Home / Application and API Security / Software Development Lifecycle (SDLC) Security

Software Development Lifecycle (SDLC) Security

Secure your software from code to deployment with SDLC security best practices.

Try these 313 AI Software Development Lifecycle (SDLC) Security Tools

Digital Security by Design (DSbD)
Free
Software Development Lifecycle (SDLC) Security

Digital Security by Design (DSbD) View Digital Security by Design (DSbD)

The Digital Security by Design (DSbD) initiative, backed by the UK government, is revolutionizing digital technology to establish a more resilient and secure infrastructure for the future. By fostering inherently trustworthy digital environments, DSbD aims to ensure only authorized access to data and operations, significantly mitigating the impact of potential vulnerabilities. This forward-thinking approach leverages new technologies to proactively block the exploitation of prevalent software vulnerabilities, thereby reducing harm and enhancing overall digital safety.

UK Government supported initiative
Transforms digital technology for enhanced security
Creates a resilient and secure digital foundation
Digital.ai
Free
Software Development Lifecycle (SDLC) Security

Digital.ai View Digital.ai

Digital.ai provides an AI-powered DevOps platform engineered to accelerate digital transformation for Global 5000 enterprises. By unifying and securing the entire software lifecycle, it delivers predictive insights to enhance quality, security, and business value. Unlock new market opportunities and optimize software investments with a platform built on decades of expertise in agile, DevOps, and application security.

AI-powered DevOps platform
Unified software lifecycle management
Enhanced application security
D.med Software
Free
Software Development Lifecycle (SDLC) Security

D.med Software View D.med Software

D.med Software is a specialized cybersecurity firm dedicated to securing embedded software and cloud applications within the medical industry. Since our inception in 2015, we have been at the forefront of innovation, developing advanced software solutions and robust cybersecurity measures for MedTech manufacturers. Our deep expertise spans from low-level firmware to sophisticated cloud-based platforms, ensuring comprehensive protection and regulatory compliance for your medical devices.

Embedded Software Cybersecurity
Cloud Application Security for Healthcare
MedTech Software Development
eCosCentric
Free
Software Development Lifecycle (SDLC) Security

eCosCentric View eCosCentric

eCosCentric is a premier provider of comprehensive software development solutions tailored for the dynamic IoT, M2M, and embedded systems markets. We empower clients with integrated product suites, encompassing run-time systems, firmware, middleware, and advanced development tools, complemented by expert services including custom engineering, porting, training, and consultancy. Our holistic approach delivers a total embedded systems software development solution, enabling customers to launch a wide array of innovative products across diverse sectors.

Comprehensive IoT, M2M, and embedded systems software development
Integrated product suites: run-time systems, firmware, middleware, IDEs
Expert services: custom engineering, porting, technical support, training, consultancy
EdgeBit
Free
Software Development Lifecycle (SDLC) Security

EdgeBit View EdgeBit

EdgeBit, now part of FOSSA, empowers engineering teams to accelerate secure software delivery by automating dependency update analysis. Experience a tenfold increase in security update velocity, transforming laborious manual reviews into swift, confident actions. Our platform ensures a robust and current software supply chain, enabling prompt vulnerability remediation without sacrificing developer productivity.

Automated Dependency Update Analysis
Accelerated Security Patching
Vulnerability Detection and Remediation
Emproof
Free
Software Development Lifecycle (SDLC) Security

Emproof View Emproof

Emproof Nyx fortifies embedded systems against reverse engineering and exploitation attacks, safeguarding critical algorithms and sensitive data. Our advanced solution uniquely protects intellectual property with an exceptionally small memory footprint, making robust security accessible even in resource-constrained environments. Emproof enables unparalleled IP integrity and device security, empowering innovation without compromise.

Advanced IP protection against reverse engineering
Comprehensive device-level security
High-level algorithm and data protection
Endor Labs
Free
Software Development Lifecycle (SDLC) Security

Endor Labs View Endor Labs

Endor Labs empowers development and security teams by providing crucial context to effectively prioritize open-source software (OSS) risks. Recognizing that a significant portion of modern applications comprises borrowed code, Endor Labs enables organizations to harness the benefits of OSS while proactively addressing security, scalability, and sustainability challenges. Our mission is to foster secure software supply chains that enhance developer productivity, not hinder it with excessive alerts, by automatically identifying and mitigating risks associated with malicious, low-quality, or orphaned dependencies.

Automated detection of malicious dependencies
Identification of poor-quality OSS components
Proactive blocking of orphaned dependencies
Enso Security
Free
Software Development Lifecycle (SDLC) Security

Enso Security View Enso Security

Enso Security, now part of Snyk, pioneered the Application Security Posture Management (ASPM) category. It empowers security teams to conquer application security chaos by providing automated application discovery, classification, and management. Enso delivers a unified, actionable inventory of all application assets, their owners, security posture, and associated risks, enabling the creation of simplified, agile, and scalable application security programs.

