Application Security for Static Analysis

Essential tools and best practices for securing software applications throughout their lifecycle. Task: Static Analysis
Explore 17 curated tools and resources

Search tools and resources by name, description, or purpose... (⌘+K)

All

Free

Commercial

Task

RELATED TASKS

access-management (1)ai (10)analytics (1)androguard (1)android-security (1)antivirus (1)apache (3)api (3)api-access (1)api-discovery (1)

PINNED

ImmuniWeb® Discovery
ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.
1
Commercial
Attack Surface Management
Attack Surface Management
Attack Surface
Continuous Monitoring
Dark Web Monitoring
Cloud Security
Vulnerability Management
Compliance
Third Party Risk
Threat Intelligence
Security Monitoring
ImmuniWeb® Discovery
ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.
1
Commercial
Attack Surface Management
Attack Surface Management
Attack Surface
Continuous Monitoring
+7
InfoSecHired
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.
2
Commercial
Resources
Resources
Cybersecurity
Education
Training
Security Professionals
InfoSecHired
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.
2
Commercial
Resources
Resources
Cybersecurity
Education
+2
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
1
Commercial
Application Security
Application Security
Dependency Scanning
Vulnerability Management
Software Supply Chain
Open Source
Sbom
Security Scanning
Devsecops
Vulnerability Detection
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
1
Commercial
Application Security
Application Security
Dependency Scanning
Vulnerability Management
+6
Check Point CloudGuard WAF
A cloud-native web application and API security solution that uses contextual AI to protect against known and zero-day threats without signature-based detection.
1
Commercial
Application Security
Web App Security
Api Security
Cloud Security
Waf
Ddos
Bot Detection
Machine Learning
Api Discovery
Threat Prevention
Zero Day
Check Point CloudGuard WAF
A cloud-native web application and API security solution that uses contextual AI to protect against known and zero-day threats without signature-based detection.
1
Commercial
Application Security
Web App Security
Api Security
Cloud Security
+7
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
0
Commercial
Cloud Security
Cloud Security
Cloud Native
Vulnerability Management
Compliance
Container Security
Cloud Compliance
Api Security
Kubernetes Security
Security Monitoring
Security Automation
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
0
Commercial
Cloud Security
Cloud Security
Cloud Native
Vulnerability Management
+7
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.
1
Commercial
Application Security
Application Security
Github
Code Security
Static Analysis
Security Automation
Devsecops
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.
1
Commercial
Application Security
Application Security
Github
Code Security
+3

