Average Ratings 0 Ratings
Average Ratings 0 Ratings
Similar Products
-
Aikido SecurityAikido is the all-in-one security platform for development teams to secure their complete stack, from code to cloud. Aikido centralizes all code and cloud security scanners in one place. Aikido offers a range of powerful scanners including static code analysis (SAST), dynamic application security testing (DAST), container image scanning, and infrastructure-as-code (IaC) scanning. Aikido integrates AI-powered auto-fixing features, reducing manual work by automatically generating pull requests to resolve vulnerabilities and security issues. It also provides customizable alerts, real-time vulnerability monitoring, and runtime protection, enabling teams to secure their applications and infrastructure seamlessly.
-
ZeroPathZeroPath (YC S24) is an AI-native application security platform that delivers comprehensive code protection beyond traditional SAST. Founded by security engineers from Tesla and Google, ZeroPath combines large language models with deep program analysis to deliver intelligent security testing that finds real vulnerabilities while dramatically reducing false positives. Unlike traditional SAST tools that rely on pattern matching, ZeroPath understands code context, business logic, and developer intent. This enables identification of sophisticated security issues including business logic flaws, broken authentication, authorization bypasses, and complex dependency vulnerabilities. Our comprehensive security suite covers the application security lifecycle: 1. AI-powered SAST 2. Software Composition Analysis with reachability analysis 3. Secrets detection and validation 4. Infrastructure as Code scanning 5. Automated PR reviews 6. Automated patch generation and more... ZeroPath integrates seamlessly with GitHub, GitLab, Bitbucket, Azure DevOps and many more. The platform handles codebases with millions of lines across Python, JavaScript, TypeScript, Java, Go, Ruby, Rust, PHP, Kotlin and more. Our research team has been successful in finding vulnerabilities like critical account takeover in better-auth (CVE-2025-61928, 300k+ weekly downloads), identifying 170+ verified bugs in curl, and discovering 0-days in production systems at Netflix, Hulu, and Salesforce. Trusted by 750+ companies and performing 200k+ code scans monthly.
-
ParasoftParasoft's mission is to provide automated testing solutions and expertise that empower organizations to expedite delivery of safe and reliable software. A powerful unified C and C++ test automation solution for static analysis, unit testing and structural code coverage, Parasoft C/C++test helps satisfy compliance with industry functional safety and security requirements for embedded software systems.
-
EZO AssetSonarAssetSonar is a comprehensive IT asset management platform that provides real-time visibility into your entire digital infrastructure. Track and optimize hardware, software, and license management to reduce risks, control IT spend, and improve compliance. AssetSonar is an IT asset management and IT service management platform that provides real-time visibility across your entire digital infrastructure. With native ITSM capabilities, AssetSonar helps track and optimize hardware, software, licenses, and service workflows, reducing risks, controlling IT expenditures, and enhancing compliance. The platform features real-time asset context via its IT Graph, which links tickets, assets, software, and users, enabling faster issue resolution and improved decision-making. With integrated patch management, software governance, and automated workflows, AssetSonar streamlines IT operations, enhances service delivery, and supports more efficient offboarding processes.
-
WizWiz is a new approach in cloud security. It finds the most important risks and infiltration vectors across all multi-cloud environments. All lateral movement risks, such as private keys that are used to access production and development environments, can be found. You can scan for vulnerabilities and unpatched software in your workloads. A complete inventory of all services and software within your cloud environments, including version and package details, is available. Cross-reference all keys on your workloads with their privileges in your cloud environment. Based on a complete analysis of your cloud network, including those behind multiple hops, you can see which resources are publicly available to the internet. Compare your industry best practices and baselines to assess the configuration of cloud infrastructure, Kubernetes and VM operating system.
