Application security testing and software composition analysis for development teams.
Black Duck offers comprehensive application security testing including SAST, DAST, IAST, and SCA, with AI-powered analysis to secure proprietary, open source, and AI-generated code. It provides visibility, automation, and compliance for software supply chains.
Black Duck Signal™ combines decades of security expertise with large language model-powered analysis to autonomously detect and remediate vulnerabilities in critical applications.
Provides fast, scalable static code analysis via cloud, on-premises, or IDE plugins to identify security and quality issues early in development.
Delivers complete visibility into open source and third-party components, generating accurate Software Bills of Materials (SBOMs) and continuous monitoring for vulnerabilities and compliance risks.
Identifies vulnerabilities in APIs and web applications before and after deployment with quick scans and deeper on-demand testing.
Seeker® Interactive Analysis offers detailed web application security posture visibility and vulnerability trend analysis against compliance standards.
Black Duck Polaris™ Platform integrates SAST, SCA, and AI-powered analysis into a single scalable SaaS platform for risk prioritization and policy control.
Supports cloud, on-premises, and hybrid environments, allowing flexible integration into diverse development and security workflows.
Ensures adherence to industry regulations, open source license compliance, and code quality standards for safety-critical and regulated software.
Connect Black Duck tools to your source code repositories, CI/CD pipelines, and IDEs for seamless security testing integration.
Scan your codebase to identify all open source and third-party components, generating a Software Bill of Materials (SBOM) for visibility.
Execute SAST and DAST scans to detect vulnerabilities in proprietary and AI-generated code, APIs, and web applications.
Use the Polaris Platform to review detected vulnerabilities, prioritize based on risk, and assign remediation tasks to development teams.
Enable continuous monitoring for new vulnerabilities and enforce security and compliance policies automatically within your pipelines.
Pricing details are gathered from the official Black Duck website and are provided for reference only. Always confirm the latest information directly with the vendor.
| Plan | Price | Highlights |
|---|---|---|
| Contact Sales | Custom pricing | Access to full Black Duck Polaris Platform capabilities
|
Explore tools grouped by use case so you can keep researching without losing momentum.
Compare other vetted products our editors see buyers evaluate alongside Black Duck.
