Synopsys to acquire WhiteHat Security | An application security pioneer and market-segment leading provider of DAST solutions Learn More

close search bar

Sorry, not available in this language yet

close language selection
  • English
  • 日本語
  • 简体中文

Cybersecurity Research Center (CyRC)

The Synopsys Cybersecurity Research Center works to accelerate access to information around the identification, severity, exploitation, mitigation, and defense against software vulnerabilities. Operating within the greater Synopsys mission of making the software that powers our lives safer and of the highest quality, CyRC helps increase awareness of issues by publishing research supporting strong cybersecurity practices.

CyRC leverages core expertise present within the global software security teams within Synopsys. Our expertise spans static code analysis, fuzzing, penetration testing, open source development, and production deployment. With software at the heart of modern life—from wearable devices, home automation, blockchain, mobile applications, and automotive technologies—access to actionable security information must flow at the pace of innovation.

CyRC research labs

Boston

Our Boston open source research team maintains the Black Duck KnowledgBase, analyzing and refining data for over 2 million open source projects from over 14,000 resources worldwide.

Learn more about the Black Duck KnowledgeBase

Calgary

Our Calgary team works to identify coding patterns contributing to software vulnerabilities.

Belfast

Our Belfast team is chartered to identify the true impact of open source vulnerabilities and their exploitability.

Learn more about Black Duck Security Advisories

Oulu

Our Oulu team researchers discovered the Heartbleed vulnerability and continue to perform protocol-based research.

Learn more about Heartbleed

Download the latest CyRC research

To help organizations develop secure, high-quality software, the CyRC team publishes research that supports strong cyber security practices. Check out some of the latest research.

Report

2021 Software Vulnerability Snapshot

Download the report

Report

The State of Software Security in the Financial Services Industry

Download the report
Report

Open Source Security and Risk Analysis Report

Download the report

Report

DevSecOps Practices and Open Source Management in 2020

Download the report
Report

Peril in a Pandemic: The State of Mobile Application Security

Download the report

Tools for the open source community

Open Hub
Coverity Scan
CoPilot
Open Hub + -

Open Hub

Open Hub is an online community and public directory of free and open source software (FOSS) offering analytics and search services for discovery, evaluation, and comparison of open source code and projects.

Learn more
Coverity Scan + -

Coverity Scan

Coverity Scan helps you find and fix defects in your Java, C/C++, C#, JavaScript, Ruby, or Python open source project for free. Coverity Scan tests every line of code and potential execution path and clearly explains the root cause of each defect, making it easy to fix bugs.

Learn more
CoPilot + -

CoPilot

Designed with open source developers in mind, Black Duck CoPilot integrates with your GitHub repository and CI platform to give you a clear understanding of any unpatched open source vulnerabilities. A CoPilot GitHub badge provides assurances to your users of any open source vulnerabilities in the codebase.

Learn more