Brakeman is an open source static analysis vulnerability scanner tailored for Ruby on Rails applications designed to spot security vulnerabilities.

Checkmarx’s CxSAST is a tool that discovers and documents application layer security vulnerabilities.

Coverity® identifies critical software quality defects and security vulnerabilities in code as it’s written, early in the development process, when it’s least costly and easiest to fix.

FindBugs is a static analysis open source program that detects bugs in Java code.

HCL AppScan on Cloud (ASoC) is a cloud app security offering that helps secure your organization’s Web, cloud, mobile, and other applications.

HCL AppScan Source identifies web-based and mobile application source code vulnerabilities early in the software development cycle, so they can be fixed before deployment.

Micro Focus Fortify SCA Integration Maximize your investment in HP Fortify by integrating with ThreadFix to import and merge scan results and schedule regular scans.

Learn More >

Veracode Binary Static Analysis (SAST) platform performs analysis of code and third party components without the upload of source code.

Virtual Forge CodeProfiler is an ABAP virtual firewall enforcing security, speed and quality from development, quality assurance and production.

WhiteHat Security Sentinel Static Analysis scans your entire source code, identifies vulnerabilities and provides detailed vulnerability descriptions and remediation advice.