Home / Application and API Security / Software Development Lifecycle (SDLC) Security

Software Development Lifecycle (SDLC) Security

Secure your software from code to deployment with SDLC security best practices.

Try these 313 AI Software Development Lifecycle (SDLC) Security Tools

Tromzo
Free
Software Development Lifecycle (SDLC) Security

Tromzo View Tromzo

Tromzo empowers organizations to seamlessly integrate security into their development lifecycle, eliminating friction between security and development teams. By centralizing and automating manual workflows, Tromzo simplifies application security (AppSec), enabling rapid scaling of security programs and fostering collaboration. Gain comprehensive visibility and understanding of your entire application stack and uncover critical risk patterns across security and DevOps tooling.

Automate manual AppSec workflows
Centralize security tooling and data
Gain full-stack visibility into application security
TrueDeploy
Free
Software Development Lifecycle (SDLC) Security

TrueDeploy View TrueDeploy

TrueDeploy streamlines software security by providing a centralized view of your application's security posture throughout the development lifecycle. Seamlessly integrating into your existing workflows, it offers instant insights into vulnerabilities within third-party libraries and ensures legal compliance by detecting open-source license breaches. Empower your team to proactively identify and mitigate risks, maintaining robust security and operational integrity with minimal disruption.

Centralized security status monitoring
Seamless integration into CI/CD pipelines
Proactive third-party library vulnerability scanning
TrustInSoft
Free
Software Development Lifecycle (SDLC) Security

TrustInSoft View TrustInSoft

TrustInSoft provides cutting-edge solutions for the exhaustive validation of mission-critical software, effectively eliminating inherent attack vectors. Leveraging the robust Frama-C platform, the TrustInSoft Analyzer performs advanced static source code analysis to proactively detect the most prevalent and dangerous threat families before deployment. Beyond automated analysis, TrustInSoft extends its expertise through professional services, offering formal audits for safety and security-critical existing software components.

Advanced Static Source Code Analysis
Frama-C Platform Foundation
Proactive Threat Detection
TSUNAMI
Free
Software Development Lifecycle (SDLC) Security

TSUNAMI View TSUNAMI

The TSUNAMi center (Trustworthy Systems from UN-trusted component AMalgamations) pioneers the creation of highly trustworthy software systems by ingeniously assembling commercial off-the-shelf (COTS) components. Through a sophisticated blend of analysis, testing, verification, hardening, isolation, and system design, TSUNAMi addresses critical challenges in software and system security. These advancements empower the development of secure software, facilitate in-depth post-mortem analysis of malicious software, and enable robust security assessments of individual software components.

Development of trustworthy software systems
Analysis of commercial off-the-shelf (COTS) components
Advanced testing and verification techniques
Tutamantic
Free
Software Development Lifecycle (SDLC) Security

Tutamantic View Tutamantic

Tutamantic empowers organizations to proactively mitigate security risks early in the development lifecycle. Its innovative Threat Model Automator offers a streamlined, automated approach to identifying and addressing vulnerabilities during the architectural and design phases. By leveraging simple data input through familiar Microsoft Office formats and mapping threat metadata directly to your design, Tutamantic ensures robust security from inception.

Automated threat modeling for design and architecture stages
Simple data entry using Microsoft Office formats
Direct mapping of threat metadata to underlying design
Uleska
Free
Software Development Lifecycle (SDLC) Security

Uleska

Uleska was a scalable platform designed for automated, continuous software security testing and cyber risk translation. It enabled organizations to conduct broader and faster security testing across web, API, and cloud applications within DevOps workflows, without requiring additional cybersecurity personnel. By intelligently automating leading open-source, commercial, and custom security tests, Uleska translated thousands of technical issues into clear business risks, facilitating immediate prioritization and reporting.

Scalable Automated Security Testing
Continuous Security Validation
Cyber Risk Translation and Prioritization
Vantage Point Security
Free
Software Development Lifecycle (SDLC) Security

Vantage Point Security View Vantage Point Security

Vantage Point Security is a premier provider of penetration testing and application security services, specializing in supporting industries undergoing rapid digital transformation. We are recognized for our technical prowess in delivering comprehensive security assessments that safeguard critical digital assets and confidential information. Our deep expertise in cloud and mobile technology security testing establishes us as the trusted partner for leading organizations committed to integrating robust security into their strategic digital initiatives.

Penetration Testing
Application Security Testing
Cloud Security Assessments
Vdoo
Free
Software Development Lifecycle (SDLC) Security

Vdoo View Vdoo

Vdoo offers a comprehensive end-to-end product security platform designed to automate and streamline all software security tasks across the entire product lifecycle. By intelligently prioritizing, communicating, and mitigating security findings, Vdoo empowers product security stakeholders and developers to significantly reduce cyber risk and unlock new business opportunities within the connected products ecosystem. Acquired by JFrog in 2021, Vdoo delivers powerful, vertical-agnostic solutions for a wide range of industries and organizations involved in connected devices.

