getapp-logo

App comparison

Add up to 4 apps below to see how they compare. You can also use the "Compare" buttons while browsing.

Software categoriesBlog & researchAbout us

GetApp offers objective, independent research and verified user reviews. We may earn a referral fee when you visit a vendor through our links. 

Static Application Security Testing (SAST) Software with API (2026) - Page 2

Last updated: April 2026

Filter results

Features

Integrated with

Pricing model

Devices supported

Organization types

User rating

34 software options

SonarQube Cloud logo

SonarQube Cloud

SonarCloud is a cloud-based alternative of the SonarQube .

learn more
SonarCloud is a cloud based (SaaS) static code analysis solution that can be used by dev teams to ensure code quality and security.

Read more about SonarQube Cloud

Users also considered
CodeScan logo

CodeScan

Quality and Security for the Salesforce Platform

learn more
For Salesforce DevOps teams, CodeScan helps businesses scan and analyze Salesforce codes, define quality and security standards, and ensure compliance with statutory guidelines across code development projects. We have 350+ rules and support all Salesforce languages and Metadata.

Read more about CodeScan

Users also considered
Veracode logo

Veracode

Software for scanning & managing application vulnerabilities

learn more
Veracode is a static application security testing (SAST) software designed to help businesses review applications' source code to identify vulnerabilities. The platform allows software developers to conduct application analysis and receive automated security feedback in the IDE and CI/CD pipeline.

Read more about Veracode

Users also considered
Ostorlab logo

Ostorlab

(0)

Cloud-based vulnerability management platform

learn more
Ostorlab is a cloud-based vulnerability management platform designed to help businesses detect, monitor, and remediate risks across enterprises' external attack surfaces.

Read more about Ostorlab

Users also considered
Apiiro logo

Apiiro

AppSec management tool to secure cloud software development.

learn more
Apiiro is re-inventing the secure development lifecycle for agile and cloud-native development. It helps businesses transform application security into multidimensional application risk.

Read more about Apiiro

Users also considered
Akto logo

Akto

(0)

API Security Platform for Modern Appsec teams

learn more
Akto is an industry-leading solution for API discovery, API security posture management, sensitive data exposure, API security testing.

Read more about Akto

Users also considered
ThunderScan logo

ThunderScan

(0)

SAST Application Security

learn more
ThunderScan by DefenseCode is a Static Application Security Testing (SAST) software that allows businesses to perform deep and extensive security analysis of various application source codes. ThunderScan can be integrated with existing CI/CD pipelines and DevOps environment, offering a platform that requires almost no user input, easy to use, and can be deployed during or after development.

Read more about ThunderScan

Users also considered
OX Security logo

OX Security

Cloud-security solution for administrators.

learn more
OX Security is a cloud security platform that helps small to large businesses in technology, banking, financial services, and other sectors protect their organization from advanced cyber threats. The platform provides real-time threat detection and response capabilities, giving administrators the ability to gain insights into their network so they can identify and address threats before those threats cause damage.

Read more about OX Security

Users also considered
Jsmon logo

Jsmon

Cloud-based static application security testing (SAST) tool.

learn more
Jsmon is a SAST platform that detects vulnerabilities and uncovers hidden API endpoints in code.

Read more about Jsmon

Users also considered