---
description: Page 2 - Compare the best Static Application Security Testing (SAST) Software in Canada. Capterra offers software reviews from verified users, pricing, and features. Find the top rated software for your business.
image: https://gdm-localsites-assets-gfprod.imgix.net/images/capterra/og_logo-e5a8c001ed0bd1bb922639230fcea71a.png?auto=format%2Cenhance%2Ccompress
title: Page 2 - Static Application Security Testing (SAST) Software - Prices & Reviews - Capterra Canada 2026
---
Breadcrumb: [Home](/) > [Static Application Security Testing (SAST) Software](https://www.capterra.ca/directory/32818/static-application-security-testing-%28sast%29/software) > [Page 2](https://www.capterra.ca/directory/32818/static-application-security-testing-%28sast%29/software?page=2)
# Static Application Security Testing (SAST) Software
Canonical: https://www.capterra.ca/directory/32818/static-application-security-testing-%28sast%29/software
Page: 2 / 3\
Prev: [Previous page](https://www.capterra.ca/directory/32818/static-application-security-testing-%28sast%29/software)\
Next: [Next page](https://www.capterra.ca/directory/32818/static-application-security-testing-%28sast%29/software?page=3)
> Static Application Security Testing (SAST) automatically scans coding environments for security vulnerabilities during the application development process.
-----
## Products
1. [Xygeni Security](https://www.capterra.ca/software/1043740/xygeni) — 5.0/5 (5 reviews) — AI-powered SAST with low noise, exploit-focused detection, smart prioritization, in-IDE guidance, fully integrated into CI/CD and ASPM.
2. [Jsmon](https://www.capterra.ca/software/1076821/Jsmon) — 4.8/5 (5 reviews) — Jsmon is a SAST platform that detects vulnerabilities and uncovers hidden API endpoints in code.
3. [Sonatype Lifecycle](https://www.capterra.ca/software/171030/nexus-lifecycle) — 4.0/5 (4 reviews) — Pair Sonatype Lift with your favorite SAST tool to find and fix performance, reliability, and style issues deep in your code.
4. [OWASP ZAP](https://www.capterra.ca/software/1025564/owasp-zap) — 5.0/5 (4 reviews) — A web security software application that provides English-language vulnerability assessments and other online safeguarding measures.
5. [Apiiro](https://www.capterra.ca/software/1020206/apiiro) — 4.3/5 (3 reviews) — Apiiro helps organizations secure their Software Development Lifecycle (SDLC).
6. [OX Security](https://www.capterra.ca/software/1043847/ox-security) — 4.7/5 (3 reviews) — OX Security provides full visibility and end-to-end traceability over your entire software supply chain from code to cloud.
7. [DoveRunner](https://www.capterra.ca/software/182094/appsealing) — 5.0/5 (2 reviews) — DoveRunner is a mobile app security software that protects digital assets from threats and piracy through content protection features.
8. [OpenText Application Security Aviator](https://www.capterra.ca/software/1036935/fortify) — 5.0/5 (2 reviews) — Fortify is an application security platform that protects applications from breaches, malware, and malicious insiders.
9. [Qwiet AI](https://www.capterra.ca/software/1050452/qwiet-ai) — 5.0/5 (2 reviews) — SAST solution that helps developers scan and analyze vulnerabilities across code libraries in real-time, ensuring application security.
10. [TRU PULSE](https://www.capterra.ca/software/1079017/TRU-PULSE) — 5.0/5 (2 reviews) — Trusys AI is an enterprise AI assurance platform that enables Responsible AI through integrated risk management.
11. [Veracode](https://www.capterra.ca/software/1011010/veracode) — 4.0/5 (1 reviews) — Veracode is a cybersecurity tool that helps businesses identify \& remediate vulnerabilities across the software development lifecycle.
12. [Argon](https://www.capterra.ca/software/1013319/argon) — 5.0/5 (1 reviews) — Holistic Security For Your CI/CD Pipeline. Prevent software supply chain attacks and vulnerabilities, from commit to release.
13. [IDA Pro](https://www.capterra.ca/software/1015457/ida-pro) — 5.0/5 (1 reviews) — IDA Pro is a powerful disassembler and a versatile debugger.
14. [CodeSonar](https://www.capterra.ca/software/1017252/codesonar) — 4.0/5 (1 reviews) — CodeSonar is a static analysis tool that detects security vulnerabilities and quality issues in source code.
15. [Conviso](https://www.capterra.ca/software/1029255/conviso) — 4.0/5 (1 reviews) — SaaS-based tool that helps businesses secure application development pipelines via vulnerability scanning, automated testing, and more.
16. [Jit](https://www.capterra.ca/software/1061762/jit) — 5.0/5 (1 reviews) — Jit's platform is the easiest way to secure your code and cloud, providing full application and cloud security coverage in minutes.
17. [Bearer](https://www.capterra.ca/software/202800/bearer) (0 reviews) — Bearer enables security and engineering teams to implement data security policies and mitigate risks throughout the DevOps lifecycle.
18. [Mayhem](https://www.capterra.ca/software/210683/mayhem) (0 reviews) — Advanced fuzzing solution that combines guided fuzzing with symbolic execution, a patented technology from CMU.
19. [ThunderScan](https://www.capterra.ca/software/214854/thunderscan) (0 reviews) — Static Application Security Testing, WhiteBox Testing solution.
20. [Ostorlab](https://www.capterra.ca/software/1031004/ostorlab) (0 reviews) — Cloud-based vulnerability management platform to detect, monitor, and remediate risks across enterprises' external attack surfaces.
21. [Moderne](https://www.capterra.ca/software/1050736/moderne) (0 reviews) — Your code, always better. Automate source code remediation and migration, freeing your developers to deliver more value all the time.
22. [Akto](https://www.capterra.ca/software/1053906/Akto) (0 reviews) — Akto is an industry-leading solution for API discovery, API security posture management, sensitive data exposure, API security testing.
23. [Heeler](https://www.capterra.ca/software/1073091/Heeler) (0 reviews) — Real-time application security solution that assists businesses with runtime threat modeling and lifecycle management.
24. [Axivion](https://www.capterra.ca/software/1073138/Axivion-Static-Code-Analysis) (0 reviews) — Static code analysis tool that helps developers check standard compliance, security vulnerabilities, and code quality issues.
25. [Coco](https://www.capterra.ca/software/1073704/Coco) (0 reviews) — Coco is an embedded device code coverage analysis software that enables developers to assess how much of their code is being tested.
-----
Page: 2 / 3\
Prev: [Previous page](https://www.capterra.ca/directory/32818/static-application-security-testing-%28sast%29/software)\
Next: [Next page](https://www.capterra.ca/directory/32818/static-application-security-testing-%28sast%29/software?page=3)
## Related Categories
- [Source Code Management Software](https://www.capterra.ca/directory/31420/source-code-management/software)
- [Cloud Security Software](https://www.capterra.ca/directory/31344/cloud-security/software)
- [Vulnerability Management Software](https://www.capterra.ca/directory/31062/vulnerability-management/software)
- [DevOps Software](https://www.capterra.ca/directory/31120/devops/software)
- [Continuous Integration Software](https://www.capterra.ca/directory/31119/continuous-integration/software)
## Links
- [View on Capterra](https://www.capterra.ca/directory/32818/static-application-security-testing-%28sast%29/software)
- [All Categories](https://www.capterra.ca/directory)
-----
## Structured Data