SOOS

Modern AppSec

.NET Vulnerability Scanner

Soos provides a deep dependency tree scan for .NET open source package vulnerabilities.

SCAN YOUR CODE
AND TRY FOR FREE!*

Unlimited Projects. Unlimited Users. Unlimited Scans.
No credit card is required.

Sign up now
lock & key

Find. Prioritize. Fix. Monitor.

.NET open source intelligence
and open source license
management for all your teams.

SOOS seamlessly integrates with your code repository, CI/CD pipeline, and workflow management tools. Setup is fast and easy; you can start real-time scanning for .NET open-source vulnerabilities within minutes. Monitor and fix vulnerabilities with simple integration into your CI/CD workflow.

laptop
tablet

SOOS supports vulnerability analysis in .NET projects created with the NuGet package manager.

SOOS doesn’t look at your source code–we process and analyze the project resources and dependencies in your manifest files. We support files in the following formats:

  • packages.lock.json (lock file)
  • paket.lock (lock file)
  • packages.config
  • csproj
  • project.assets.json
  • paket.dependencies

Integrations

Ruby Logo
.NET Logo
JavaScript Logo
PHP Logo
Gradle Logo
Rust Logo
Dart Logo
Homebrew Logo
Elixir Logo
Erlang Logo

We support major programming languages.

Java LogoJava
Python LogoPython
Ruby LogoRuby
.NET Logo.NET
JavaScript LogoJavaScript
PHP LogoPHP
Gradle LogoGradle
Rust LogoRust
Dart LogoDart
Homebrew LogoHomebrew
Elixir LogoElixir
Erlang LogoErlang

SOOS builds a deep dependency tree from your NuGet manifest files and checks your resources and dependencies against known vulnerabilities as well as security advisories in GitHub. This means you won’t miss any critical new warnings or issues about the libraries/packages that your project relies on. Is your product using other open source libraries or packages? SOOS also supports vulnerability analysis for: Node/NPM, Ruby, Java/MAVEN, and Python.

Don’t ignore your open source code any longer

Sign up now