28件の結果
キャプテラが無料の理由
静的分析を使用してカスタム・コードの脆弱性を検出しましょう。あらゆるPull Request (PR) をスキャニングして、新しい脆弱性が導入されるのを防ぎましょう。 GitHubの詳細
静的分析を使用してカスタム・コードの脆弱性を検出しましょう。あらゆるPull Requestをスキャニングして、新しい脆弱性が導入されるのを防ぎましょう。ユーザー・レベルに応じたセキュリティ・ツールが用意されています。依存関係グラフは、プロジェクトが依存するコード・ライブラリとリポジトリのマップです。これらのライブラリが更新されると、Dependabotがアラートします。これらは誰でも利用できます。GitHub Enterpriseを使用するときには、トークン、シークレット・スキャニング、コード・スキャニングをリポジトリに追加して自動セキュリティ更新を実行できます。 GitHubの詳細

機能

  • 脆弱性スキャニング
  • リアルタイム分析
  • 統合型開発環境
  • API
Sonatype's Nexus Platform automates open source governance to reduce risk and accelerate software innovation. Nexus Lifecycleの詳細
Sonatype's Nexus Platform automates open source governance to reduce risk and accelerate software innovation. Software developers, application security professionals, and DevSecOps experts are empowered with the highest quality Nexus vulnerability intelligence to drive faster releases, decrease false positives, and deliver in-depth, developer remediation guidance. Nexus Lifecycleの詳細

機能

  • 脆弱性スキャニング
  • リアルタイム分析
  • 統合型開発環境
  • API
Cloud-based DevOps solution that enables businesses to improve workflow processes using time tracking, regulatory compliance, and more.
GitLab is a complete DevOps platform, delivered as a single application, fundamentally changing the way Development, Security, and Ops teams collaborate. GitLab helps teams accelerate software delivery from weeks to minutes, reduce development costs, and reduce the risk of application vulnerabilities while increasing developer productivity. GitLabの詳細

機能

  • 脆弱性スキャニング
  • リアルタイム分析
  • 統合型開発環境
  • API
SAST、SCA、IDE統合、および分散分析を備えたDevSecOpsプラットフォームにより、アプリケーションを外部の脅威から保護します。
KiuwanのSASTとSCAにより、アプリケーションの脆弱性を管理できます。セットアップと使用が簡単です。コードをローカルでスキャニングし、クラウドで結果を共有できます。業界標準のセキュリティ評価によるカスタマイズされたレポートによって、情報に基づいた意思決定、技術的負債の削減、リスクの軽減ができます。Kiuwanは、包括的な言語カバレッジを提供し、主要なIDEと統合し、CI/CD/DevSecOpsプロセスにシームレスに適合します。 Kiuwanの詳細

機能

  • 脆弱性スキャニング
  • リアルタイム分析
  • 統合型開発環境
  • API
Dynatrace provides software intelligence to simplify cloud complexity and accelerate digital transformation.
Dynatrace is an application performance and lifecycle management solution designed to help retail businesses, financial markets, transportation companies, emergency services, and government bodies monitor and analyze the performance of applications on a unified dashboard. Key features of the platform include anomaly detection, root cause determination, network process monitoring, log entry analysis, cross-team collaboration, AI-assistance, and more among others. Dynatraceの詳細

機能

  • 脆弱性スキャニング
  • リアルタイム分析
  • 統合型開発環境
  • API
Cloud-based solution that enables businesses to detect & prevent cyber threats with website scanning, malware removal and more.
SiteLock, the global leader in website security solutions, is the only provider to offer complete, cloud-based website protection. Its 360-degree monitoring detects and fixes threats, prevents future attacks, accelerates website performance, and meets PCI compliance standards for businesses of all sizes. Founded in 2008, the company protects over 12 million websites worldwide. SiteLockの詳細

機能

  • 脆弱性スキャニング
  • リアルタイム分析
  • 統合型開発環境
  • API
SonarQube helps developers control code security by detecting Vulnerabilities and Security Hotspots early in the workflow.
SonarQube is the leading tool for continuously inspecting the Code Quality and Security of your codebases, and guiding development teams during Code Reviews. Covering 27 programming languages, while pairing-up with your existing software pipeline, SonarQube provides clear remediation guidance for developers to understand and fix issues, and for teams overall to deliver better and safer software. SonarQubeの詳細

機能

  • 脆弱性スキャニング
  • リアルタイム分析
  • 統合型開発環境
  • API
Salesforce開発チームに向け、CodeScanは、Salesforceを利用する企業の品質とセキュリティを保証する卓越したコード分析ソリューションを提供することができます。
CodeScanは、Salesforce開発チーム向けの優れた静的コード解析ソリューションです。このソリューションは、SalesforceおよびSalesforce DevOpsチーム専用として使用されています。最大規模のSalesforceルール・セットが搭載され、あらゆる言語に対応し、これまでに210億行以上のコード・チェックの実績があります。コード・ゲートのカスタマイズによる品質管理、共通脆弱性タイプ一覧 (CWE) と国際ウェブセキュリティ標準機構 (OWASP) に沿ったセキュリティ強化、プロジェクトの迅速なスキャニングによる技術的負債の追跡、コード・レビュー・プロセスの自動化による生産性の向上を実現します。 CodeScanの詳細

