-
Raxis is a cybersecurity company with ethical hacking (red team) experience. Years of penetration testing and general mischief-making have taught us that there’s always a way in. We’ll find it — and help you keep the bad guys out.
Raxis communicates throughout to be sure your input is used within the code review, and they provide a report that details each finding with screenshots and remediation advice. A high-level summary that can be provided to management and a debriefing call are also included.
#Cyber Security #Penetration Testing #Red Team Attacks
-
Static code analysis tool for web application security
It supports major frameworks, SDLC integration, relevant industry standards, and can be deployed as a self-hosted software or used as software-as-a-service. With its high accuracy and no false-positive noise, RIPS is the ideal choice for analyzing Java and PHP applications.
#Security #Code Analysis #Travel
-
PVS-Studio is a useful piece of software for detecting problems in source code. The software examines program codes written in C, C++, and C# for any problems that might prohibit the code from functioning properly.
PVS-Studio is a tool for detecting bugs and security weaknesses in the source code of programs, written in C, C++, C#, and Java. It works in Windows, Linux, and macOS environment.
#Code Analysis #Code Coverage #Code Review 10 social mentions
-
Learn how Kiuwan's Code Security (SAST) identifies and remediates cyber threats with a DevSecOps approach in a collaborative environment, with seamless integration in your SDLC.
#Code Analysis #Code Review #Web Application Security
-
6r
reshift
This product hasn't been added to SaaSHub yetIf you are looking for a tool to ensure the developed code is compliant with CERT coding rules, you can opt for Rosecheckers. It is available for free is SourceForge. This tool does check for C/C++ codes and sometimes finds the problem which other static analysis tools cannot find, but this cannot be considered a full-grown standalone tool due to its inability to fully test since this is only a prototype.
-
7ECS
Empear Code Scene
This product hasn't been added to SaaSHub yetIf you are looking for a tool to ensure the developed code is compliant with CERT coding rules, you can opt for Rosecheckers. It is available for free is SourceForge. This tool does check for C/C++ codes and sometimes finds the problem which other static analysis tools cannot find, but this cannot be considered a full-grown standalone tool due to its inability to fully test since this is only a prototype.
-
An all-in-one Static Code Analysis + SAST tool for PowerBuilder, Oracle and SQL Server
#Code Analysis #Code Review #Code Coverage
-
Veracode's application security software products are simpler and more scalable to increase the resiliency of your application infrastructure.
Veracode is a static analysis tool that is built on the SaaS model. This tool is mainly used to analyze the code from a security point of view.
#Code Analysis #Web Application Security #Code Review
-
Complete application security as a service (AppSec SaaS) solution with SAST, DAST, IAST, RASP, SCA (open source security), and developer security training.
#Code Analysis #Code Review #Web Application Security
-
11PSA
Parasoft Static Analysis
This product hasn't been added to SaaSHub yetIf you are looking for a tool to ensure the developed code is compliant with CERT coding rules, you can opt for Rosecheckers. It is available for free is SourceForge. This tool does check for C/C++ codes and sometimes finds the problem which other static analysis tools cannot find, but this cannot be considered a full-grown standalone tool due to its inability to fully test since this is only a prototype.
-
Find and fix defects in your Java, C/C++ or C# open source project for free
Coverity Scan is an open-source cloud-based tool. It works for projects written using C, C++, Java C# or JavaScript. This tool provides a very detailed and clear description of the issues which help in faster resolution. A good choice if you are looking for an open-source tool.
#Code Analysis #Code Coverage #Code Review 4 social mentions
-
Record, edit, publish, and host your podcast
#Business & Commerce #ERP #Mapping And GIS 6 social mentions
-
CodeSonar, produced by GrammaTech, is source and binary code analysis software that finds critical defects that can crash systems, result in unexpected operations, threaten security, and more.
#Code Analysis #Web Application Security #Code Coverage
-
Combines a powerful Code Editor together with an impressive array of static analysis tools that will change the way you work with code.Pricing:
- Paid
- Free Trial
Just like its name, this tool lets user UNDERSTAND code by analyzing, measuring, visualizing and maintaining. This allows quick analysis of massive codes. This is one tool that is mainly used by the aerospace and automakers industry. Supports major languages like C/C++, ADA, COBOL, FORTRAN, PASCAL, Python and other web languages.
#Code Coverage #Code Analysis #Code Quality 1 social mentions
-
Code Compare is an advanced file and folder comparison tool. Its intuitive interface allows you to merge differing files and folders fast and easily! And it's FREE!Pricing:
- Open Source
- Freemium
- Free Trial
- $69.95 / Annually
#Code Review #Developer Tools #Software Development
-
The Clang Static Analyzer is a source code analysis tool that finds bugs in C, C++, and Objective-C...
