For Security & Risk Professionals

The Forrester Wave™: Static Application Security Testing, Q4 2017

The 10 Vendors That Matter Most And How They Stack Up

December 12, 2017

By Amy DeMartine
with Christopher McClean,
Trevor Lyness,
Andrew Reese

Why Read This Report

In our 29-criteria evaluation of the static application security testing (SAST) market, we identified the 10 most significant vendors — CAST, CA Veracode, Checkmarx, IBM, Micro Focus, Parasoft, Rogue Wave Software, SiteLock, SonarSource, and Synopsys — and researched, analyzed, and scored them. This report shows how each measures up and helps security professionals make the right choice.

Get Access

Already a Client?

Become a Forrester Client

Customers are the new market-makers, reshaping industries and changing how businesses compete and win. Success depends on how well and how fast you respond. Forrester Research gives you insights and frameworks aligned to your role to shorten the time between a great idea and a great outcome, helping your teams win in the age of the customer. Contact us to learn more.

Purchase Report

This report is available for individual purchase ($2495 USD).

Purchase

SAST Remains Critical To Eliminate Proprietary Software Vulnerabilities
Static Application Security Testing Evaluation Overview
Vendor Profiles
Supplemental Material
Related Research Documents

Recommended Research

Show, Don't Tell, Your Developers How To Write Secure Code
April 19, 2019 | Amy DeMartine
The Forrester Wave™: Software Composition Analysis, Q2 2019
April 8, 2019 | Amy DeMartine
Top Recommendations For Your Security Program, 2019
March 25, 2019 | Paul McKay

Save or Share this Report

Send Link

The Forrester Wave™: Static Application Security Testing, Q4 2017

The 10 Vendors That Matter Most And How They Stack Up

Authors

Why Read This Report

Tags

Get Access

Already a Client?

Become a Forrester Client

Purchase Report

Table of Contents

Recommended Research

Follow Forrester