-
SetylGain full visibility and control over your IT assets, software licenses, usage and spend with Setyl. Setyl is a cloud-based IT asset and license management (ITAM) platform, which connects to your existing systems with 100+ out-of-the-box integrations. Use Setyl to manage all your hardware assets, software applications, SaaS subscriptions, licenses, vendors, admins, users and spend in one place — helping you to: 1. Manage your hardware and software assets in one place. 2. Automate and scale daily IT operations, including employee onboarding and offboarding processes. 3. Identify and cut wasted IT spend. 4. Prepare for your security audit and stay compliant, including with SOC 2 and ISO 27001. With its intuitive interface and low learning curve, the Setyl platform offers a user-friendly experience and facilitates collaboration across your organization. Features include: • IT asset and license inventory • Asset lifecycle management • SaaS subscription, software application and license management • Software renewal tracking • License rightsizing • Employee onboarding and offboarding workflows • ISO 27001 and SOC 2 compliance • Vendor audits and due diligence • IT spend management and reporting • 100+ native integrations and API access • Fully guided support
-
ManageEngine Endpoint CentralManageEngine's Endpoint Central, formerly Desktop Central, is a Unified Endpoint Management Solution that manages enterprise mobility management, including all features of mobile app management and mobile device management, as well as client management for a wide range of endpoints such as mobile devices, laptops computers, tablets, servers, and other machines. ManageEngine Endpoint Central allows users to automate their desktop management tasks such as installing software, patching, managing IT assets, imaging, and deploying OS.
-
Nalpeiron ZentitleThe pioneer in Enterprise-Class Cloud Based Software Licensing and Monetization since 2005, as used by the world's leading SaaS, Software and IoT Companies. 1000s of software companies have used Zentitle to launch new software products faster and control their entitlements easily, many going from startup to IPO on our cloud software license management solutions. Software Companies looking to monetize their products and manage their customers use the Zentitle platform. Save engineering time. Reduce infrastructure costs. Get your software to market quickly. If you create and sell software, it is time to adopt modern Licensing Models. Product Managers looking to drive revenue from their products do so much faster with Zentitle. New offerings, plans and tiers can be brought to market fast, with little to no engineering once Zentitle is in place. Allow your customers to buy in all the ways they want to.
-
TrustInSoft AnalyzerTrustInSoft commercializes a source code analyzer called TrustInSoft Analyzer, which analyzes C and C++ code and mathematically guarantees the absence of defects, immunity of software components to the most common security flaws, and compliance with a specification. The technology is recognized by U.S. federal agency the National Institute of Standards and Technology (NIST), and was the first in the world to meet NIST’s SATE V Ockham Criteria for high quality software. The key differentiator for TrustInSoft Analyzer is its use of mathematical approaches called formal methods, which allow for an exhaustive analysis to find all the vulnerabilities or runtime errors and only raises true alarms. Companies who use TrustInSoft Analyzer reduce their verification costs by 4, efforts in bug detection by 40, and obtain an irrefutable proof that their software is safe and secure. The experts at TrustInSoft can also assist clients in training, support and additional services.
-
Astra PentestAstra's Pentest is a comprehensive solution for penetration testing. It includes an intelligent vulnerability scanner and in-depth manual pentesting. The automated scanner performs 10000+ security checks, including security checks for all CVEs listed in the OWASP top 10 and SANS 25. It also conducts all required tests to comply with ISO 27001 and HIPAA. Astra provides an interactive pentest dashboard which allows users to visualize vulnerability analysis, assign vulnerabilities to team members, collaborate with security experts, and to collaborate with security experts. The integrations with CI/CD platforms and Jira are also available if users don't wish to return to the dashboard each time they want to use it or assign a vulnerability for a team member.
Description
Black Duck, a segment of the Synopsys Software Integrity Group, stands out as a prominent provider of application security testing (AST) solutions. Their extensive array of offerings encompasses tools for static analysis, software composition analysis (SCA), dynamic analysis, and interactive analysis, which assist organizations in detecting and addressing security vulnerabilities throughout the software development life cycle. By streamlining the identification and management of open-source software, Black Duck guarantees adherence to security and licensing regulations. Their solutions are meticulously crafted to enable organizations to foster trust in their software while effectively managing application security, quality, and compliance risks at a pace that aligns with business demands. With Black Duck, businesses are equipped to innovate with security in mind, delivering software solutions confidently and efficiently. Furthermore, their commitment to continuous improvement ensures that clients remain ahead of emerging security challenges in a rapidly evolving technological landscape.