#Code Analysis #Code Coverage #Development 7 social mentions
-
Master Your C and C++ Codebase with Precision and InsightPricing:
- Freemium
- Free Trial
#Code Coverage #Code Analysis #Code Quality 4 user reviews
-
Klocwork is a static code analysis and SAST tool for C, C++, C#, Java, and JavaScript.
#Code Analysis #Code Coverage #Code Review
-
Cppcheck is an analysis tool for C/C++ code. It detects the types of bugs that the compilers normally fail to detect. The goal is no false positives. CppCheckDownload cppcheck for free.Pricing:
- Open Source
#Code Analysis #Code Coverage #Development 10 social mentions
-
Perforce Helix QAC is a handy, reliable, and highly rated Static Code Analysis solution that aids you in the process of finding vulnerabilities and problems within your C/C++ code.
#Development #Tool #Code Analysis
-
22G
Goanna
This product hasn't been added to SaaSHub yetIf you are looking for a tool to ensure the developed code is compliant with CERT coding rules, you can opt for Rosecheckers. It is available for free is SourceForge. This tool does check for C/C++ codes and sometimes finds the problem which other static analysis tools cannot find, but this cannot be considered a full-grown standalone tool due to its inability to fully test since this is only a prototype.
-
23MPB
Mathworks Polyspace Bug Finder
This product hasn't been added to SaaSHub yetIf you are looking for a tool to ensure the developed code is compliant with CERT coding rules, you can opt for Rosecheckers. It is available for free is SourceForge. This tool does check for C/C++ codes and sometimes finds the problem which other static analysis tools cannot find, but this cannot be considered a full-grown standalone tool due to its inability to fully test since this is only a prototype.
-
24S
Sourcemeter
This product hasn't been added to SaaSHub yetIf you are looking for a tool to ensure the developed code is compliant with CERT coding rules, you can opt for Rosecheckers. It is available for free is SourceForge. This tool does check for C/C++ codes and sometimes finds the problem which other static analysis tools cannot find, but this cannot be considered a full-grown standalone tool due to its inability to fully test since this is only a prototype.
-
25CQA
ConQAT
This product hasn't been added to SaaSHub yetIf you are looking for a tool to ensure the developed code is compliant with CERT coding rules, you can opt for Rosecheckers. It is available for free is SourceForge. This tool does check for C/C++ codes and sometimes finds the problem which other static analysis tools cannot find, but this cannot be considered a full-grown standalone tool due to its inability to fully test since this is only a prototype.
-
JArchitect is used by developers to measure, understand and improve their Java code quality.
#Code Coverage #Code Analysis #Code Quality
-
27OCL
OCLint.org
This product hasn't been added to SaaSHub yetIf you are looking for a tool to ensure the developed code is compliant with CERT coding rules, you can opt for Rosecheckers. It is available for free is SourceForge. This tool does check for C/C++ codes and sometimes finds the problem which other static analysis tools cannot find, but this cannot be considered a full-grown standalone tool due to its inability to fully test since this is only a prototype.
-
"Watchtower monitors your competition's websites and alerts you to important changes instantly."
#Productivity #Security #Code Analysis
-
29OWA
OWASP Code Crawler
This product hasn't been added to SaaSHub yetIf you are looking for a tool to ensure the developed code is compliant with CERT coding rules, you can opt for Rosecheckers. It is available for free is SourceForge. This tool does check for C/C++ codes and sometimes finds the problem which other static analysis tools cannot find, but this cannot be considered a full-grown standalone tool due to its inability to fully test since this is only a prototype.
-
30OWA
OWASP Orizon
This product hasn't been added to SaaSHub yetIf you are looking for a tool to ensure the developed code is compliant with CERT coding rules, you can opt for Rosecheckers. It is available for free is SourceForge. This tool does check for C/C++ codes and sometimes finds the problem which other static analysis tools cannot find, but this cannot be considered a full-grown standalone tool due to its inability to fully test since this is only a prototype.
-
31GPC
Gimpel PC-lint
This product hasn't been added to SaaSHub yetIf you are looking for a tool to ensure the developed code is compliant with CERT coding rules, you can opt for Rosecheckers. It is available for free is SourceForge. This tool does check for C/C++ codes and sometimes finds the problem which other static analysis tools cannot find, but this cannot be considered a full-grown standalone tool due to its inability to fully test since this is only a prototype.
-
32IBM
IBM Rational Software Analyzer
This product hasn't been added to SaaSHub yetIf you are looking for a tool to ensure the developed code is compliant with CERT coding rules, you can opt for Rosecheckers. It is available for free is SourceForge. This tool does check for C/C++ codes and sometimes finds the problem which other static analysis tools cannot find, but this cannot be considered a full-grown standalone tool due to its inability to fully test since this is only a prototype.
