Coverity finds critical defects and security vulnerabilities in software during development, before it reaches customers. The solution helps developers save time by finding issues early and helps management to manage risk and make better release decisions. Coverity supports over a dozen programming languages and a broad range of defect and vulnerability types.
Black Duck scans your projects and containers for newly introduced open source either as source or as binaries, helping you manage security vulnerabilities and licensing risks before they become problems. It enables you to review and prioritize vulnerabilities, assign remediation dates, and track closure. Black Duck also checks the licenses for risk levels and verifies use against company policies. After the scan, Black Duck continuously monitors for new vulnerabilities reported against open source libraries in use within your applications, enabling you to quickly respond to newly identified vulnerabilities.
Seeker, our interactive application security testing solution, gives you unparalleled visibility into your web app security posture and identifies vulnerability trends against compliance standards (e.g., OWASP Top 10, PCI DSS, and CWE/SANS). Seeker’s seamless integration into CI/CD workflows enables fast IAST security testing at DevOps speed.
Defensics is a comprehensive, powerful, and automated black box solution that enables you to effectively and efficiently discover and remediate security weaknesses in software. By taking a systematic and intelligent approach to negative testing, Defensics allows you to ensure software security without compromising on product innovation, increasing time to market, or inflating operational costs.
Synopsys eLearning is an outcome-driven, learner-centric training solution that makes learning about security easy, relevant, and accessible. Learners have on-demand access to an immersive, continuous learning ecosystem that unifies security expertise, instructional design, and storytelling into an intuitive platform.