Home / Application and API Security / Software Development Lifecycle (SDLC) Security

Software Development Lifecycle (SDLC) Security

Secure your software from code to deployment with SDLC security best practices.

Try these 313 AI Software Development Lifecycle (SDLC) Security Tools

Lightpoint Global
Free
Software Development Lifecycle (SDLC) Security

Lightpoint Global View Lightpoint Global

Lightpoint Global delivers bespoke software development and comprehensive IT solutions tailored for businesses of all sizes. Our expert security testing services proactively identify vulnerabilities and potential threats through realistic cyberattack simulations, code analysis, and configuration evaluations. We are dedicated to safeguarding your sensitive data, ensuring system resilience, maintaining business integrity, and protecting against financial and legal repercussions in today's dynamic threat landscape.

Bespoke Software Development
Tailored Solutions for All Business Sizes
Expert IT Consulting and Business Analysis
Lineaje
Free
Software Development Lifecycle (SDLC) Security

Lineaje View Lineaje

Lineaje delivers comprehensive, full-lifecycle software supply chain security, empowering organizations to autonomously manage compliance, governance, and automation for critical software. Our platform enables organizations to proactively identify and mitigate risks, secure their build processes, and ensure adherence to global regulations. Trusted by leading technology, financial, and public sector entities, Lineaje provides unparalleled visibility and control over complex software ecosystems.

Full-lifecycle Software Supply Chain Security
Autonomous Risk Contextualization
Automated Build Security
Longbow Security
Free
Software Development Lifecycle (SDLC) Security

Longbow Security View Longbow Security

Longbow Security, now part of Veracode, automates the identification and prioritization of application and cloud risks, delivering actionable remediation guidance to significantly reduce risk with minimal effort. By intelligently analyzing outputs from diverse security tools, Longbow pinpoints the root causes of vulnerabilities and provides tailored, immediate remediation steps. This empowers security, application, and DevOps teams to efficiently manage and mitigate security threats at scale within complex technology environments.

Automated Root Cause Analysis for Application and Cloud Risks
Intelligent Prioritization of Security Issues
Actionable and Tailored Remediation Guidance
LunaSec
Free
Software Development Lifecycle (SDLC) Security

LunaSec View LunaSec

LunaSec offers an intelligent, fast, and discreet open-source dependency security tool designed to proactively safeguard your software. Our solution, backed by dedicated security experts, provides rapid remediation guidance and monitoring of emerging threats, transforming patch cycles from weeks to mere hours. Gain immediate insights into your software's security and compliance posture with our free, under-2-minute vulnerability report.

Hosted Open Source Dependency Security Tool
Intelligent Vulnerability Detection
Rapid Remediation Guidance
Manifest
Free
Software Development Lifecycle (SDLC) Security

Manifest View Manifest

Manifest provides the world's first all-in-one SBOM management platform, empowering enterprises to proactively secure their software supply chains. Built by cybersecurity veterans, our solution transforms novel SBOM data into actionable insights, simplifying third-party risk management. We deliver user-friendly, intuitive tools designed to reduce risk and burden, enabling organizations to confidently navigate the complexities of modern software development and compliance.

Comprehensive SBOM Generation and Management
Automated Third-Party Risk Assessment
Vulnerability Detection across the Supply Chain
Mayhem
Free
Software Development Lifecycle (SDLC) Security

Mayhem View Mayhem

Mayhem, now part of Bugcrowd, is a developer-centric application and API security testing solution designed to automate vulnerability discovery at scale. Built by security experts, it employs self-learning algorithms to generate and execute millions of comprehensive tests, pinpointing defects often missed by traditional methods. Mayhem ensures actionable, reproducible, and prioritized security findings, seamlessly integrating into CI/CD pipelines to empower developers with continuous, efficient code protection.

Developer-first application and API security testing
Automated generation and execution of millions of tests
Self-learning algorithms for continuous test coverage expansion
MDSec
Free
Software Development Lifecycle (SDLC) Security

MDSec View MDSec

MDSec is a premier information security consultancy driven by a deep passion for safeguarding digital assets. We specialize in application, mobile, and hardware security, alongside advanced targeted red team engagements. Our globally recognized experts deliver tailored solutions, from intricate low-level hardware exploitation to sophisticated custom exploit development, ensuring comprehensive protection for your organization's unique challenges.

Application Security Expertise
Mobile Security Solutions
Hardware Security Assessments
Mend.io
Free
Software Development Lifecycle (SDLC) Security

Mend.io View Mend.io

Mend.io (formerly WhiteSource) empowers development teams to build secure applications at the speed of business. By uniquely integrating automated remediation capabilities, Mend.io proactively closes security gaps, reducing application risk without compromising development velocity. Our solution addresses the critical need for efficient and comprehensive application security throughout the entire software development lifecycle.