Automated Application Discovery
Application Classification and Inventory
Security Posture Management
EtherAuthority
Free
Software Development Lifecycle (SDLC) Security

EtherAuthority View EtherAuthority

EtherAuthority is a leading smart contract security firm dedicated to safeguarding blockchain assets since 2018. We deliver industry-standard audits for decentralized applications, ensuring the integrity and security of your blockchain ecosystem. Our expert engineering team meticulously reviews code line-by-line, providing comprehensive vulnerability assessments and hardening solutions to protect smart contracts from exploits and breaches.

Comprehensive Smart Contract Audits
Expert Code Review & Vulnerability Analysis
Decentralized Application Security Assurance
Eustema
Free
Software Development Lifecycle (SDLC) Security

Eustema View Eustema

Eustema specializes in the design and management of advanced ICT solutions, focusing on enterprise information systems tailored for medium and large organizations. We deliver optimized and integrated solutions that seamlessly align with critical business processes. Our Eustema Enterprise Applications are recognized for their robust security, inherent flexibility, and remarkable scalability, making them the preferred choice for Public Administration, Telecommunications Companies, and other large enterprises seeking reliable and future-proof digital infrastructure.

Custom ICT solution design and management
Enterprise information system optimization
Seamless integration into business processes
Fescaro
Free
Software Development Lifecycle (SDLC) Security

Fescaro View Fescaro

Fescaro empowers global automakers and their partners in the transition to Software-Defined Vehicles (SDVs) with specialized automotive software security solutions. Built on a foundation of automotive electronic control system expertise and white-hat hacking acumen, Fescaro secures the vehicle's entire lifecycle, from development to operation. We proactively address the escalating cybersecurity threats inherent in connected and autonomous driving environments, ensuring compliance with OEM requirements and UNECE regulations.

Comprehensive Automotive Cybersecurity Solutions
Expertise in Electronic Control System Software
White-Hat Hacking Capabilities
Flawnter
Free
Software Development Lifecycle (SDLC) Security

Flawnter View Flawnter

Flawnter is an intelligent security testing solution designed to proactively identify critical security vulnerabilities and quality defects within your applications. Leveraging industry-leading standards like OWASP Top 10 and CWE/SANS-25, Flawnter automates both static and dynamic application security testing (SAST and DAST) to accelerate the discovery of hidden bugs. Seamlessly integrate Flawnter into any phase of your SDLC, from development to CI/CD pipelines, benefiting from its robust performance and detailed reporting across Windows, macOS, and Linux environments.

Automated Static and Dynamic Application Security Testing (SAST/DAST)
Comprehensive Rule Sets based on OWASP, CWE/SANS, NIST
Seamless SDLC and CI/CD Integration
Fluid Attacks
Free
Software Development Lifecycle (SDLC) Security

Fluid Attacks View Fluid Attacks

Fluid Attacks delivers advanced red team operations and continuous security vulnerability assessments, enhancing your organization's defense posture. Our expert offensive security services encompass applications, infrastructure, and source code across all development lifecycle stages, ensuring swift, precise, and scalable identification of all system weaknesses for critical systems. We partner with businesses in finance, healthcare, technology, and more to proactively manage cybersecurity risks and safeguard user data.

Comprehensive Red Team Operations
Continuous Hacking and Vulnerability Discovery
Application Security Testing
FortifyIQ
Free
Software Development Lifecycle (SDLC) Security

FortifyIQ View FortifyIQ

FortifyIQ is dedicated to ensuring comprehensive security against modern side-channel attacks across all computing platforms. Our advanced pre-silicon evaluation toolset rigorously tests hardware designs against sophisticated Differential Power Analysis (DPA) and Fault Injection (FI) threats, preventing costly recalls and protecting your intellectual property. By integrating our side-channel attack-resistant IP Cores alongside thorough pre-silicon validation, FortifyIQ empowers you to build inherently secure hardware from the ground up.

Pre-silicon evaluation toolset for hardware security testing
Comprehensive defense against Differential Power Analysis (DPA)
Robust protection against Fault Injection (FI) attacks
FOSSA
Free
Software Development Lifecycle (SDLC) Security

FOSSA View FOSSA

FOSSA is a leading platform for comprehensive SBOM generation and software supply chain risk management. It empowers enterprises to analyze, operationalize, and maintain full visibility into their third-party code, ensuring regulatory compliance and mitigating security vulnerabilities. With advanced SCA capabilities, FOSSA provides automated open-source license management and precise vulnerability prioritization to safeguard your software development lifecycle.

Automated SBOM Generation and Analysis
Software Supply Chain Risk Management
Comprehensive Software Composition Analysis (SCA)
Foundries.io
Free
Software Development Lifecycle (SDLC) Security

Foundries.io View Foundries.io

Foundries.io delivers a secure, open-source platform and integrated cloud service engineered for the complete lifecycle of connected devices in IoT and Edge environments. We provide an end-to-end solution encompassing secure software development, CI/CD, testing, device provisioning, deployment, fleet management, and lifetime over-the-air (OTA) updates. Our platform, FoundriesFactory, prioritizes security by design, from verified boot processes incorporating industry standards like Arm PSA and Intel PTT, to TUF-compliant secure product updates across the entire software stack.