End-to-end product security automation
Full lifecycle security task management
Prioritization and communication of security findings
VeriBOM
Free
Software Development Lifecycle (SDLC) Security

VeriBOM View VeriBOM

VeriBOM is a comprehensive SaaS platform designed to bolster software security and compliance through automated Software Bill of Materials (SBOM) generation and management. By providing unparalleled transparency into your software supply chain, VeriBOM empowers you to proactively identify and mitigate risks, track open-source components, and ensure adherence to licensing and regulatory requirements. Streamline your risk management processes and protect your organization from costly vulnerabilities and data breaches.

Automated SBOM Generation
Software Supply Chain Transparency
Open-Source Component Tracking
Vigilant Ops
Free
Software Development Lifecycle (SDLC) Security

Vigilant Ops View Vigilant Ops

Vigilant Ops is a pioneer in Software Bill of Materials (SBOM) automation, offering a proactive cybersecurity strategy with continuous vulnerability monitoring. Our InSight Platform provides the world's premier dedicated solution for SBOM automation and distribution, going beyond mere generation or format translation. Securely upload your SBOMs to validate components, identify vulnerabilities, and achieve certified SBOMs, ensuring compliance with evolving regulatory demands like the FDA's PreMarket Guidance.

Automated SBOM Generation and Distribution
Continuous Vulnerability Monitoring
Component Validation and Risk Assessment
Wabbi
Free
Software Development Lifecycle (SDLC) Security

Wabbi View Wabbi

Wabbi is a continuous security platform designed to centralize, automate, and orchestrate security governance and vulnerability management. By translating security policies directly into development processes, Wabbi empowers development teams to proactively own application security within their existing workflows. This approach moves beyond traditional tool-centric DevSecOps, providing actionable intelligence to ensure secure software delivery without compromising development kecepatan.

Continuous Security Orchestration
Automated Security Governance
Integrated Vulnerability Management
Waratek
Free
Software Development Lifecycle (SDLC) Security

Waratek View Waratek

Waratek pioneers next-generation Runtime Application Self-Protection (RASP) with its ARMR #SecurityAsCode platform. Unlike signature-based solutions, Waratek operates within your application runtime, continuously monitoring data flow and instantly neutralizing threats by correcting vulnerable code in real-time, ensuring robust security with minimal performance impact.

Runtime Application Self-Protection (RASP)
Continuous security monitoring within application runtime
Automatic code correction for vulnerabilities
WeSecureApp (WSA)
Free
Software Development Lifecycle (SDLC) Security

WeSecureApp (WSA) View WeSecureApp (WSA)

WeSecureApp (WSA) delivers advanced, bespoke cybersecurity solutions to fortify your applications and networks against evolving threats. Leveraging over 40 years of combined expertise, our certified security professionals provide cutting-edge security testing, auditing, and compliance services, ensuring robust protection regardless of environmental complexity. We are committed to delivering innovative and superior security strategies that align with the latest industry standards.

Comprehensive Application and Network Security Auditing & Assessment
Advanced Penetration Testing Services
Regulatory Compliance and Assurance
White Hawk Software
Free
Software Development Lifecycle (SDLC) Security

White Hawk Software View White Hawk Software

White Hawk Software delivers robust binary-level tamper-proofing to safeguard mission-critical applications against sophisticated threats like zero-day attacks, reverse engineering, and runtime manipulation. Our advanced technology ensures the integrity of your code and cryptographic keys, offering unparalleled protection for embedded systems and high-performance applications. With granular control over security and performance, White Hawk provides a flexible and potent defense against evolving cyber threats.

Runtime code tamper-proofing
Protection against zero-day attacks
Binary-level code integrity
WhiteHat Security
Free
Software Development Lifecycle (SDLC) Security

WhiteHat Security View WhiteHat Security

WhiteHat Security provides comprehensive web application security solutions that integrate cutting-edge technology with expert human analysis from their Threat Research Center. By enabling organizations to proactively identify and mitigate vulnerabilities before they are exploited, WhiteHat empowers customers to reduce cyber risk, optimize costs, and accelerate secure development lifecycles for their web applications and websites. Their "Hack Yourself First" philosophy offers deep insights into actual business risk, fostering a culture of continuous security improvement.

Web Application Security Testing
Threat Research Center (TRC) Expertise
Vulnerability Management
winfunc
Free
Software Development Lifecycle (SDLC) Security

winfunc View winfunc

Asterisk is an AI-powered security auditing platform designed to emulate the approach of human security engineers. It autonomously identifies, verifies, and remediates security vulnerabilities within codebases through context-aware scanning. Asterisk automates the entire auditing lifecycle, delivering highly accurate reports by minimizing false positives and uncovering complex business logic flaws.

