Code Reviews. Covering 27 programming languages, while...

Features

  • Vulnerability Scanning
  • Real Time Analytics
  • Integrated Development...
  • API
Static Application Security Testing, WhiteBox Testing solution.
DefenseCode ThunderScan® is a SAST (Static Application Security Testing, WhiteBox Testing) solution for performing deep and extensive security analysis of application source code. ThunderScan® is easy to use, requires almost no user input and can be deployed during or after development with easy integration into your DevOps environment and CI/CD pipeline.
DefenseCode ThunderScan® is a SAST (Static Application Security Testing, WhiteBox Testing) solution for performing deep and extensive security analysis of application source code. ThunderScan® is...

Features

  • Vulnerability Scanning
  • Real Time Analytics
  • Integrated Development...
  • API
All in one security risk management platform.
All in one security risk management platform.
All in one security risk management platform.

Features

  • Vulnerability Scanning
  • Real Time Analytics
  • Integrated Development...
  • API
Tanzu Observability enables DevOps teams to troubleshoot and resolve application production issues quickly and cost-effectively.
Tanzu Observability is an enterprise observability platform that provides full-stack visibility for modern applications running on any cloud. It enables development, SRE and DevOps teams to quickly identify and troubleshoot performance issues by securely and reliably providing granular visibility into containerized applications and cloud infrastructure.
Tanzu Observability is an enterprise observability platform that provides full-stack visibility for modern applications running on any cloud. It enables development, SRE and DevOps teams to quickly...

Features

  • Vulnerability Scanning
  • Real Time Analytics
  • Integrated Development...
  • API
SonarLint is a free and open source IDE extension that allows developers to detect and fix code quality & security issues as they code.
SonarLint is a free and open source IDE extension that allows developers to instantly detect and fix code quality and security issues as they write code. Like a spell checker, SonarLint highlights coding flaws so issues can be addressed right in the IDE, before code is committed. Backed by hundreds of language specific Static Code Analysis rules, the tool provides immediate in-context help and examples to guide users to understand and fix issues.
SonarLint is a free and open source IDE extension that allows developers to instantly detect and fix code quality and security issues as they write code. Like a spell checker, SonarLint highlights...

Features

  • Vulnerability Scanning
  • Real Time Analytics
  • Integrated Development...
  • API
ShiftLeft CORE is a suite of modern AST tools that simplify work between Dev and AppSec teams and provide early scans of code at scale.
ShiftLeft CORE is a suite of modern AST tools that simplify work between Dev and AppSec teams and provide early scans of code at scale.
ShiftLeft CORE is a suite of modern AST tools that simplify work between Dev and AppSec teams and provide early scans of code at scale.

Features

  • Vulnerability Scanning
  • Real Time Analytics
  • Integrated Development...
  • API
IDA Pro is a powerful disassembler and a versatile debugger.
The source code of the software we use on a daily basis isn’t always available. A disassembler like IDA Pro is capable of creating maps of their execution to show the binary instructions that are actually executed by the processor in a symbolic representation called assembly language. This disassembly process allows software specialists to analyze programs that are suspected to be nefarious in nature, such as spyware or malware.
The source code of the software we use on a daily basis isn’t always available. A disassembler like IDA Pro is capable of creating maps of their execution to show the binary instructions that are...

Features

  • Vulnerability Scanning
  • Real Time Analytics
  • Integrated Development...
  • API
esChecker verifies runtime defenses and protections against reverse engineering.
Do you trust your Mobile Application Security Protections? Without the right level of protection, your Mobile Application is an open door to critical risks. Fraudsters that work around protection to access protected information or to bypass the payment wall End-users that are victim of hackers, leading to personal data leaks. Ensuring that your protection shield is always up is the key step.
Do you trust your Mobile Application Security Protections? Without the right level of protection, your Mobile Application is an open door to critical risks. Fraudsters that work around protection to...

Features

  • Vulnerability Scanning
  • Real Time Analytics
  • Integrated Development...
  • API
It is a SAST application that helps businesses to identify common defects, violation of policies, and other vulnerabilities.
It is a SAST application that helps businesses to identify common defects, violation of policies, and other vulnerabilities.
It is a SAST application that helps businesses to identify common defects, violation of policies, and other vulnerabilities.

Features

  • Vulnerability Scanning
  • Real Time Analytics
  • Integrated Development...
  • API