Automated Vulnerability Remediation
Software Bill of Materials (SBOM) Generation
Open Source Security and License Compliance
MergeBase
Free
Software Development Lifecycle (SDLC) Security

MergeBase View MergeBase

MergeBase offers a robust Software Composition Analysis (SCA) platform designed to significantly reduce software supply chain risk. By providing dynamic application surveillance, hardening, and continuous vulnerability management, it helps organizations achieve compliance, secure their applications, and minimize their attack surface. MergeBase empowers development teams to proactively manage dependencies, accelerate component upgrades, and address unused or vulnerable code without introducing development bottlenecks, ensuring strong security posture in the face of evolving cyber threats and regulatory demands.

Comprehensive Software Composition Analysis (SCA)
Dynamic Application Surveillance and Hardening
Always-on Software Vulnerability Management
MetaTrust Labs
Free
Software Development Lifecycle (SDLC) Security

MetaTrust Labs View MetaTrust Labs

MetaTrust Labs, incubated at Nanyang Technological University, is a premier provider of cutting-edge Web3 AI security solutions and expert code auditing services. We empower developers and stakeholders with advanced AI-driven automation tools and dedicated security services, ensuring the robust protection of Web3 applications and smart contracts against evolving threats. Our mission is to foster confidence and reliability in Web3 development by building a secure infrastructure for creators.

AI-Driven Security Automation
Smart Contract Code Auditing
Web3 Application Protection
Meterian
Free
Software Development Lifecycle (SDLC) Security

Meterian View Meterian

Meterian provides a streamlined platform for fortifying your application's software supply chain against vulnerabilities. Effortlessly automate the identification and remediation of open-source risks to ensure your code, and its dependencies, are free from security, stability, and licensing threats. Integrate Meterian to proactively secure your applications' open-source components, enabling your teams to focus on innovation.

Automated open-source vulnerability scanning
Real-time risk assessment for security, stability, and licensing
Effortless patching and remediation workflows
MicroEJ
Free
Software Development Lifecycle (SDLC) Security

MicroEJ View MicroEJ

MicroEJ provides advanced software solutions that empower manufacturers to transform cost-sensitive embedded and IoT devices into flexible, scalable, and extensible software-defined products. Our flagship MICROEJ VEE platform is a highly optimized software container, enabling millions of consumer and industrial devices like wearables, smart home appliances, and medical equipment to deliver sophisticated functionality with a minimal hardware footprint. Engineered for resource-constrained environments, even the smallest processors can leverage powerful capabilities comparable to leading operating systems. With a global presence across 7 offices and tens of millions of devices already powered by MicroEJ, we are committed to driving innovation and enabling the next billion connected devices.

Software-Defined Device Transformation
Optimized Standard Software Container (MICROEJ VEE)
Minimal Footprint for Small Processors
MindFort
Free
Software Development Lifecycle (SDLC) Security

MindFort View MindFort

MindFort delivers fully autonomous AI-powered penetration testing agents designed to discover, exploit, and remediate complex web application vulnerabilities at massive scale. Leveraging advanced in-house models, our agents emulate the strategic approach of human penetration testers, collaboratively identifying and exploiting weaknesses to ensure robust application security. As AI-driven code generation accelerates development, MindFort provides the critical security assurance needed to match this pace, safeguarding organizations scaling their operations with AI.

Fully autonomous AI-driven web application pentesting
Discover, exploit, and patch complex vulnerabilities
Mimics human penetration tester principles and collaboration
Mindgard
Free
Software Development Lifecycle (SDLC) Security

Mindgard View Mindgard

Mindgard Security Copilot is the premier platform for securing Artificial Intelligence, GenAI, and LLMs against advanced adversarial threats. Leveraging pioneering research, our solution empowers enterprises to proactively identify, detect, and remediate vulnerabilities across all AI models. Mindgard integrates seamlessly into existing security workflows, providing automated and repeatable testing to safeguard your AI assets and data.

Comprehensive AI/ML model security
Proactive vulnerability detection
Automated adversarial attack remediation
Mixed Mode
Free
Software Development Lifecycle (SDLC) Security

Mixed Mode View Mixed Mode

Mixed Mode provides expert embedded and software engineering services, specializing in IoT and secure embedded systems. As connected devices proliferate, ensuring robust security is paramount. We leverage our deep expertise to help you understand vulnerabilities, implement secure solutions, and future-proof your systems, guaranteeing information security through resilient systems and software.

IoT Security Implementation
Secure Embedded Systems Design
Embedded Software Engineering
Mobb
Free
Software Development Lifecycle (SDLC) Security

Mobb View Mobb

Mobb revolutionizes application security by intelligently automating vulnerability remediation, enabling organizations to slash their security backlog and empower developers to prioritize innovation. Unlike traditional solutions that require manual intervention, Mobb integrates AI-powered, developer-verified fixes directly into DevOps workflows, ensuring vulnerabilities are identified and resolved rapidly. This proactive approach significantly strengthens application security postures and dramatically reduces the risk of exploitation.

