Jit
Jit is an application security platform that integrates multiple security scanning capabilities into a unified developer-focused interface. The platform incorporates several key security scanning functionalities: - Static Application Security Testing (SAST) for custom code analysis - Software Composition Analysis (SCA) for open source dependency scanning - Infrastructure as Code (IaC) security scanning - Cloud Security Posture Management (CSPM) - Container and Kubernetes security scanning - Software Bill of Materials (SBOM) generation - Secrets detection - Dynamic Application Security Testing (DAST) - CI/CD pipeline security checks The platform integrates with common development environments and cloud platforms including: - GitHub and GitLab for source code management - AWS, Azure, and GCP for cloud infrastructure - VS Code for IDE integration - Jira and Slack for workflow integration Key functionalities include: - Automated security scanning during pull requests - Contextual risk prioritization of security findings - Security policy management and enforcement - Team-based security reporting - Automated remediation capabilities - Vulnerability management workflow The platform aims to implement security controls within existing development workflows while providing visibility and management capabilities for security teams.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
A Rust-based command-line tool for analyzing .apk files to detect vulnerabilities.
A PHP port of Rack::Honeypot, a spam trap that detects and blocks spambots
Websecurify provides efficient ways to protect organizations with sophisticated technology and expert consultancy.
APKiD is a tool that identifies compilers, packers, obfuscators, and other weird stuff in APK files.
An API security and monitoring platform that automatically discovers, validates, and protects API endpoints while providing comprehensive management and analytics capabilities.
Yaramod is a library for parsing YARA rules into AST and building new YARA rulesets with C++ programming interface.
A comprehensive toolkit for web application security testing, offering a range of products and solutions for identifying vulnerabilities and improving security posture.
A lightweight web application firewall that protects modern applications and APIs across distributed architectures with integrated DoS protection, bot defense, and DevOps-friendly deployment options.
Apiiro ASPM Platform is an application security solution that provides code-to-runtime visibility, risk assessment, and remediation capabilities to help organizations manage and reduce security risks across their application portfolio.
PINNED
Mandos
Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.