OWASP Dependency Tracker
What is OWASP Dependency Track? Dependency Track is an open-source software composition analysis tool from an OWASP project. It is good for...
Posts about
Integrations
SonarQube Scanner
What is SonarQube Scanner? SonarQube is a very popular static analysis tool that scans code for quality and security issues. SonarQube has community...
NPMAudit
What is NPM Audit? The 'audit' command of the 'npm' tool is a built-in security feature to Node Package Manager. It checks the current version of the...
NodeJSScan
What is nodejsscan? NodeJsScan is an open source static code scanner used to find security flaws specifically in Node.js applications. It is powered...
Veracode
What is Veracode? Veracode is a commercial provider of software security testing tools, based in the cloud, that includes static code analysis,...
SSLYze
What is SSLYze? SSlyze is a great open source tool for checking a website or servers SSL/TLS certificates. It checks the SSL/TLS configuration of a...
SQLMap
What is SQLMap? It is an open source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking...
Nikto2
What is Nikto2? Nikto is an open source dynamic web server scanner which performs comprehensive tests against web servers for multiple items,...
Fortify on Demand
What is Fortify on Demand? Fortify on Demand is the online service provided by the Uleska partner Micro Focus which incorporates their static (Static...
Dependency Checker
What is OWASP Dependency Checker? Dependency Check is a popular open-source security scanning tool from OWASP and Jeremy Long. Dependency Check is...