
From start to finish in minutes
Frictionless and seamless signup process with GitHub or Google Account. – from zero to secure in less than 5 minutes.
Fastest & most accurate scanner
Delivers up to 10X faster scan rates. Recognized as the fastest & most accurate Java and JavaScript (SAST) scanner in the market.
Immediate & actionable results
Find 70% more critical vulnerabilities, and actionable results with 6X more true positives in seconds.
Scan, secure and ship
your code in minutes for free
Get started in just 3 steps
Install
Open terminal and run the following command
Authenticate
Authenticate using your existing GitHub or Google account
contrast auth
Analyze
Start scanning for vulnerabilities
Run SCA audit to scan for vulnerable libraries with the following command.
contrast audit
GitHub action is available to automate SCA as part of your pipeline.
Supported languages:
Scan up to 50 projects per month
Run the following command to scan your source code (SAST). Contrast will search for .jar, .war, .js, .EXE or .zip files.
contrast scan
GitHub action is available to automate Scan as part of your pipeline.
Supported languages & frameworks:
Scan up to 200 applications per month
Ensure you have the correct AWS policies enabled first then run the following command to scan your serverless AWS Lambda functions.
contrast lambda --function-name
Supported languages:
Unlimited tests, no concurrency of scanning
Blast off with CodeSec for free
Advance your security knowledge 🎓
with Contrast Secure Code Learning Hub 😺
