📡
Daniel Serbu's CyberSecurity Blog
  • 🔧Welcome
  • 💾Writeups
    • PWNEDLABS Identify the AWS Account ID from a Public S3 Bucket
    • TryHackMe Anthem
    • TryHackMe AttacktiveDirectory
    • TryHackMe Vulnnet: Active
    • TryHackMe Ice
    • TryHackMe Blueprint
    • TryHackMe VulnNet: Roasted
    • TryHackMe Post-Exploitation Basics
    • TryHackMe Lookback
    • MobileHackingLab Food Store
    • MobileHackingLab Notekeeper
    • MobileHackingLab IOT Connect
  • DevSecOps
    • Container Security
      • Kubernetes
    • Infrastructure as Code - IaC
    • Dynamic Application Security Testing - DAST
    • Static Application Security Testing - SAST
    • Software Bill of Materials - SBOM
    • Software Composition Analysis - SCA
    • Source Code Audit
      • PHP Code Review
      • Secure By Design Libraries
    • IDE Plugins for Developers
    • Security Hardening
    • Secure Coding
    • Cheatsheets
    • Mobile
    • Cloud Security
  • OSINT
Powered by GitBook
On this page
  • Visual Studio Code
  • PyCharm
  1. DevSecOps

IDE Plugins for Developers

PreviousSecure By Design LibrariesNextSecurity Hardening

Last updated 11 months ago

Visual Studio Code

Universal Security

  • - An IDE extension to detect and fix quality and security issues as you code.

  • - Scans your code and dependencies for vulnerabilities and provides fixes.

  • - A fast, syntax-aware code analysis tool for finding bugs and enforcing code standards.

  • - Integrates Veracode security scans directly into Visual Studio Code.

  • - A security analysis tool that scans source code for vulnerabilities.

  • - A security linting extension that helps to detect security vulnerabilities in real-time.

  • - A plugin for deep static analysis of code to find critical security vulnerabilities.

  • - An extension for taking and managing security notes.

  • - Ensures code quality and adherence to coding standards.

Infrastructure as Code (IaC) Security

  • - Static analysis for Terraform, Kubernetes, Docker, and CloudFormation to detect misconfigurations.

  • - A comprehensive vulnerability scanner for containers and other artifacts.

  • - Detects security vulnerabilities, compliance issues, and infrastructure misconfigurations.

  • - Ensures security and compliance in infrastructure as code.

PHP Security

C/C++ Security

PyCharm

- Focuses on finding bugs in PHP applications without requiring runtime execution.

- A static analysis tool for finding errors in PHP applications.

- A static analyzer for PHP that helps to detect potential bugs.

- Analyzes PHP source code for potential problems such as bugs, suboptimal code, and overly complex expressions.

- A comprehensive static analysis and testing tool for C/C++ codebases.

- Identifies security vulnerabilities and license compliance issues in your open source dependencies. Provides detailed remediation advice and integrates seamlessly within PyCharm.

- A fast, syntax-aware code analysis tool for finding bugs and enforcing code standards.

- A plugin to identify and fix security vulnerabilities in Python projects, helping maintain secure code practices.

- A security-focused plugin to identify vulnerabilities and ensure secure coding practices in PyCharm.

SonarLint
Snyk Vulnerability Scanner
Semgrep
Veracode
Checkmarx
DevSkim
CodeSonar
Security Notes
Trunk
Checkov
Trivy
KICS
Tenable
PHPStan
Psalm
Phan
PHP Mess Detector
Parasoft C/C++test
Snyk
Semgrep
Python Security
PyCharm Security Plugin