End-to-end device lifecycle management for IoT and Edge
Secure by design platform from boot to cloud
DevSecOps and CI/CD integration
Galois
Free
Software Development Lifecycle (SDLC) Security

Galois View Galois

Galois is a leader in pioneering advanced technologies to tackle the most intricate challenges in computer science, with a core expertise in ensuring the trustworthiness of critical systems. Our dedicated team collaborates closely with clients, expertly navigating the complex interplay of privacy, cost, and speed to develop secure, reliable, and dependable solutions. We focus on validating that systems perform precisely as intended, and exclusively as intended, safeguarding against vulnerabilities and ensuring operational integrity.

Applied research and development of novel technologies
Expertise in computer science and critical systems trustworthiness
Customized solutions balancing privacy, cost, and speed
Gecko Security
Free
Software Development Lifecycle (SDLC) Security

Gecko Security View Gecko Security

Gecko Security empowers development teams to build secure code with unparalleled speed and efficiency. Our AI-driven platform understands application logic, simulates sophisticated attacks to uncover critical vulnerabilities, and automatically verifies them through exploitation. Beyond just finding flaws, Gecko provides actionable risk assessments and delivers working fixes, ensuring your code remains robustly protected against evolving threats.

AI-driven application understanding
Automated vulnerability simulation and exploitation
Critical vulnerability detection
GitLab
Free
Software Development Lifecycle (SDLC) Security

GitLab View GitLab

GitLab is the most comprehensive DevOps platform, consolidating the entire software development lifecycle into a single, powerful application. It empowers Development, Security, and Operations teams to seamlessly collaborate, accelerating code delivery from weeks to minutes and significantly reducing costs. GitLab fundamentally transforms how software is built, secured, and maintained, enabling teams to focus on innovation rather than toolchain complexity.

Single application for the entire DevOps lifecycle
Integrated Development, Security, and Operations tools
Automated CI/CD pipelines
Globant
Free
Software Development Lifecycle (SDLC) Security

Globant View Globant

Globant's Cybersecurity Studio is a specialized division focused on integrating robust security into every phase of the software development lifecycle. We empower organizations to transition from traditional cyber risk management to advanced quantitative risk analytics, enhancing product security and enabling swift action against evolving threats. Our approach is bolstered by proprietary tools that deliver superior visibility into security risks and provide innovative solutions like MIRACL's passwordless Multi-Factor Authentication.

Full SDLC security integration
Quantitative risk analytics
Proprietary security tools for risk visibility
GrammaTech
Free
Software Development Lifecycle (SDLC) Security

GrammaTech View GrammaTech

GrammaTech is a premier provider of advanced software assurance tools, specializing in safeguarding embedded mission-critical systems against failure and cyber threats. Our security-first approach empowers organizations worldwide to design, develop, and deploy trusted software applications, minimizing corporate risk and enhancing competitive advantage. We partner with customers, government sponsors, and industry leaders to tackle the most complex software challenges, ensuring the resilience and integrity of vital digital infrastructure.

Advanced Software Assurance Tools
Cybersecurity Solutions for Embedded Systems
Security-First Software Design Philosophy
GuardRails
Free
Software Development Lifecycle (SDLC) Security

GuardRails View GuardRails

GuardRails offers continuous, automated security feedback directly within your GitHub workflow, empowering developers to proactively identify, remediate, and prevent vulnerabilities. It enables teams to build secure web and mobile applications without requiring deep security expertise, fostering a culture of security from the start. Trusted by thousands of repositories, GuardRails is the solution designed to elevate your team's security posture and accelerate secure development.

Automated vulnerability detection and prioritization
Real-time security feedback in GitHub
Seamless integration with CI/CD pipelines
Guardsquare
Free
Software Development Lifecycle (SDLC) Security

Guardsquare View Guardsquare

Guardsquare is the premier provider of advanced mobile application security solutions, safeguarding applications against sophisticated reverse engineering and hacking attempts. Leveraging the robust foundation of open-source ProGuard, Guardsquare offers a comprehensive suite of tools that integrate seamlessly throughout the development lifecycle, from initial security testing to runtime protection and real-time threat intelligence. Trusted by over 900 customers globally across diverse industries, Guardsquare empowers organizations to proactively identify vulnerabilities and fortify their mobile applications, ensuring unparalleled safety and integrity.

Advanced protection against reverse engineering and tampering
Seamless integration into the development lifecycle
Code hardening and obfuscation
HackEDU
Free
Software Development Lifecycle (SDLC) Security

HackEDU View HackEDU

HackEDU delivers interactive, expert-led cybersecurity training designed to empower development teams at organizations of all sizes, from agile startups to Fortune 500 enterprises. Our platform fosters a culture of secure coding practices by providing a safe, legal, and engaging environment for hands-on learning, enabling individuals to enhance their skills and contribute to a more secure digital landscape. We are dedicated to demystifying cybersecurity education, equipping professionals with the knowledge and confidence to build and maintain robust, secure applications.

Interactive Secure Coding Training
Real-world Vulnerability Labs
Customizable Learning Paths
Previous 1 ... 3 4 5 6 7 ... 14 Next