Description
Designed for app development, Q-mast embeds security directly into your workflow to identify security, privacy, and compliance risks before the mobile app is released. With a design tailored for DevSecOps workflows, Q-mast supports continuous, automated security testing that aligns with tools like Jenkins, GitLab, and GitHub.
Q-mast capabilities include automated scanning in minutes, no source code needed; analysis of compiled app binary, regardless of in-app or run-time obfuscations; precise SBOM generation and analysis for vulnerability reporting to specific library version, including embedded libraries; comprehensive static (SAST), dynamic (DAST), interactive (IAST) and forced-path execution app analysis; malicious behavior profiling, including app collusion; and checks against privacy & security standards including NIAP, NIST, MASVS.
API Access
Has API
API Access
Has API
Integrations
Apache Maven
Black Duck Mobile Application Security Testing
BlueFlag Security
C
C#
C++
Coverity Static Analysis
GitHub
Gradle
Java
Integrations
Apache Maven
Black Duck Mobile Application Security Testing
BlueFlag Security
C
C#
C++
Coverity Static Analysis
GitHub
Gradle
Java
Pricing Details
No price information available.
Free Trial
Free Version
Pricing Details
No price information available.
Free Trial
Free Version
Deployment
Web-Based
On-Premises
iPhone App
iPad App
Android App
Windows
Mac
Linux
Chromebook
Deployment
Web-Based
On-Premises
iPhone App
iPad App
Android App
Windows
Mac
Linux
Chromebook
Customer Support
Business Hours
Live Rep (24/7)
Online Support
Customer Support
Business Hours
Live Rep (24/7)
Online Support
Types of Training
Training Docs
Webinars
Live Training (Online)
In Person
Types of Training
Training Docs
Webinars
Live Training (Online)
In Person
Vendor Details
Company Name
Black Duck
Founded
2002
Country
United States
Website
www.blackduck.com
Vendor Details
Company Name
Quokka
Founded
2011
Country
United States
Website
www.quokka.io/products/q-mast
Product Features
IT Asset Management
Asset Tracking
Audit Management
Compliance Management
Configuration Management
Contract/License Management
Cost Tracking
Depreciation Management
IT Service Management
Inventory Management
Maintenance Management
Procurement Management
Requisition Management
Supplier Management
License Management
Automatic SKU Recognition
Central LM Server
Copy Protection
History Tracking
Node Management
Online Activation
Portable License
Sarbanes-Oxley Compliance
Timing Rights
Trial License
Static Application Security Testing (SAST)
Application Security
Dashboard
Debugging
Deployment Management
IDE
Multi-Language Scanning
Real-Time Analytics
Source Code Scanning
Vulnerability Scanning
Product Features
Mobile App Development
Access Controls / Permissions
Any App Development Language
Collaboration Tools
Compatibility Testing
Data Modeling
Debugging
Drag and Drop Editor
Enterprise Mobility (EMM/MAM)
FaceID and TouchID
For Consumer Apps
For Enterprise Apps
Integration Options
Mobile App Security
Multi-Factor Authentication (MFA)
Multiple Apps from Same Base
No Dependencies
No-Code
Reporting / Analytics
Single Sign-On (SSO)
Source Control
Visual Editor
Mobile App Testing
Functional Testing
Installation Testing
Interruption Testing
Memory Testing
Performance Testing
Usability Testing
Static Application Security Testing (SAST)
Application Security
Dashboard
Debugging
Deployment Management
IDE
Multi-Language Scanning
Real-Time Analytics
Source Code Scanning
Vulnerability Scanning
Vulnerability Scanners
Asset Discovery
Black Box Scanning
Compliance Monitoring
Continuous Monitoring
Defect Tracking
Interactive Scanning
Logging and Reporting
Network Mapping
Perimeter Scanning
Risk Analysis
Threat Intelligence
Web Inspection
