Home / Application and API Security / Software Development Lifecycle (SDLC) Security

Software Development Lifecycle (SDLC) Security

Secure your software from code to deployment with SDLC security best practices.

Try these 313 AI Software Development Lifecycle (SDLC) Security Tools

NowSecure
Free
Software Development Lifecycle (SDLC) Security

NowSecure View NowSecure

NowSecure is the leader in automated mobile application security testing, providing comprehensive solutions for security, compliance, and privacy risk assessment. Our advanced platform delivers unparalleled speed, accuracy, and efficiency, covering thousands of risk vectors across third-party, custom, and business-critical mobile applications. We empower organizations to identify the broadest array of threats and vulnerabilities, ensuring robust protection in SaaS, on-premise, and MSP environments.

Fully automated 360-degree mobile app security testing
Comprehensive coverage of security, compliance, and privacy risks
Supports third-party, custom, and business-critical applications
Nullify
Free
Software Development Lifecycle (SDLC) Security

Nullify View Nullify

Nullify acts as an automated security sentry, proactively identifying and resolving security vulnerabilities directly within your codebase. Seamlessly integrated into your development workflow, it eliminates the need for external dashboards, enabling you to secure your code from commit to merge. Nullify fosters distributed security ownership, empowering every developer to build secure software effortlessly.

Continuous, automated security issue detection
In-code issue resolution and remediation
Seamless integration with Git workflows
Nyx Security Solutions
Free
Software Development Lifecycle (SDLC) Security

Nyx Security Solutions View Nyx Security Solutions

Nyx Security Solutions, now part of Upwind Security, offers unparalleled expertise in embedded cybersecurity, specializing in secure design, development, and rigorous penetration testing. With over 15 years of industry experience, we fortify embedded, software, and cloud infrastructure to ensure robust security, unwavering compliance, and sustained business resilience. Our commitment is to safeguard your solutions against the dynamic and evolving threat landscape, empowering your long-term success.

Expert embedded system secure design and development
Comprehensive penetration testing services
15 years of specialized cybersecurity experience
Octane
Free
Software Development Lifecycle (SDLC) Security

Octane View Octane

Octane leverages advanced AI and machine learning to provide intelligent, automated vulnerability detection and remediation for blockchain smart contracts. Our platform continuously analyzes on-chain code, proactively identifying both common and complex, protocol-specific vulnerabilities with high accuracy, minimizing false positives. Octane empowers developers with AI-driven tools for rapid threat detection and one-click fixes, streamlining the security development lifecycle.

AI-powered smart contract vulnerability detection
Continuous on-chain code analysis
Proprietary machine learning for precise threat identification
Oligo Security
Free
Software Development Lifecycle (SDLC) Security

Oligo Security View Oligo Security

Oligo Security empowers developers to securely and efficiently leverage open-source software. By pinpointing relevant vulnerabilities and precisely enforcing library permissions, Oligo drastically reduces remediation time and mitigates risks. Our dynamic analysis proactively identifies attackable open-source components, filtering out noise and providing real-time alerts on behavioral deviations, ensuring a robust application security posture.

Automated open-source vulnerability detection
Precise library permission enforcement
Drastic reduction in vulnerability remediation time
Olympix
Free
Software Development Lifecycle (SDLC) Security

Olympix View Olympix

Olympix is a groundbreaking DevSecOps platform that redefines Web3 security by embedding proactive measures directly into the development lifecycle. Engineered for developers, Olympix empowers teams to secure code from its inception, shifting security from reactive audits to continuous, runtime protection. By prioritizing developer experience and integrating security seamlessly, Olympix delivers the most effective and scalable approach to safeguarding decentralized applications.

Developer-first security integration
Proactive code scanning and analysis
Runtime security monitoring for Web3 applications
OnSystem Logic
Free
Software Development Lifecycle (SDLC) Security

OnSystem Logic View OnSystem Logic

OnSystem Logic offers a groundbreaking, patent-pending solution that fundamentally addresses the critical cybersecurity challenge of application software flaws. Our unique technology prevents attackers from exploiting these vulnerabilities to inject malicious code into application memory, a common and devastating attack vector. By systematically and deterministically controlling self-modification, OnSystem Logic provides a non-bypassable defense applicable across all operating systems, applications, and form factors.

Patent-pending self-modification control technology
Prevents malicious code injection into application memory
Systematic, deterministic, and non-bypassable security
Open Source Security Foundation (OpenSSF)
Free
Software Development Lifecycle (SDLC) Security

Open Source Security Foundation (OpenSSF) View Open Source Security Foundation (OpenSSF)

The Open Source Security Foundation (OpenSSF) is a collaborative initiative dedicated to enhancing the security of the open-source software ecosystem. By fostering upstream collaboration and engaging with existing communities, OpenSSF drives the adoption of best practices, automated tooling, and educational resources. OpenSSF is crucial for securing complex software supply chains, enabling organizations to understand and verify the security of their open-source dependencies.

