Heeler is an application security platform that provides runtime threat modeling and vulnerability management capabilities for organizations developing software applications. The platform focuses on analyzing open-source vulnerabilities in production applications through several key functions: - Runtime threat modeling to identify which vulnerabilities are actually reachable and exploitable in production environments - Automated remediation workflow management to streamline the fixing of identified vulnerabilities - CI/CD pipeline integration for implementing security guardrails and detecting material changes before production deployment - Centralized risk management with ownership routing and SLA tracking - Integration capabilities with third-party security tools and platforms - Real-time validation of remediation efforts - Automated root cause analysis for security issues The system helps organizations prioritize vulnerabilities based on business impact and production context, while providing evidence-based remediation guidance to development teams. It includes features for tracking application dependencies, mapping deployments to source code, and maintaining visibility of the application security posture across the software development lifecycle.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
A brute-force protection middleware for express routes that rate-limits incoming requests.
Integrates static APK analysis with Yara and requires re-compilation of Yara with the androguard module.
Search engine for open-source Git repositories with advanced features like case sensitivity and regular expressions.
A PHP port of Rack::Honeypot, a spam trap that detects and blocks spambots
A comprehensive toolkit for web application security testing, offering a range of products and solutions for identifying vulnerabilities and improving security posture.
A technology lookup and lead generation tool that identifies the technology stack of any website and provides features for market research, competitor analysis, and data enrichment.
A Java API for searching and downloading Android applications from Google Play with additional check-in features for generating ANDROID-ID.
A security-focused general purpose memory allocator providing the malloc API with hardening against heap corruption vulnerabilities.
QIRA is a competitor to strace and gdb with MIT license, supporting Ubuntu and Docker for wider compatibility.
PINNED

Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.