All categoriesLaunch brief →
Static Application Security Testing (SAST)
https://www.capterra.com/sast-software/Niches in this category - the functional product types blended into "Static Application Security Testing (SAST)" (19)
Cybersecurity Posture & Vulnerability Management10Application Security Testing & DevSecOps Platform10Agile & Software Development Collaboration Tool3AI Code Generation & Developer Assistant3Software Composition Analysis & Open Source Security Platform2Fuzzing & Software Security Testing Tool2Code Review & Static Analysis Platform2Internal Developer Platform & Self-Service Cloud Portal1Codeless / AI Test Automation Platform1Artifact Repository & Package Management Platform1Data Security & Encryption Platform1AI Governance & Compliance Platform1AI Observability & Model Monitoring1IT Operations & AIOps Platform1Sensitive Data Discovery & Classification Platform1Web Application & API Protection (WAAP) Platform1Salesforce DevOps & Release Management Platform1Kubernetes Management & Container Orchestration Platform1Security Compliance Automation Platform1
57 products2 pages scraped of 258 in category2 sponsored0 shortlisted
| # | Product | Rating | Reviews | Rec | Ease / Svc / Feat / Value | Description |
|---|---|---|---|---|---|---|
| 26 | 5 | 5 | - | 5.0 / 4.8 / 4.4 / 4.7 | Static Application Security Testing platform that empowers developers to create secure applications by providing continuous security. Learn more about GuardRails | |
| 27 | 4.8 | 5 | - | 4.6 / 5.0 / 4.6 / 5.0 | Jsmon is a SAST platform that detects vulnerabilities and uncovers hidden API endpoints in code. Learn more about Jsmon | |
| 28 | 5 | 4 | - | 4.8 / 4.7 / 5.0 / 4.7 | A web security software application that provides English-language vulnerability assessments and other online safeguarding measures. Learn more about OWASP ZAP | |
| 29 | 4 | 4 | - | 3.8 / 3.3 / 4.0 / 3.3 | Pair Sonatype Lift with your favorite SAST tool to find and fix performance, reliability, and style issues deep in your code. Learn more about Sonatype Lifecycle | |
| 30 | 4.7 | 3 | - | 4.0 / 5.0 / 4.3 / 4.0 | OX Security provides full visibility and end-to-end traceability over your entire software supply chain from code to cloud. Learn more about OX Security | |
| 31 | 4.3 | 3 | - | 4.7 / 5.0 / 4.0 / 4.0 | Apiiro helps organizations secure their Software Development Lifecycle (SDLC). Learn more about Apiiro | |
| 32 | 5 | 2 | - | 5.0 / 5.0 / 4.5 / 5.0 | DoveRunner is a mobile app security software that protects digital assets from threats and piracy through content protection features. Learn more about DoveRunner | |
| 33 | 5 | 2 | - | 4.5 / 5.0 / 5.0 / 5.0 | SAST solution that helps developers scan and analyze vulnerabilities across code libraries in real-time, ensuring application security. Learn more about Qwiet AI | |
| 34 | 5 | 2 | - | 5.0 / 5.0 / 5.0 / 5.0 | Trusys AI is an enterprise AI assurance platform that enables Responsible AI through integrated risk management. Learn more about TRU PULSE | |
| 35 | 5 | 2 | - | 4.0 / 4.0 / 4.5 / 4.0 | Fortify is an application security platform that protects applications from breaches, malware, and malicious insiders. Learn more about OpenText Application Security Aviator | |
| 36 | 5 | 1 | - | 5.0 / 4.0 / 5.0 / 5.0 | Holistic Security For Your CI/CD Pipeline. Prevent software supply chain attacks and vulnerabilities, from commit to release. Learn more about Argon | |
| 37 | 5 | 1 | - | 1.0 / 0.0 / 4.0 / 0.0 | IDA Pro is a powerful disassembler and a versatile debugger. Learn more about IDA Pro | |
| 38 | 5 | 1 | - | 5.0 / 5.0 / 4.0 / 5.0 | Jit's platform is the easiest way to secure your code and cloud, providing full application and cloud security coverage in minutes. Learn more about Jit | |
| 39 | 4 | 1 | - | 5.0 / 4.0 / 4.0 / 4.0 | SaaS-based tool that helps businesses secure application development pipelines via vulnerability scanning, automated testing, and more. Learn more about Conviso | |
| 40 | 4 | 1 | - | 4.0 / 4.0 / 5.0 / 5.0 | CodeSonar is a static analysis tool that detects security vulnerabilities and quality issues in source code. Learn more about CodeSonar | |
| 41 | 4 | 1 | - | 5.0 / 5.0 / 4.0 / 4.0 | Veracode is a cybersecurity tool that helps businesses identify & remediate vulnerabilities across the software development lifecycle. Learn more about Veracode | |
| 42 | 0 | 0 | - | – / – / – / – | npmscan secures Node.js projects from supply chain attacks by detecting malware and vulnerabilities in npm packages. Learn more about npmscan | |
| 43 | 0 | 0 | - | – / – / – / – | Advanced fuzzing solution that combines guided fuzzing with symbolic execution, a patented technology from CMU. Learn more about Mayhem | |
| 44 | 0 | 0 | - | – / – / – / – | ZeroPath is an application security testing platform that uses AI to detect vulnerabilities while reducing false positives. Learn more about ZeroPath | |
| 45 | 0 | 0 | - | – / – / – / – | Your code, always better. Automate source code remediation and migration, freeing your developers to deliver more value all the time. Learn more about Moderne | |
| 46 | 0 | 0 | - | – / – / – / – | Static code analysis tool that helps developers check standard compliance, security vulnerabilities, and code quality issues. Learn more about Axivion | |
| 47 | 0 | 0 | - | – / – / – / – | Real-time application security solution that assists businesses with runtime threat modeling and lifecycle management. Learn more about Heeler | |
| 48 | 0 | 0 | - | – / – / – / – | CodeRisk is a real-time static application security testing tool for VS Code that detects vulnerabilities as users code. Learn more about CodeRisk | |
| 49 | 0 | 0 | - | – / – / – / – | Coco is an embedded device code coverage analysis software that enables developers to assess how much of their code is being tested. Learn more about Coco | |
| 50 | 0 | 0 | - | – / – / – / – | Cloud-based vulnerability management platform to detect, monitor, and remediate risks across enterprises' external attack surfaces. Learn more about Ostorlab |