Promotes upstream collaboration in open-source development.
Develops and advocates for open-source security best practices.
Facilitates the creation and adoption of automated security tooling for OSS.
Open Web Application Security Project (OWASP)
Free
Software Development Lifecycle (SDLC) Security

Open Web Application Security Project (OWASP) View Open Web Application Security Project (OWASP)

The Open Web Application Security Project (OWASP) is a globally recognized nonprofit foundation dedicated to enhancing software security through collaborative, community-driven initiatives. By fostering open-source projects, local chapters, and educational events, OWASP empowers developers and technologists to build and deploy more secure web applications. Their extensive resources and nearly two decades of experience make them a pivotal force in establishing and advancing web application security standards.

Community-led open-source projects
Global network of local chapters
Extensive educational and training resources
OpenZeppelin
Free
Software Development Lifecycle (SDLC) Security

OpenZeppelin View OpenZeppelin

OpenZeppelin is a leading provider of secure development tools and expert security audits for decentralized systems. Established in 2015, OpenZeppelin has become the industry benchmark for building robust and secure smart contracts, powering a significant portion of the Web3 economy. Their flagship Open Source library, OpenZeppelin Contracts, is trusted by thousands of projects and maintained by a vibrant community, while their renowned security audits safeguard critical infrastructure for major organizations.

World-leading Open Source smart contract library
Trusted by over 3,000 public projects
Vibrant community of 180+ contributors
Original Software
Free
Software Development Lifecycle (SDLC) Security

Original Software View Original Software

Original Software provides a comprehensive test automation solution engineered for robust software quality management. By addressing the entire Application Quality Management lifecycle across diverse applications and environments, Original Software empowers organizations to elevate software quality from a technical concern to a critical business imperative. Their integrated platform offers manual and automated testing, along with sophisticated test data management, all designed to proactively mitigate business risks while optimizing cost, time, and resource utilization.

Comprehensive Test Automation Platform
End-to-End Application Quality Management
Manual and Full Test Automation Capabilities
Otto
Free
Software Development Lifecycle (SDLC) Security

Otto View Otto

Otto closes the critical client-side security gap often missed by traditional application security solutions. By continuously monitoring and analyzing the behavior and vulnerabilities of all first, third, and Nth-party scripts, Otto provides advanced protection against sophisticated threats like Magecart, trojans, and phishing. Implement Otto to bolster your supply chain security and safeguard your digital assets from real-time client-side attacks.

Continuous monitoring of first, third, and Nth-party scripts
Advanced Malware Guard to detect and block malicious code
Script Shield for real-time protection against client-side attacks
OX Security
Free
Software Development Lifecycle (SDLC) Security

OX Security View OX Security

OX Security provides an end-to-end solution for securing the modern DevOps software supply chain. Leveraging its pioneering Pipeline Bill of Materials (PBOM) technology, OX enables teams to verify artifact integrity and security throughout the pipeline, automatically remediate post-production risks, and proactively prevent vulnerabilities during development. Transform your software supply chain from a black box into a source of actionable business insights and robust security intelligence, embedding comprehensive supply chain security expertise directly into your DevOps toolkit.

Pipeline Bill of Materials (PBOM) for comprehensive artifact tracking
Automated risk detection and remediation in post-production
Proactive vulnerability prevention during development
Oxeye
Free
Software Development Lifecycle (SDLC) Security

Oxeye

Oxeye bridges the gap between cloud environments and application code, providing unparalleled visibility into exploitable vulnerabilities and their exact path from API to source. This comprehensive insight empowers development, AppSec, and DevOps teams to collaboratively deliver secure, cloud-native applications with greater speed and confidence, while minimizing risk and noise. Oxeye ensures that no vulnerable code ever reaches production, enabling organizations to build with peace of mind.

End-to-end vulnerability mapping from API to code
Identification of exploitable attack paths
Enhanced visibility into cloud-native application security
Pangea
Free
Software Development Lifecycle (SDLC) Security

Pangea View Pangea

Pangea, now part of CrowdStrike, provides a comprehensive AI Security Platform designed to protect your organization's AI initiatives from cloud to code. It enables secure AI adoption and innovation by offering robust AI detection and response capabilities, alongside a suite of AI guardrails to prevent threats like prompt injection and sensitive data leakage. Pangea significantly accelerates the development and deployment of secure AI applications while providing essential runtime visibility and control.

AI Detection & Response Platform
Comprehensive AI Guardrails
Protection against Prompt Injection
Parasoft
Free
Software Development Lifecycle (SDLC) Security

Parasoft View Parasoft

Parasoft delivers comprehensive software testing and quality assurance solutions designed to perfect complex, interconnected applications. By automating time-consuming tasks and providing intelligent analytics, Parasoft empowers organizations to deliver secure, reliable, and compliant software efficiently. Their integrated technologies span static and runtime analysis, unit and API testing, and service virtualization, supporting agile, DevOps, and security initiatives across embedded, enterprise, and IoT markets.

