Black Duck Hub
14-Day Trial

Discover Open Source in
Your Code Base

Open Source Code Scanning

In today's "copy and paste" world, development organizations are increasingly relying on software mashups and code reuse to create things faster, better, and cheaper. While the use and reuse of open source and third-party code enables rapid development, it also means it is more important than ever to have visibility and control over the components in your code base.

OS Audit StatsCompanies of all sizes should be able to answer the following questions:

  • What open source components
    are present in your code base?
  • What open source licenses and known security
    vulnerabilities does your code contain?
  • Where is open source code being used
    across your application portfolio?

Quick and easy access to these insights empowers organizations to optimize their use of open source, ensure compliance, discover security vulnerabilities, identify bugs, and correct poor code management practices.

Black Duck offers a range of code scanning and code
matching products and services that allow you to:


Gain visibility into
your code base


Determine code origin


Track what open source
code is used within
your applications


Identify open source
licenses and
compliance issues

Black Duck is really impressive in the way it finds snippets which would otherwise never be discovered.
– Rubens Sarracino
Systems Architect,
Magneti Marelli
Black Duck's holistic source code review flagged items we needed to address and provided practical solutions. The output of a Black Duck Audit includes a detailed analysis, follow-up, and action items, in addition to recommended solutions.
– Danielle Sheer
VP, General Counsel & Corporate Secretary

Black Duck Solutions

The Black Duck Hub helps security and development teams identify and remediate open source vulnerabilities across application portfolios. The Hub’s lightweight, open source scanning, tracking, and monitoring solution:

  • Identifies open source throughout your code base
  • Automatically maps known vulnerabilities to the open source you have in use
  • Triages and tracks remediation
  • Continuously monitors for newly identified vulnerabilities

As part of Black Duck's leading OSS Logistics solution, Black Duck® Protex™ helps manage open source compliance and integrates seamlessly with existing development tools to automatically scan, discover and identify software origins. Together with the  Black Duck® KnowledgeBase™, the industry’s most comprehensive database of open source project information and other downloadable software, Protex provides the industry’s most sophisticated and accurate code scanning solution. 

Black Duck Services

Black Duck's software code audit services for internal assessments and M&A due diligence provide all the benefits of our pioneering technology as tailored open source scanning services. Learn more about our various leading open source audit services:

Open Source Audit Code Quality Audit Open Source Risk Assessment Encryption Audit


Learn Open Source Scanning Best Practices


Top Reasons To Audit Your Code

Read the Blog


The New Due Diligence:
Assessing and Protecting Software Asset Value in Mergers, Acquisitions, and Financing Rounds

Get the Paper


Open Source Software Compliance and Security

Watch the Webinar

Latest Tweets

Black Duck Software (1 hour ago)
A love for technology leads to Linux and open source: Ashutosh Narayan via @opensourceway #linux #opensource
Black Duck Software (4 hours ago)
IoT data security vulnerable as connected devices proliferate via TechTarget #IoT #security #vulnerabilities
Black Duck Software (5 hours ago)
Open Source Initiative celebrates anniversary, history of open source via @sdtimes Times #opensource #history
Black Duck Software (19 hours ago)
Tried these? 6 #opensource alternatives to Salesforce for customer relationship management | via @opensourceway #CRM
Black Duck Software (20 hours ago)
RT @eWEEKNews: 10 Mistakes to Avoid to Make #OpenSource More Secure via @Black_Duck_Sw

Black Duck Software
800 District Ave.
Burlington, MA 01803

Contact Us

Legal Notices | Privacy Policy | Site map
Open Source Delivers | Open HUB