Aqua Logo

Aqua

0
Commercial
Visit Website

Aqua Security is a Cloud Native Application Protection Platform (CNAPP) that secures containerized cloud native applications throughout their lifecycle, from development to production. The platform integrates security measures from code to cloud, combining agent-based and agentless technologies. It focuses on preventing attacks by enforcing pre-deployment hygiene and mitigating attacks in real-time during production. Aqua Security offers features such as container vulnerability scanning, Kubernetes security, serverless security, cloud VM security, and dynamic threat analysis. It supports multiple cloud environments, including AWS, Azure, and Google Cloud, as well as container platforms like Docker and OpenShift. The platform aims to automate DevSecOps processes, facilitate compliance and auditing, and provide cloud native detection and response capabilities. It is designed to operate at enterprise scale without impeding development pipelines.

FEATURES

ALTERNATIVES

A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.

Static application security testing (SAST) tool for scanning source code against security and privacy risks.

Black Duck is an application security platform that provides software composition analysis and supply chain security capabilities to identify vulnerabilities, ensure license compliance, and manage SBOMs throughout the software development lifecycle.

Gitleaks is a SAST tool for detecting and preventing hardcoded secrets in git repos.

A deliberately weak and insecure implementation of GraphQL for testing and practicing GraphQL security

Tool to inform about potential risks in project dependencies list.

An integrated application security platform that combines software composition analysis, container scanning, and runtime security monitoring to identify and prioritize vulnerabilities based on actual usage and risk.

An automated code security tool that analyzes repositories, identifies vulnerabilities, and generates pull requests with fixes while integrating with existing development workflows.