Sast
Browse 16 sast tools
FEATURED
Fix-first AppSec powered by agentic remediation, covering SCA, SAST & secrets.
Fix-first AppSec powered by agentic remediation, covering SCA, SAST & secrets.
SAST tool for analyzing Java and JavaScript/TypeScript applications
SAST tool for analyzing Java and JavaScript/TypeScript applications
Detects exposed API keys, tokens, credentials & PII in code repositories
Detects exposed API keys, tokens, credentials & PII in code repositories
AI-native SAST tool that finds and fixes code vulnerabilities using LLMs
AI-native SAST tool that finds and fixes code vulnerabilities using LLMs
SAST solution that scans 30+ languages to find and fix code vulnerabilities
SAST solution that scans 30+ languages to find and fix code vulnerabilities
AI-native AppSec platform with SCA, SAST, container & dependency mgmt.
AI-native AppSec platform with SCA, SAST, container & dependency mgmt.
AI-native AppSec platform with SAST, SCA, container & dependency mgmt.
AI-native AppSec platform with SAST, SCA, container & dependency mgmt.
An application security platform that combines multiple security scanners including SAST, SCA, container security, and compliance reporting with CI/CD integration capabilities.
An application security platform that combines multiple security scanners including SAST, SCA, container security, and compliance reporting with CI/CD integration capabilities.
Code quality and security platform with SAST, SCA, and AI-powered remediation
Code quality and security platform with SAST, SCA, and AI-powered remediation
AI-powered SAST tool that finds and auto-fixes code vulnerabilities in real-time
AI-powered SAST tool that finds and auto-fixes code vulnerabilities in real-time
Insider is an open-source CLI tool that performs static source code analysis to detect OWASP Top 10 vulnerabilities across multiple programming languages including Java, Kotlin, Swift, .NET, C#, and JavaScript.
Insider is an open-source CLI tool that performs static source code analysis to detect OWASP Top 10 vulnerabilities across multiple programming languages including Java, Kotlin, Swift, .NET, C#, and JavaScript.
Bearer CLI is a static application security testing tool that scans source code across multiple programming languages to identify and prioritize OWASP Top 10 and CWE Top 25 security vulnerabilities through data flow analysis.
Bearer CLI is a static application security testing tool that scans source code across multiple programming languages to identify and prioritize OWASP Top 10 and CWE Top 25 security vulnerabilities through data flow analysis.
Mobile Audit is a Docker-based SAST and malware analysis tool that performs comprehensive security analysis of Android APK files, including vulnerability detection, certificate verification, and Virus Total integration.
Mobile Audit is a Docker-based SAST and malware analysis tool that performs comprehensive security analysis of Android APK files, including vulnerability detection, certificate verification, and Virus Total integration.
A comprehensive repository documenting security vulnerabilities in regular expressions used by Web Application Firewalls, including bypass examples and SAST tools for vulnerability identification.
A comprehensive repository documenting security vulnerabilities in regular expressions used by Web Application Firewalls, including bypass examples and SAST tools for vulnerability identification.
Static security code scanner (SAST) for Node.js applications with Docker support and integrations with Slack.
Static security code scanner (SAST) for Node.js applications with Docker support and integrations with Slack.
Gitleaks is a SAST tool for detecting and preventing hardcoded secrets in git repos.
Gitleaks is a SAST tool for detecting and preventing hardcoded secrets in git repos.