Static and Runtime Analysis
Unit, Functional, and API Testing
Service Virtualization
PeckShield
Free
Software Development Lifecycle (SDLC) Security

PeckShield View PeckShield

PeckShield is a premier blockchain security firm dedicated to fortifying the entire Web3 ecosystem. Leveraging deep expertise in smart contract auditing, vulnerability detection, and exploit analysis, we provide cutting-edge services and products to safeguard digital assets and decentralized applications. Our veteran researchers excel at uncovering hidden risks and defending against emerging threats, ensuring enhanced security, privacy, and usability for our clients.

Comprehensive Smart Contract Auditing
Vulnerability Detection and Analysis
Exploit Identification and Mitigation
Perforce Software
Free
Software Development Lifecycle (SDLC) Security

Perforce Software View Perforce Software

Perforce Helix offers a unified platform designed to streamline the collaborative development and secure protection of all types of intellectual property. Whether managing code, large design files, media assets, or critical business documents, Perforce provides robust version control, advanced security, and efficient workflows. Its flexible enterprise-grade technology is engineered to scale, boosting developer productivity and software quality while simplifying complexity for global teams and individual users alike.

Unified platform for collaborative development and IP protection
Version control for code, designs, media, and any file type
Robust security features for intellectual property
Pessimistic Security
Free
Software Development Lifecycle (SDLC) Security

Pessimistic Security View Pessimistic Security

Pessimistic is a premier cybersecurity firm specializing in blockchain and DeFi, empowering startups to navigate complex security challenges since 2017. We offer comprehensive smart contract audits, DeFi platform security assessments, and expert blockchain consulting to ensure your code and development processes are robust and secure. Our mission is to make cutting-edge blockchain security accessible and efficient, even in high-tempo development environments.

Smart Contract Audits
DeFi Platform Security Assessments
Comprehensive Blockchain Consulting
Pillar Security
Free
Software Development Lifecycle (SDLC) Security

Pillar Security View Pillar Security

Pillar Security provides a unified AI security platform designed to comprehensively identify, assess, and mitigate security risks across the entire AI lifecycle. From development to deployment, our solution offers unparalleled visibility, robust control, and resilient defense against evolving AI threats. Empower your enterprise to build and operate secure AI software with complete confidence.

Unified AI security platform
End-to-end AI lifecycle security
Risk identification and assessment
PixelPlex
Free
Software Development Lifecycle (SDLC) Security

PixelPlex View PixelPlex

PixelPlex is a globally recognized leader in blockchain and custom software development, with over a decade of experience empowering businesses through transformative technological solutions. Our expert teams across New York, Geneva, and Seoul specialize in creating secure, scalable, and advanced blockchain applications, integrating deep expertise in AI, IoT, and cybersecurity to drive innovation and ensure robust digital security.

Custom blockchain development services
AI and IoT integration
Cybersecurity expertise
PixelQA
Free
Software Development Lifecycle (SDLC) Security

PixelQA View PixelQA

PixelQA offers comprehensive security testing services designed to proactively identify and remediate vulnerabilities across your software, websites, and mobile applications. Our expert approach safeguards sensitive data and fortifies your digital assets against potential breaches, ensuring robust protection and regulatory compliance. Partner with PixelQA to implement thorough security testing strategies that build trust and resilience into your products.

Comprehensive vulnerability assessment
Web application security testing
Mobile application security testing
Planit Testing
Free
Software Development Lifecycle (SDLC) Security

Planit Testing View Planit Testing

Planit Testing, now part of Nomura Research Institute (NRI), is a premier provider of specialized Quality Assurance and software testing services. We elevate software quality and delivery through expert skills, strategic insights, and tailored solutions, ensuring businesses unlock the full potential of their digital assets. Our comprehensive three-pronged approach to security testing meticulously addresses development, usage, and infrastructure vulnerabilities, delivering in-depth reports on exploitable weaknesses and providing actionable remediation strategies.

Specialized software testing services
Expert quality assurance training
Comprehensive security testing (development, use, infrastructure)
Positiwise Software Pvt Ltd
Free
Software Development Lifecycle (SDLC) Security

Positiwise Software Pvt Ltd View Positiwise Software Pvt Ltd

Positiwise Software Pvt Ltd delivers comprehensive, end-to-end software development solutions tailored to accelerate your business's digital transformation. Leveraging over a decade of expertise, our seasoned professionals proficiently address intricate requirements across diverse sectors including E-commerce, CRM, and Cloud. Beyond custom development, we offer integrated digital marketing, robust web security, and scalable cloud solutions, ensuring your business thrives in the digital landscape.

End-to-end custom software development
Specialized WordPress and E-commerce solutions
Expert .NET development services
Previous 1 ... 6 7 8 9 10 ... 14 Next