Synopsys offers the most comprehensive set of application security testing (AST) tools to detect security, quality, and compliance issues in proprietary code, open source and third-party

dependencies, application behavior, and deployment configurations. Each tool is a recognized market leader in its respective category, making Synopsys the natural choice for organizations looking to consolidate their AST tools provider.

• Software composition analysis. Black Duck® detects and manages open source and third-party component risks in development and production. Black Duck uniquely identifies open source included in container images and binaries.
• Static application security testing. Coverity® identifies critical quality defects and security weaknesses in your proprietary code and infrastructure-as-code early in the software development life cycle when it’s least expensive to remediate.
• Dynamic analysis. WhiteHat™ Dynamic safely and efficiently performs continuous dynamic analysis on production applications, testing software in the same state as attackers.
• Interactive analysis. Seeker® discovers real, exploitable vulnerabilities in web-based applications during QA and other testing cycles, with near zero false positives.
• Fuzz testing. Defensics® finds security weaknesses and vulnerabilities through flexible, scalable, automated negative testing that integrates into development workflows.