機能

  • 脆弱性スキャニング
  • リアルタイム分析
  • 統合型開発環境
  • API
Open source security platform that helps find and remediate riska and vulnerabilities across business environments.
Snyk is a developer-first security solution that helps organizations use open source and stay secure. Snyk is the only solution that seamlessly and proactively finds and fixes vulnerabilities and license violations in open source dependencies and Docker images. The Snyk solution integrates its comprehensive proprietary vulnerability database maintained by its expert security research team in Israel and London. Snykの詳細

機能

  • 脆弱性スキャニング
  • リアルタイム分析
  • 統合型開発環境
  • API
Static code analyzer that helps optimize code quality and production time using continuous integration, reports, and more.
Static code analyzer that helps optimize code quality and production time using continuous integration, reports, etc.

機能

  • 脆弱性スキャニング
  • リアルタイム分析
  • 統合型開発環境
  • API
Checkmarx is a provider of state-of-the-art web application security solution: static code analysis software.
Checkmarx is a provider of state-of-the-art web application security solution: static code analysis software, seamlessly integrated into development process. Checkmarx can be integrated at every step of the SDLC, which leads to less vulnerabilities, reduced fixes to older code, lower costs and, most importantly, far more secure applications. Allows to achieve PCI DSS Compliance. Free Demo available on web site. CxSASTの詳細

機能

  • 脆弱性スキャニング
  • リアルタイム分析
  • 統合型開発環境
  • API
Find and fix potential bug risks, security flaws and other issues during code reviews -- before they end up in production.
DeepSource automatically reviews your code for bug risks, anti-patterns, performance issues, and security vulnerabilities, and reports them in the pull request. With DeepSource Autofix, we automatically fix some of the issues detected as well. It takes a couple of minutes to set up with your GitHub, GitLab, and Bitbucket account, and supports Python, Go, Ruby, Java, and JavaScript. DeepSource is free to use for open source as well as 3 private repositories up to 3 team members. DeepSourceの詳細

機能

  • 脆弱性スキャニング
  • リアルタイム分析
  • 統合型開発環境
  • API
企業によるアプリケーション・ポートフォリオ全体でのリスク管理とSDLCにおける品質欠陥への対応を支援するSASTソリューションです。
Coverityはインテリジェントで拡張性の高い静的分析 (SAST) ソリューションです。開発者はCodeSightのIDEプラグインによるサポートを利用してコーディングを行い、重要なセキュリティや品質に関する問題を発見し、修復することができます。Coverityは22の異なる言語で動作します。CI/CDパイプラインとも統合可能なため、ソフトウェア開発ライフサイクル (SDLC) の早期段階にてセキュリティや品質の欠陥に対応することが可能になります。Coverityには詳細なレポート機能や問題管理用のダッシュボードが搭載されているため、セキュリティやコーディング規約の遵守が保証されます。 Coverityの詳細

機能

  • 脆弱性スキャニング
  • リアルタイム分析
  • 統合型開発環境
  • API
Holistic Security For Your CI/CD Pipeline. Prevent software supply chain attacks and vulnerabilities, from commit to release.
Argon provides security for software development environments' CI/CD pipelines, eliminating the risk from misconfigurations, vulnerabilities and preventing supply chain attacks. This new bread of attacks is an issue all enterprises are dealing with and Argon's solution materially solves the problem in a meaningful way. Argon provides end-to-end AppSec visibility and security platform for the development process and boost your overall security posture. Argonの詳細

機能

  • 脆弱性スキャニング
  • リアルタイム分析
  • 統合型開発環境
  • API
SonarCloud is an online service to catch Bugs and Security Vulnerabilities in your Pull Requests and throughout your code repositories.
SonarCloud is the leading online service to catch Bugs and Security Vulnerabilities in your Pull Requests and throughout your code repositories. Totally free for open-source projects (paid plan for private projects), SonarCloud pairs with existing cloud-based CI/CD workflows, and provides clear resolution guidance for any Code Quality or Code Security issue it detects. With more than 1 billion lines of code analyzed every week, SonarCloud empowers development teams of all sizes to write cleaner SonarCloudの詳細

機能

  • 脆弱性スキャニング
  • リアルタイム分析
  • 統合型開発環境
  • API
Static Application Security Testing, WhiteBox Testing solution.
DefenseCode ThunderScan® is a SAST (Static Application Security Testing, WhiteBox Testing) solution for performing deep and extensive security analysis of application source code. ThunderScan® is easy to use, requires almost no user input and can be deployed during or after development with easy integration into your DevOps environment and CI/CD pipeline. ThunderScanの詳細

機能

  • 脆弱性スキャニング
  • リアルタイム分析
  • 統合型開発環境
  • API
All in one security risk management platform.
All in one security risk management platform.

