About

Code Dx, Inc. is a provider of easy and affordable solutions to enable developers and security analysts find vulnerabilities in software. The core technology was partially funded by DHS Science & Technology to help secure the nation's software supply chain.

Code Dx is a software security tool that brings together a variety of code analysis tools that enable software developers and security analysts to locate and fix potential vulnerabilities in the software they write, in the languages they use, and at a low cost.

Over 90% of computer security incidents are due to weaknesses in software.  These weaknesses can expose vulnerabilities that put a business at risk for attacks such as SQL injection and cross-site scripting, leading to data loss, corruption, or even a host takeover.  the result can be an immeasurable loss of information and revenue, and can result in unauthorized access to sensitive data.  Commercial static application security testing (SAST) tools are typically costly, and while "free" open-source tools are effective, no single tool provides sufficient code coverage.

Code Dx is a cutting-edge suite of pre-configured, fully integrated multi-language, open-source SAST tools -- all controlled through a single user interface -- with reports presented in an easy to understand visual display.

Code Dx is available in a Standard Edition (SE) providing the power to start writing secure applications quickly, efficiently, and inexpensively.  Users simply load their source code into Code Dx and it will automatically select the appropriate tools for finding weaknesses.

It is also available in an Enterprise Edition to provide all of the powerful features of the Standard Edition -- and it expands coverage by working seamlessly with commercial testing tools.  At the same time, it allows for findings to be added manually.  The correlation and normalization of results from multiple tools produce a consolidated set of results, with greater coverage of potential vulnerabilities and a better assessment of overall software security risk.

Key Benefits:
Enhanced Vulnerability Coverage
-Detects more weaknesses than any single analysis tool
-Gain higher confidence in detecting weaknesses with multiple tools

Efficient and Prioritized Remediation
-Rapid triage of false positives
-Improved assessment of severity and criticality
-Source code linked to vulnerabilities

Enhanced Collaboration
-Security and development teams now have a shared tool to communicate findings and discuss remediation

SDLC Tool Support
-Support for integrated development environments (IDEs), continuous integration environment and version control

Visualization and Interaction
-More understandable data format
-Focus on the most important weaknesses determined by the user

Easy to Get Started
-Fast and easy installation -- up and running in 10 minutes
-Automatically runs bundled open source SAST tools
-Affordably priced for small-to-medium sized businesses

For more information, visit: www.codedx.com