Source Code Analysis

OpenRefactory iCR for C

Automated C code analysis and repair tool benchmarked against NIST SAMATE.

Bearer

Developer-first SAST tool for finding security & privacy vulns in code.

CredShields SolidityScan

AI-powered smart contract vulnerability scanner for Solidity code

Detectors

Detects exposed API keys and credentials across multiple cloud services

Veribee

Source code verification tool that finds bugs and security vulnerabilities

Corgea Malware Scanning

Source code malware scanner detecting backdoors and malicious code in repos

Xiarch Source Code Review

Source code review service to identify security vulnerabilities in applications

Opsera GitCustodian

Scans source code repositories for exposed secrets and sensitive data

Semgrep Code

SAST solution that scans 30+ languages to find and fix code vulnerabilities

StackHawk API Discovery

API discovery tool that maps application attack surface from source code

Black Duck Coverity Static Analysis

SAST tool for finding code quality & security defects in large-scale software

Sec1 ProSAST

SAST tool that identifies vulnerabilities in source code across 30+ languages

Variegate

Source code diversification tool that creates program variants with diversity

Fluid Attacks SAST

SAST tool for continuous source code vulnerability scanning and remediation

Offensive 360

SAST tool using virtual compilers to analyze source code for vulnerabilities

Offensive 360 O360

SAST tool using virtual compilers to analyze source code for vulnerabilities

Offensive360 Offensive 360 Virtual Compiler

AI-driven SAST tool using virtual compilers for source code analysis

Datadog Static Code Analysis

SAST tool for identifying security vulnerabilities in source code

Aikido Static Application Security Testing (SAST)

SAST tool that identifies security and quality issues in source code

DeepSource SAST

SAST engine that scans code commits for security vulnerabilities

Cycode Source Code Leakage Detection

Detects and prevents source code leakage and suspicious behavior.

Cycode SAST - Static Application Security Testing

SAST scanner for identifying security vulnerabilities in source code

SCANOSS Encryption Dataset

Identifies cryptographic algorithms and libraries in code for compliance

Offensive 360 Secure Code Analysis

SAST tool that analyzes source code for vulnerabilities using virtual compilers