Checkmarx might be a bit more popular than DNIF. We know about 2 links to it since March 2021 and only 2 links to DNIF. We are tracking product recommendations and mentions on various public social media platforms and blogs. They can help you identify which product is more popular and what people think of it.
I don't mind putting in a little elbow grease to get the work done as long as I complete my task. I've had similar suggestions given to me but in the end I opted for a product called DNIF, its relatively new and comes with a full featured community license. As of now its working well for me, so if you like you can check it out for yourself https://dnif.it/. Source: about 3 years ago
You might have to search for a platform that offers both free to use as well as commercial license, they bring the best of both worlds. Being a commercial product they already have most of your log forwarding requirements in place and in the free version it's only a matter of reading the help documents and following the instructions (DIY). Here are some options you could look at- 1) Splunk (Never expires but... Source: about 3 years ago
Automate security testing: Use tools such as OWASP ZAP, SonarQube, or Checkmarx to automate security testing. This will help you identify security issues early in the development process and reduce the risk of vulnerabilities being introduced into your code. - Source: dev.to / over 1 year ago
Application Security (AppSec) is the forte of Checkmarx, which is an award-winning AppSec Testing tool that integrates security policies into the DevOps workflow and ensures security across the application lifecycle. Checkmarx scans all your code and provides actionable insights for critical vulnerabilities. Checkmarx also offers developer-friendly AppSec training that makes the transition to DevSecOps more... - Source: dev.to / over 2 years ago
Qualys Cloud Platform - The revolutionary architecture that gives you a continuous, always-on assessment of your global security and compliance posture, with 2-second visibility across all your IT assets, wherever they reside.
SonarQube - SonarQube, a core component of the Sonar solution, is an open source, self-managed tool that systematically helps developers and organizations deliver Clean Code.
Cybrhawk SIEM ZTR - Cybrhawk SIEM ZTR is an AI-based cyber security information and management software that allows companies to manage all cybersecurity-related tasks, reactions, and processes in one place.
Coverity Scan - Find and fix defects in your Java, C/C++ or C# open source project for free
Stellar Cyber - Stellar Cyber is a cyber-attack detection and response platform that protect enterprises against the latest cyber threats, such as Ransomware, Cryptojacking, Banking Trojans, and Multi-Stage Attacks.
Veracode - Veracode's application security software products are simpler and more scalable to increase the resiliency of your application infrastructure.