Identify and remediate app security vulnerabilities in web and mobile applications prior to deployment.
SD ELEMENTS INTEGRATIONS
AppScan SourceSAST
AppScan EnterpriseDAST
AppScan Enterprise enables organizations to mitigate application security risk, strengthen application security testing and achieve regulatory compliance. Security and development teams can collaborate, establish policies and scale testing throughout the application lifecycle.
IBM Security AppScan StandardDAST
Protects against web application attacks and expensive data breaches by testing your application code.
CoveritySAST
Coverity gives you the speed, ease of use, accuracy, industry standards compliance, and scalability that you need to develop high-quality, secure applications. Coverity identifies critical software quality defects and security vulnerabilities in code as it’s written, early in the development process...
Denim Group ThreadFixSecurity Tool
ThreadFix automates the matching and merging of report results from dynamic, static, and interactive application scanners. ThreadFix is the industry leading vulnerability resolution platform that provides a window into the state of application security programs for organizations that build software.
Atlassian JiraIssue Tracker
Jira Software is a powerful platform that combines issue collection and agile project management capabilities into a single application. Using Jira Software helps you plan and organize tasks, workflows, and reports for your agile team more efficiently.
Checkmarx Static Code AnalysisSAST
With CxSAST, an accurate and flexible Source Code Analysis Solution, you automatically scan uncompiled/unbuilt code and identify hundreds of security vulnerabilities in the most prevalent coding languages.
JenkinsDevOps Tool
Jenkins is an open source automation server written in Java. Jenkins helps to automate the non-human part of the software development process, with continuous integration and facilitating technical aspects of continuous delivery. It is a server-based system that runs in servlet containers such as Ap...
GitHubIssue Tracker
GitHub is a development platform based on Git. It provides access control and several collaboration features such as bug tracking, feature requests, task management, and wikis for every project.
AppScan on Cloud (ASoC)Security Tool
AppScan on Cloud is a cloud app security offering that helps secure your organization's Web, cloud, mobile, and other applications. It detects dozens of today's most pervasive security vulnerabilities and enhances your application security. IBM Application Security on Cloud helps to eliminate vulner...
IBM Rational Team ConcertIssue Tracker
IBM® Rational Team Concert™ is a collaborative software development tool that teams use to manage all aspects of their work, such as iteration and release planning, change management, defect tracking, source control, and build automation.
Micro Focus ALMIssue Tracker
Micro Focus Application Lifecycle Management (ALM) software and solutions enable teams of all sizes to deliver high quality apps with greater speed and agility. Combining ALM software products, DevOps and development tool integrations via an open REST API, a broad partner ecosystem, and a methodolog...
Fortify WebinspectDAST
Find and prioritize web application vulnerabilities. Automate dynamic web application testing across a software portfolio.
Micro Focus Fortify Static Code AnalyzerSAST
Deliver secure software fast. Find security issues early in the development cycle and fix at the speed of DevOps.
Fortify Software Security CenterSecurity Tool
Micro Focus® Security Fortify Software Security Center (SSC) is a centralized management repository providing visibility to an organization’s entire application security program to help resolve security vulnerabilities across the software portfolio.
Microsoft Azure DevOps PipelinesDevOps Tool
Automate your builds and deployments with Pipelines so you spend less time with the nuts and bolts and more time being creative.
NessusInfrastructure
Nessus is a scanner that primarily assesses the vulnerability of a network. In addition to checking for vulnerabilities, Nessus can be expanded via plugins, templates, and policies to provide additional assessment capabilities. Overall, Nessus is capable of performing over 150,000 different checks.
Microsoft Azure DevOps ServerIssue Tracker
Azure DevOps Server is a Microsoft product that provides source code management, reporting, requirements management, project management (for both agile software development and waterfall teams), automated builds, lab management, testing and release management capabilities.
OWASP Dependency CheckSoftware Composition Analysis
Dependency-Check is an open-source software composition analysis utility that identifies project dependencies and checks if there are any known, publicly disclosed, vulnerabilities. Currently, Java and .NET are supported; additional experimental support has been added for Ruby, Node.js, Python, and ...
Rally SoftwareIssue Tracker
Rally Software is an agile platform that helps organizations align strategy, track project, and manage delivery. It helps teams in all phases of the work, from capacity planning to release tracking, so that organizations are able to match customer expectations while empowering the teams to succeed a...
ServiceNow IT Service ManagementIssue Tracker
ServiceNow IT Service Management (ITSM) provides a modern, cloud-based, silo-busting service management solution. With ServiceNow ITSM, you can consolidate your IT tools into a single data model to transform the service experience, automate workflows, gain real-time visibility, and improve IT produc...
Pivotal TrackerIssue Tracker
Pivotal Tracker is the agile project management tool of choice for developers around the world for real-time collaboration around a shared, prioritized backlog.
SonarQubeSAST
SonarQube is an open-source platform developed by SonarSource for continuous inspection of code quality to perform automatic reviews with static analysis of code to detect bugs, code smells, and security vulnerabilities on 20+ programming languages.
Veracode Dynamic AnalysisDAST
Veracode Dynamic Analysis gives you a unified Dynamic Application Security Testing (DAST) solution that combines depth of coverage with unmatched scalability, scanning speed, and accuracy. The built-in automation and ease-of-use features help you quickly set up and configure single or recurring scan...
Veracode Static AnalysisSAST
Veracode static analysis enables you to quickly identify and remediate application security flaws at scale and efficiency.
VersionOneIssue Tracker
VersionOne is a formidable Agile management solution that is both comprehensive and versatile and developed for teams and projects of various scope and size. It is a compact platform that delivers outstanding performance in terms of managing and tracking multiple teams, tasks, and projects. Simple t...
WhiteHat Sentinel DynamicDAST
WhiteHat Sentinel Dynamic is a dynamic application security testing (DAST) product. Sentinel Dynamic offers unmatched accuracy needed for secure DevOps implementations, powered by WhiteHat’s Attack Vector IntelligenceTM (AVI) technology.
XebiaLabs XL ReleaseDevOps Tool
Automate your builds and deployments with Pipelines so you spend less time with the nuts and bolts and more time being creative.
WhiteHat Sentinel SourceSAST
WhiteHat Sentinel Source is a static application security testing (SAST) product. It is used for scanning source code of the most commonly-used programming languages, identifying vulnerabilities, and providing actionable vulnerability reports, as well as offering Software Composition Analysis and re...
Questions about SD Elements?