Kodem
Kodem is an application security platform that combines static analysis (SAST) and software composition analysis (SCA) with runtime intelligence. The platform analyzes code, containers, and memory at the function level to provide context about application behavior during execution. It incorporates: - Runtime analysis to validate vulnerability exploitability - Attack chain mapping to identify critical vulnerabilities - AI-powered analysis for vulnerability assessment - SBOM generation with runtime context - Automated workflow for vulnerability remediation - Container and Infrastructure as Code security scanning The tool aims to reduce false positives in vulnerability detection by correlating static analysis findings with runtime behavior.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
An API security platform that discovers, documents, and tests APIs throughout the development lifecycle while maintaining a centralized catalog of all API assets.
Qwiet AI is an application security platform that combines SAST, SCA, container security, secrets detection, and SBOM scanning with AI-powered vulnerability prioritization and automated fix generation.
A free online tool to scan for DOM-based XSS vulnerabilities in HTML, JavaScript, and CSS files.
Data Theorem API Secure is an application security platform that combines SAST, DAST, IAST, and SCA testing methodologies to provide comprehensive security assessment and monitoring for APIs and modern applications throughout their development lifecycle.
A centralized application security posture management platform that integrates security tools, automates workflows, and provides visibility into application security risks.
A Rust-based command-line tool for analyzing .apk files to detect vulnerabilities.
An ASPM platform that provides software supply chain security through risk assessment, prioritization, and protection mechanisms.
A tool that uses Apache mod_rewrite to redirect invalid URIs to a specified URL
PINNED
Mandos
Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.