Automated vulnerability detection and verification
Context-aware business logic error identification
Full auditing cycle automation
Wired Assurance
Free
Software Development Lifecycle (SDLC) Security

Wired Assurance View Wired Assurance

Wired Assurance is your dedicated partner for comprehensive software application and blockchain smart contract security. We leverage a fusion of expert manual, automated testing, rigorous code reviews, and advanced static/dynamic analysis to validate your digital assets. Our mission is to revolutionize traditional testing methodologies, delivering accelerated coverage, real-time insights, and superior product quality, ensuring your applications and contracts are secure, reliable, and free from critical vulnerabilities.

Comprehensive Software Application Testing
Blockchain Smart Contract Auditing
Manual and Automated Testing Strategies
XBOSoft
Free
Software Development Lifecycle (SDLC) Security

XBOSoft View XBOSoft

XBOSoft is a specialized software QA and testing company dedicated to ensuring the highest levels of software quality and security across the entire development lifecycle. Leveraging deep domain expertise in finance and healthcare alongside advanced technical proficiency in automation, performance, and API testing, we deliver trust and exceptional value to our clients. Our commitment to collaboration and integrity solidifies our reputation as a trusted partner, recognized for mature processes, global responsiveness, and a steadfast dedication to quality assurance beyond the expected standard.

Comprehensive Software QA & Testing Lifecycle Coverage
End-to-End Application Security Testing
Specialized Expertise in Finance and Healthcare
Xeol
Free
Software Development Lifecycle (SDLC) Security

Xeol View Xeol

Xeol addresses the escalating threat of state-sponsored cyber attacks targeting private enterprises' software supply chains. We provide comprehensive security across the entire software lifecycle, from initial code development through build and deployment processes. By ensuring trusted entities build and distribute secure, vulnerability-free software, Xeol fortifies your digital assets against modern supply chain attack vectors that extend beyond your codebase.

End-to-end software supply chain security
Protection against state-sponsored attacks
Verification of trusted entities
Xmirror Security
Free
Software Development Lifecycle (SDLC) Security

Xmirror Security View Xmirror Security

Xmirror Security offers an AI-powered, integrated solution for DevSecOps software supply chain security, providing continuous threat detection and defense. Our intelligent adaptive threat management system addresses the evolving landscape of modern IT environments. Xmirror Security empowers enterprises and institutions to seamlessly implement DevSecOps practices and fortify their IT system security throughout the entire lifecycle, from threat modeling to detection response and beyond.

AI-powered DevSecOps Security
Integrated Threat Detection & Defense
Continuous Software Supply Chain Protection
Xygeni Security
Free
Software Development Lifecycle (SDLC) Security

Xygeni Security View Xygeni Security

Xygeni Security's comprehensive AppSec platform leverages deep contextual insights to proactively identify, prioritize, and mitigate security risks across your entire software supply chain. By automatically detecting and quarantining malicious code in real-time upon new component publication and offering advanced protection for open-source, CI/CD, IaC, and container security, Xygeni empowers your teams to build and deliver secure applications with confidence.

Real-time malicious code detection and quarantine
Comprehensive Software Supply Chain Security
Open Source Component Security
Zerocopter
Free
Software Development Lifecycle (SDLC) Security

Zerocopter View Zerocopter

Zerocopter empowers organizations to proactively secure their applications by connecting them with elite ethical hackers. Our continuous security monitoring and testing platform seamlessly integrates into development workflows, providing actionable insights and ensuring robust protection against evolving threats. By leveraging Zerocopter, development teams can confidently build and maintain secure products, fostering a culture of security from code to cloud.

Continuous Security Monitoring
Seamless Developer Workflow Integration
Access to World-Class Ethical Hackers
ZeroPath
Free
Software Development Lifecycle (SDLC) Security

ZeroPath View ZeroPath

ZeroPath is an advanced developer tool that leverages AI to autonomously identify, validate, and automatically remediate security vulnerabilities within your codebase. Empower your engineering teams to proactively discover and resolve critical security flaws, effectively preventing them from surfacing during expensive penetration tests or through external bug bounty programs.

Autonomous vulnerability detection using AI
Automated vulnerability verification
Intelligent, code-level vulnerability remediation
ZeroThreat
Free
Software Development Lifecycle (SDLC) Security

ZeroThreat View ZeroThreat

ZeroThreat is a developer-first Dynamic Application Security Testing (DAST) solution designed to accelerate vulnerability detection by up to 5x with exceptional accuracy. It empowers AppSec and Development teams to integrate robust security scanning seamlessly throughout the SDLC, without impacting development velocity. By automating the detection and remediation of critical risks like exposed APIs and authentication flaws, ZeroThreat significantly shortens the vulnerability lifecycle from days to hours, ensuring secure product launches on schedule and reducing data breach risks.

5x faster vulnerability detection for accelerated workflows.
Developer-first DAST integrates seamlessly into CI/CD pipelines.
Automated detection of critical risks like API exposure and authentication flaws.
Previous 1 ... 11 12 13 14 Next