Application Security for Static Analysis
Application security tools and solutions for securing web applications, mobile apps, and software throughout the development lifecycle. Task: Static Analysis
Browse 150 security tools
FEATURED
RELATED TASKS
Scans IaC files for misconfigurations before deployment to production.
Cloud-based SAST platform for code quality and security analysis
Static code analyzer & SAST tool for C, C++, Java, JavaScript, Python, Kotlin
Open source license compliance dataset for detecting code snippets & obligations
SAST scanner for identifying security vulnerabilities in source code
SAST tool that detects vulnerabilities and malicious code in custom source code
AI-powered reverse engineering tool for analyzing compiled binaries
ImmuniWeb MobileSuite is a mobile application penetration testing platform that combines AI-powered automation with manual security testing to assess mobile apps and their backend infrastructure for security vulnerabilities and compliance requirements.
SAST tool that analyzes source code for vulnerabilities using virtual compilers
AI-driven code analysis tool for API discovery and vulnerability detection
Code quality and security platform with SAST, SCA, and AI-powered remediation
AI-powered automated code security remediation bot for vulnerability fixes
AI-native SAST tool providing contextual code security analysis in pull requests
Octoscan is a static analysis tool that scans GitHub Actions workflows for security vulnerabilities and misconfigurations.
AI-powered SAST tool that finds and auto-fixes code vulnerabilities in real-time
Code security and quality platform with SAST, SCA, DAST, and AI code protection
DOMdig is a DOM XSS scanner that uses static analysis, dynamic analysis, and fuzz testing to detect and exploit Cross-Site Scripting vulnerabilities in Single Page Applications.
A command-line tool that scans textual data and Git history to identify and locate secrets, API keys, passwords, and other sensitive information.
A pre-commit security tool that scans source code repositories to detect and prevent secrets like API keys, passwords, and credentials from being committed to version control systems.
Insider is an open-source CLI tool that performs static source code analysis to detect OWASP Top 10 vulnerabilities across multiple programming languages including Java, Kotlin, Swift, .NET, C#, and JavaScript.
StaCoAn is a cross-platform tool for static code analysis on mobile applications, emphasizing the identification of security vulnerabilities.
A comprehensive Android application analysis tool that provides device management, logcat analysis, file examination, and integration with security frameworks like MobSF and JD-GUI.
APKLeaks is a command-line tool that scans Android APK files to identify embedded URIs, endpoints, and secrets for security assessment purposes.