LATEST ADDITIONS

ReversingLabs Spectra Assure
A software supply chain security platform that analyzes binaries and software components to detect malware, vulnerabilities, exposed secrets, and tampering throughout the development lifecycle.
1
Commercial
Application Security
Software Supply Chain
Binary Analysis
Vulnerability Detection
Malware Detection
Security Scanning
Devsecops
Threat Intelligence
Static Analysis
Dynamic Analysis
Secret Detection
ReversingLabs Spectra Assure
A software supply chain security platform that analyzes binaries and software components to detect malware, vulnerabilities, exposed secrets, and tampering throughout the development lifecycle.
1
Commercial
Application Security
Software Supply Chain
Binary Analysis
Vulnerability Detection
+7
Offensive 360
A static application security testing (SAST) platform that performs comprehensive source code analysis to identify vulnerabilities, malware, and security issues in application code and dependencies.
0
Commercial
Application Security
Application Security
Static Analysis
Source Code Analysis
Vulnerability Detection
Security Scanning
Devsecops
Malware Detection
Dependency Scanning
Ci Cd
Code Security
Offensive 360
A static application security testing (SAST) platform that performs comprehensive source code analysis to identify vulnerabilities, malware, and security issues in application code and dependencies.
0
Commercial
Application Security
Application Security
Static Analysis
Source Code Analysis
+7
OpenText Fortify Aviator
An AI-powered code security tool that analyzes code for vulnerabilities and provides automated fix suggestions to accelerate remediation.
0
Commercial
Application Security
Ai
Application Security
Code Security
Security Automation
Static Analysis
Vulnerability Management
Sast
Devsecops
Security Testing
Large Language Models
OpenText Fortify Aviator
An AI-powered code security tool that analyzes code for vulnerabilities and provides automated fix suggestions to accelerate remediation.
0
Commercial
Application Security
Ai
Application Security
Code Security
+7
Qwiet
Qwiet AI is an application security platform that combines SAST, SCA, container security, secrets detection, and SBOM scanning with AI-powered vulnerability prioritization and automated fix generation.
0
Commercial
Application Security
Application Security
Ai
Sast
Static Analysis
Vulnerability Management
Devsecops
Security Automation
Code Security
Sbom
Secrets
Qwiet
Qwiet AI is an application security platform that combines SAST, SCA, container security, secrets detection, and SBOM scanning with AI-powered vulnerability prioritization and automated fix generation.
0
Commercial
Application Security
Application Security
Ai
Sast
+7
SonarQube Server
A self-managed static code analysis platform that conducts continuous inspection of codebases to identify security vulnerabilities, bugs, and code quality issues.
0
Commercial
Application Security
Application Security
Static Analysis
Security Scanning
Vulnerability Detection
Code Security
Ci Cd
Security Testing
Sast
Devsecops
Source Code Analysis
SonarQube Server
A self-managed static code analysis platform that conducts continuous inspection of codebases to identify security vulnerabilities, bugs, and code quality issues.
0
Commercial
Application Security
Application Security
Static Analysis
Security Scanning
+7
Flyingduck
A security analysis platform that combines SAST, SCA, SBOM generation and AI-assisted remediation to detect and fix vulnerabilities during the software development lifecycle.
2
Commercial
Application Security
Application Security
Static Analysis
Devsecops
Ci Cd
Vulnerability Detection
Dependency Scanning
Sbom
Ai
Security Automation
Github
Flyingduck
A security analysis platform that combines SAST, SCA, SBOM generation and AI-assisted remediation to detect and fix vulnerabilities during the software development lifecycle.
2
Commercial
Application Security
Application Security
Static Analysis
Devsecops
+7
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.
1
Commercial
Application Security
Application Security
Github
Code Security
Static Analysis
Security Automation
Devsecops
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.
1
Commercial
Application Security
Application Security
Github
Code Security
+3
Octoscan
Octoscan is a static analysis tool that scans GitHub Actions workflows for security vulnerabilities and misconfigurations.
0
Free
Application Security
Github
Ci Cd
Static Analysis
Vulnerability Scanning
Workflow
Security Automation
Octoscan
Octoscan is a static analysis tool that scans GitHub Actions workflows for security vulnerabilities and misconfigurations.
0
Free
Application Security
Github
Ci Cd
Static Analysis
+3
StaCoAn
StaCoAn is a cross-platform tool for static code analysis on mobile applications, emphasizing the identification of security vulnerabilities.
0
Free
Application Security
Mobile Security
Static Analysis
Code Analysis
StaCoAn
StaCoAn is a cross-platform tool for static code analysis on mobile applications, emphasizing the identification of security vulnerabilities.
0
Free
Application Security
Mobile Security
Static Analysis
Code Analysis
Bearer CLI
Static application security testing (SAST) tool for scanning source code against security and privacy risks.
0
Free
Application Security
Appsec
Sast
Static Analysis
Security Testing
Vulnerability Scanning
Code Security
Bearer CLI
Static application security testing (SAST) tool for scanning source code against security and privacy risks.
0
Free
Application Security
Appsec
Sast
Static Analysis
+3
Argus-SAF
Argus-SAF is a static analysis framework for security vetting Android applications.
0
Free
Application Security
Static Analysis
Mobile Security
Argus-SAF
Argus-SAF is a static analysis framework for security vetting Android applications.
0
Free
Application Security
Static Analysis
Mobile Security
Whispers
A static code analysis tool for parsing common data formats to detect hardcoded credentials and dangerous functions.
0
Free
Application Security
Static Analysis
Code Analysis
File Analysis
Whispers
A static code analysis tool for parsing common data formats to detect hardcoded credentials and dangerous functions.
0
Free
Application Security
Static Analysis
Code Analysis
File Analysis
FlowDroid
FlowDroid is a context-, flow-, field-, object-sensitive and lifecycle-aware static taint analysis tool for Android applications.
0
Free
Application Security
Static Analysis
Flow Analysis
FlowDroid
FlowDroid is a context-, flow-, field-, object-sensitive and lifecycle-aware static taint analysis tool for Android applications.
0
Free
Application Security
Static Analysis
Flow Analysis
Androguard module for Yara
Integrates static APK analysis with Yara and requires re-compilation of Yara with the androguard module.
0
Free
Application Security
Androguard
Android Security
Yara
Static Analysis
Mobile Security
Androguard module for Yara
Integrates static APK analysis with Yara and requires re-compilation of Yara with the androguard module.
0
Free
Application Security
Androguard
Android Security
Yara
+2

Application Security for Static Analysis

RELATED TASKS

PINNED

ImmuniWeb® Discovery

ImmuniWeb® Discovery

InfoSecHired

InfoSecHired

Checkmarx SCA

Checkmarx SCA

Check Point CloudGuard WAF

Check Point CloudGuard WAF

Orca Security

Orca Security

DryRun

DryRun

LATEST ADDITIONS

ReversingLabs Spectra Assure

ReversingLabs Spectra Assure

Offensive 360

Offensive 360

OpenText Fortify Aviator

OpenText Fortify Aviator

Qwiet

Qwiet

SonarQube Server

SonarQube Server

Flyingduck

Flyingduck

DryRun

DryRun

Octoscan

Octoscan

StaCoAn

StaCoAn

Bearer CLI

Bearer CLI

Argus-SAF

Argus-SAF

Whispers

Whispers

FlowDroid

FlowDroid

Androguard module for Yara

Androguard module for Yara