機能

  • 脆弱性スキャニング
  • リアルタイム分析
  • 統合型開発環境
  • API
Tanzu Observability enables DevOps teams to troubleshoot and resolve application production issues quickly and cost-effectively.
Tanzu Observability is an enterprise observability platform that provides full-stack visibility for modern applications running on any cloud. It enables development, SRE and DevOps teams to quickly identify and troubleshoot performance issues by securely and reliably providing granular visibility into containerized applications and cloud infrastructure. VMware Tanzu Observabilityの詳細

機能

  • 脆弱性スキャニング
  • リアルタイム分析
  • 統合型開発環境
  • API
SonarLint is a free and open source IDE extension that allows developers to detect and fix code quality & security issues as they code.
SonarLint is a free and open source IDE extension that allows developers to instantly detect and fix code quality and security issues as they write code. Like a spell checker, SonarLint highlights coding flaws so issues can be addressed right in the IDE, before code is committed. Backed by hundreds of language specific Static Code Analysis rules, the tool provides immediate in-context help and examples to guide users to understand and fix issues. SonarLintの詳細

機能

  • 脆弱性スキャニング
  • リアルタイム分析
  • 統合型開発環境
  • API
ShiftLeft CORE is a suite of modern AST tools that simplify work between Dev and AppSec teams and provide early scans of code at scale.
ShiftLeft CORE is a suite of modern AST tools that simplify work between Dev and AppSec teams and provide early scans of code at scale.

機能

  • 脆弱性スキャニング
  • リアルタイム分析
  • 統合型開発環境
  • API
IDA Pro is a powerful disassembler and a versatile debugger.
The source code of the software we use on a daily basis isn’t always available. A disassembler like IDA Pro is capable of creating maps of their execution to show the binary instructions that are actually executed by the processor in a symbolic representation called assembly language. This disassembly process allows software specialists to analyze programs that are suspected to be nefarious in nature, such as spyware or malware. IDA Proの詳細

機能

  • 脆弱性スキャニング
  • リアルタイム分析
  • 統合型開発環境
  • API
esChecker verifies runtime defenses and protections against reverse engineering.
esChecker, your MAST automation companion Reduce the time wasted to qualify your Mobile Application Protections thanks to MAST automation (SAST static tests and DAST dynamic tests). The slow, manual days of pentesting mobile applications are over. esChecker is an online tool, combined with a set of APIs and plugins to facilitate your recurring security testing, designed by world-class pentesters. The tool follows OWASP standards. esCheckerの詳細

機能

  • 脆弱性スキャニング
  • リアルタイム分析
  • 統合型開発環境
  • API
Help software developers write better code faster using the Codiga Coding Assistant and Automated Code Reviews.
Codiga is a Coding Assistant and an Automated Code Review platform. With the Coding Assistant, you can create, find and import safe and secure reusable code blocks in seconds, saving hours of software development. With the Code Analysis and Code Review platform, you get insights on your code review immediately, ensuring new code is merged with confidence. Codigaの詳細

機能

  • 脆弱性スキャニング
  • リアルタイム分析
  • 統合型開発環境
  • API
It is a SAST application that helps businesses to identify common defects, violation of policies, and other vulnerabilities.
It is a SAST application that helps businesses to identify common defects, violation of policies, and other vulnerabilities.

機能

  • 脆弱性スキャニング
  • リアルタイム分析
  • 統合型開発環境
  • API
Apiiro helps organizations secure their Software Development Lifecycle (SDLC).
Apiiro performs deep code risk assessment across all source control systems and CI/CD pipelines and uses context across multiple data sources to remediate critical risks such as design flaws, misconfigurations, vulnerabilities, drifts & supply chain attacks before production. Apiiroの詳細

機能

  • 脆弱性スキャニング
  • リアルタイム分析
  • 統合型開発環境
  • API
Static code analysis software to find security and quality bugs faster. Trusted by many organizations worldwide.
AppSonar Static Code Analyzer Helps Improve the Security and Quality of Your Application Code. Automate static application security testing to find hidden security and quality bugs faster. Over thousands of rules and over 15 programming language support. Based on industry standards. AppSonarの詳細

機能

  • 脆弱性スキャニング
  • リアルタイム分析
  • 統合型開発環境
  • API
CalypsoAI Toolkit is a development environment with end-to-end secure model building with AI capabilities.
CalypsoAI Toolkit is a development environment with end-to-end secure model building with AI capabilities. CalpysoAI Toolkit has a streamlined workflow, verified ML algorithms, testing, evaluation, verification and validation beginning from research and development through model deployment with monitoring and reporting on a model's performance strengths and weaknesses. CalypsoAI Toolkitの詳細

機能

  • 脆弱性スキャニング
  • リアルタイム分析
  • 統合型開発環境
  • API
Security scanning and penetration testing platform that helps DevOps teams automatically assess Salesforce security postures.
Security scanning and penetration testing platform that helps DevOps teams automatically assess Salesforce security postures.

機能

  • 脆弱性スキャニング
  • リアルタイム分析
  • 統合型開発環境
  • API