-
33bSE
bugSeng Eclair
This product hasn't been added to SaaSHub yetIf you are looking for a tool to ensure the developed code is compliant with CERT coding rules, you can opt for Rosecheckers. It is available for free is SourceForge. This tool does check for C/C++ codes and sometimes finds the problem which other static analysis tools cannot find, but this cannot be considered a full-grown standalone tool due to its inability to fully test since this is only a prototype.
-
SonarQube, a core component of the Sonar solution, is an open source, self-managed tool that systematically helps developers and organizations deliver Clean Code.Pricing:
- Open Source
- Freemium
- Free Trial
- $150.0 / Annually
It is possible to integrate it into Visual Studio, IntelliJ IDEA, and other widespread IDE. The results of the analysis can be imported into SonarQube.
#Code Analysis #Code Review #Code Coverage 1 social mentions
-
35R
Rosecheckers
This product hasn't been added to SaaSHub yetIf you are looking for a tool to ensure the developed code is compliant with CERT coding rules, you can opt for Rosecheckers. It is available for free is SourceForge. This tool does check for C/C++ codes and sometimes finds the problem which other static analysis tools cannot find, but this cannot be considered a full-grown standalone tool due to its inability to fully test since this is only a prototype.
-
A unofficial Framer for Web desktop app for Mac
#Code Analysis #Code Coverage #Design Tools
-
Semmle analytics platform that provides data-driven software engineering for visibility for every project, location, team and timeframe.
#Code Coverage #Code Analysis #Code Review
-
PMD scans Java source code and looks for potential problems like:
A tool that helps in analyzing C/C++, Java, C#, RPG and Python codes. Another good thing about this tool is it allows integration with free static checker tools like cppcheck, PMD, FindBugs. Basic Version of this tool is free but it comes with fewer features. Based on the need, you can decide whether the free version satisfies the requirement or not.
#Code Coverage #Code Analysis #Code Quality
-
Findbugs is a tool that looks for bugs in Java code. Findbugs finds the bugs by analyzing computer software without actually executing programs. Using this software allows for easy debugging and repairing broken script. Read more about FindBugs.Pricing:
- Open Source
A tool that helps in analyzing C/C++, Java, C#, RPG and Python codes. Another good thing about this tool is it allows integration with free static checker tools like cppcheck, PMD, FindBugs. Basic Version of this tool is free but it comes with fewer features. Based on the need, you can decide whether the free version satisfies the requirement or not.
#Code Coverage #Code Analysis #Code Quality 3 social mentions
-
43HFC
Header Free Cyclomatic Complexity Analyzer
This product hasn't been added to SaaSHub yetIf you are looking for a tool to ensure the developed code is compliant with CERT coding rules, you can opt for Rosecheckers. It is available for free is SourceForge. This tool does check for C/C++ codes and sometimes finds the problem which other static analysis tools cannot find, but this cannot be considered a full-grown standalone tool due to its inability to fully test since this is only a prototype.
-
44C
Cloc
This product hasn't been added to SaaSHub yetIf you are looking for a tool to ensure the developed code is compliant with CERT coding rules, you can opt for Rosecheckers. It is available for free is SourceForge. This tool does check for C/C++ codes and sometimes finds the problem which other static analysis tools cannot find, but this cannot be considered a full-grown standalone tool due to its inability to fully test since this is only a prototype.
-
45SLO
SLOCCount
This product hasn't been added to SaaSHub yetIf you are looking for a tool to ensure the developed code is compliant with CERT coding rules, you can opt for Rosecheckers. It is available for free is SourceForge. This tool does check for C/C++ codes and sometimes finds the problem which other static analysis tools cannot find, but this cannot be considered a full-grown standalone tool due to its inability to fully test since this is only a prototype.
-
New JSHint website. Anton Kovalyov Oct 1st, 2013. For the last couple of weeks I've been working on a new homepage for JSHint and today I'm proud to announce the new jshint. com! JSHint Website.Pricing:
- Open Source
#Front End Package Manager #JS Build Tools #JavaScript Package Manager 14 social mentions
-
DeepScan is a static analysis tool for JavaScript that helps you to find security vulnerabilities and programming mistakes in your code.
You can use DeepScan to find possible runtime errors and quality issues instead of coding conventions. Integrate with your GitHub repositories to get quality insight into your web project.
#Development #Code Analysis #Code Coverage 2 social mentions
Discuss: TOP 40 Static Code Analysis Tools (Best Source Code Analysis Tools)
Related Posts
Top 9 C++ Static Code Analysis Tools
incredibuild.com // almost 3 years ago
Ten Best SonarQube alternatives in 2021
duecode.io // over 2 years ago
Top 6 Complete Automation Testing Solutions
dzone.com // about 4 years ago
Top 4 Open Source Security Testing Tools to Test Web Application
softwaretestinghelp.com // almost 4 years ago
11 Interesting Tools for Auditing and Managing Code Quality
geekflare.com // over 4 years ago