Codean is a code review platform for security experts that provides a collaborative application security review environment for teams. Our cutting-edge platform empowers security experts with a single, comprehensive toolset designed to effortlessly identify and report vulnerabilities, annotate source code, and efficiently record and share security knowledge across their team.
Take a structured approach to code analysis using codemarks. Codemarks are code annotations that help structure the review process, saving time and frustration, and helping you understand complex codebases.
Why should you use a tool meant for programming when you are reviewing code? We take the most useful parts of an IDE and add features aiding code review, including graph-based navigation, codemarks, and various algorithmic layers to help you grasp the code quickly.
Effortlessly label the review state of every file in the source tree to track whether your analysis is in progress, completed, or the file is not security relevant. Each team member will have full visibility on everyone’s progress.
Stay informed about your teammates’ progress through instant sharing of codemarks and review state. Soon, this feature will be extended to include the ability to exchange ideas by following or by asking your teammates to follow your progress.
Gain direct access to your client repository to review one or more versions of their source code, and report your findings directly in their issue tracker.
Everyone’s reviewing efforts are captured within the codebase in a heatmap fashion at the granularity of a single line of code. Realtime.
Say goodbye to communication overhead, as our technology enables security teams to effortlessly monitor progress and seamlessly share information and reports with clients.
Interactively taint data in the source code to easily trace where it flows across the program without executing it.
Just click on a specific section of the code to discover the constraints that must be met to reach it.
A single tool to review source code, to annotate and share knowledge within your team and with software developers, and to use all the power of automation in clever symbiosis with the user.
Codean’s automation helps users perform tasks more efficiently and thoroughly, reducing their effort on several (tedious) tasks. Inefficiencies such as version management, note keeping, and progress and final reports (both management and technical), are now a thing of the past!
Embed your thought process in the code and forget traditional knowledge-sharing via notes, documents, and reports. Share their findings realtime and effortlessly, fostering a more engaging and accelerated learning experience.
Intuitive and security-minded code navigation and features (like taint or reachability analysis) enables faster understanding and analysis of complex software.
Break free from traditional note-taking. Capture, annotate, store, and instantly share security knowledge.
Exchange sensitive data, like (multiple versions of) source code, or information on discovered vulnerabilities by connecting Codean to developers tools. No more writing of (or waiting until completion of) final reports: communicate your findings as soon as discovered directly on the issue tracker of your client. Chat with them, and take advantage of personalized dashboards to share progress reports effortlessly.
With Codean, everyone’s progress is instantly available to the entire team: what was reviewed, what was learned, what was found. Hello codemarks, flows, realtime collaboration, dashboards! Goodbye inefficiencies, redundant work, progress meetings. Welcome, increased productivity.
Codemarks and flows can be linked to findings to provide precise descriptions of issues and where to find them. Your client will benefit from this too! Once sent to their issue tracker, they can access the vulnerable code in their platform in one click, and modify it right away according to your suggestions, or ask you related questions. No more difficult-to-read reports, e-mail exchanges, or time spent on providing context: communication just got more pragmatic!
Codean is a code review platform for security experts that provides a collaborative environment for teams to review code while enjoying the support and efficiency offered by a set of features that symbiotically work with human experts.
Because it enhances performance, enhances engagement in review work, and improves collaboration with both your team and clients.
Codean allows security experts to connect to repositories and issue trackers, becoming "part" of the development team and their workflow by seamlessly reviewing changed code and communicating issues. The platform offers various features that enable security experts to work at high efficiency and to share knowledge instantly and effectively with their colleagues.
Codean takes security seriously and employs industry-standard measures to protect assets such as customers’ code. Shall your customer require even stricter measures, Codean offers an on-premise solution as well.
Yes, Codean is a cloud-based platform. It is hosted on the web, which means you can access your projects from anywhere with an internet connection and a browser. However, if the nature of your work requires you to work offline, you can opt for our on-premise solution.
Yes, Codean can input information from certain static analysis tools and scanners. Contact us to share your needs.
Codean offers integrations (pulling code and submitting issues) with popular development platforms including Github, Atlassian and Jira. For your clients, your review activity will seamlessly integrate into their existing workflow: issues land in their pre-existing issue tracker, and code is automatically pulled.
Codean can be used both by individual security experts and teams. Collaboration features are only a small set of the numerous features intended to support code review efforts.