AI-powered automated vulnerability remediation
Reduces security backlogs and developer workload
Developer-verified and informed automated fixes
Myrror Security
Free
Software Development Lifecycle (SDLC) Security

Myrror Security View Myrror Security

Myrror Security is a comprehensive software supply chain security platform designed to empower lean security teams. It utilizes a proprietary Binary-to-Source AI Engine to proactively identify and neutralize code attacks and vulnerabilities across open-source components, CI/CD pipelines, and development repositories. By prioritizing reachable and exploitable risks, Myrror delivers unparalleled visibility and actionable mitigation plans, significantly reducing alert fatigue and ensuring robust protection against breaches.

AI-Powered Binary-to-Source Code Analysis
Open-Source Component Vulnerability Detection
CI/CD Pipeline Security Scanning
MythX
Free
Software Development Lifecycle (SDLC) Security

MythX View MythX

MythX is a leading security analysis platform specifically designed for Ethereum and EVM-compatible smart contracts. It empowers development teams to proactively identify and remediate critical vulnerabilities, fortifying the blockchain ecosystem for enhanced security and trust. By integrating seamlessly with developer workflows and offering a robust API, MythX provides comprehensive security insights throughout the entire development lifecycle.

Comprehensive vulnerability scanning for Ethereum and EVM smart contracts
Automated security analysis to quickly identify potential exploits
Integration with existing developer tools and CI/CD pipelines
NewAE Technology
Free
Software Development Lifecycle (SDLC) Security

NewAE Technology View NewAE Technology

NewAE Technology is a pioneering force in hardware security, empowering engineers and designers with open-source tools and accessible research to understand and defend against critical side-channel and glitching attack vectors. By democratizing embedded hardware security research through cost-effective, transparent solutions like ChipWhisperer and ChipSHOUTER, NewAE aims to transform the embedded development landscape and foster a more secure ecosystem for all.

Open-source hardware security tools
Side-channel power analysis research
Glitching and fault attack research
nexSecurity
Free
Software Development Lifecycle (SDLC) Security

nexSecurity View nexSecurity

nexSecurity is a premier IT and Information Security consulting firm with over two decades of deep expertise in software development and security. We specialize in comprehensive application and mobile penetration testing, robust network and wireless audits, and secure application development and training. Our mission is to empower organizations by enhancing their defensive, detective, and countermeasure capabilities through strategic collaboration with application and infrastructure teams.

Application Penetration Testing
Mobile Penetration Testing
Network and Wireless Audits
NodeSource
Free
Software Development Lifecycle (SDLC) Security

NodeSource View NodeSource

NodeSource empowers organizations to run robust, production-ready Node.js applications with unparalleled visibility into performance and security. Their N|Solid runtime, a secure and performant drop-in replacement for the standard Node.js runtime, provides essential low-impact monitoring and advanced security features. By integrating NodeSource, businesses can proactively mitigate risks, ensure deep operational insights, and maintain the stability of their mission-critical software across diverse environments.

N|Solid Runtime: A drop-in, enhanced Node.js alternative
Low-Impact Performance Monitoring
Enhanced Application Security Features
Nohau
Free
Software Development Lifecycle (SDLC) Security

Nohau View Nohau

Nohau specializes in secure embedded software development, empowering organizations to proactively identify and mitigate security risks. Our Code Security Analysis service meticulously assesses device software for vulnerabilities at both the code and architectural levels, with a strategic focus on attacker-accessible interfaces. By detecting and addressing security flaws early, Nohau helps prevent costly breaches and ensures the integrity of your embedded systems.

Expert embedded software development services
Comprehensive Code Security Analysis
Identification of device security risks
Nokod Security
Free
Software Development Lifecycle (SDLC) Security

Nokod Security View Nokod Security

Nokod Security provides a comprehensive application security platform specifically designed for the unique challenges of low-code/no-code custom applications and Robotic Process Automation (RPA). It enables large organizations to proactively discover and secure their rapidly expanding ecosystem of low-code/no-code assets, identifying and remediating vulnerabilities before they can be exploited. Nokod ensures compliance and reduces risk, empowering businesses to confidently leverage these powerful development tools without compromising their security posture.

Automated discovery of low-code/no-code applications and RPA bots
Comprehensive security issue identification and analysis
Real-time vulnerability detection
Noma Security
Free
Software Development Lifecycle (SDLC) Security

Noma Security View Noma Security

Noma Security delivers the first comprehensive application security platform designed to protect the entire Data & AI Lifecycle, from initial development through production. Addressing both current and emerging threats, Noma empowers AppSec, data, and AI teams with unified visibility and control, fostering collaboration and accelerating innovation securely. By establishing a common security language, Noma enables organizations to confidently leverage their data and AI investments while mitigating risks across all stages of their AI applications.

End-to-end protection for the Data & AI Lifecycle
Security from development to production
Comprehensive security for classic data pipelines, ML, and GenAI
Previous 1 ... 5 6 7 8 9 ... 14 Next