With the increasing rate of security breaches, today’s applications need to be built more securely at the code level, and that code needs to be tested regularly. The Software Assurance Marketplace was developed to make it easier to consistently test the quality and security of applications and bring a transformative change to the software assurance landscape by reducing the number of weaknesses deployed in software.
There are two ways to use the SWAMP: the ready-to-use cloud computing platform at mir-swamp.org or the SWAMP-in-a-Box (SiB) open-source distribution that is downloadable from GitHub. Both are available at no-cost and include an array of open-source and commercial software security testing tools as well as a comprehensive results viewer to simplify vulnerability remediation. Each also supports an API, allowing SWAMP integration into existing software development workflows.
Check out SWAMP and SiB here: https://continuousassurance.org/