An acknowledged leader in software testing moves into the security arena with a white- and black-box testing tool upgraded to scan potential security flaws from inside Microsoft Visual Studio.

It led the way in the open source space by creating the Java Open Review Project, a free Web site to help developers detect security vulnerabilities.

Static code analysis, now brought to the individual developer’s desktop, sends a clear message that application security is no longer someone else’s problem.

Ounce Labs
Strong visualization and reporting capabilities mean that Ounce Labs’ security scanner won’t confuse the developers it was meant to help.

SPI Dynamics
It turned up the AMP and integrated it with its testing tool to manage security risks across the application life cycle. It took on Web applications too.

It continued to bolster its flagship AppScan black-box testing tool by adding the ability to test Web services code for vulnerabilities.

Continue to next category: SOA 2007