<img height="1" width="1" style="display:none;" alt="" src="https://dc.ads.linkedin.com/collect/?pid=113894&amp;fmt=gif">

What it Does

Contrast CE is a free and full-strength application security platform that provides “always on” IAST, RASP, and SCA for Java applications and APIs (other languages coming soon). Contrast isn’t a scanner or firewall, instead it works from inside the running application -- like an AppDynamics or NewRelic for security.  This approach is easier, faster, and more accurate than legacy appsec tools.

Protect Against Attacks

Powerful Runtime Application Self-Protection (RASP) to prevent security bugs from being exploited in production

Assess Custom Code

Instant and accurate Interactive Application Security Testing (IAST) to find security bugs (i.e., vulnerabilities) in your custom code, including OWASP Top 10

Secure Open Source Software

Continuous inventory and software composition analysis (SCA) to ensure the security of open source software libraries and frameworks

Getting Started

  1. Sign up for a Free account
  2. Add the Contrast agent to your app
  3. Enjoy!

    Create Free Account

Key Integrations

  • Development
    CS CE Page V1 CS CE Page V1 (1) CS CE Page V1 (2) CS CE Page V1 (5) CS CE Page V1 (4) CS CE Page V1 (3) CS CE Page V1 (6)
  • Testing
    gradle jenkins maveen bamboo junit
  • QA
    jira threadfix bugzilla serena
  • Operations
    splunk arcsight log-rythem pager-duty even-vault
  • Supported Environments
    amazon pivotal azure docker CS CE Page V1 (7)

Why We Built It

The world faces a software security crisis where most organizations are unable to perform even basic application security. That puts everyone's personal financial, healthcare, and other data at risk. The world got to this point because development teams are not empowered to address security, and must depend on hard-to-find security experts, slow and inaccurate tools, and lengthy, complex review processes late in the SDLC. That leads to software security being viewed as a hindrance to software development cycles, and therefore deprioritized.

That is why we built Contrast Community Edition: a completely free, full-strength, DevSecOps solution that allows development, security and operations teams to deliver secure software on time.