[rev_slider_vc alias=”rt-19-sample”]

Get an Account

Click here to register and apply for project ownership. Project owners can upload software packages written in Java source, Java bytecode, C/C++, or Python and select one or more tools to schedule an assessment run.

Tool Capabilities

Software assurance best practices require the use of multiple testing tools to create a comprehensive view of an application’s weaknesses. See what National Institute of Standards and Technology (NIST) has to say.

SWAMP Award

Video from the ISE® North America Project Awards ceremony. The SWAMP won Project of the Year in the Academic/Public Category.

SWAMP Video Playlist

OWASP Montreal – February 3rd – Getting to Know the Software Assurance Marketplace (SWAMP). Presented by Pat Beyer.

SWAMP Video Tour

This series of short videos walks you through creating an account and performing basic functions in the SWAMP.

About SWAMP

With the increasing rate of security breaches, it is clear that conventional network security solutions are no longer able to defend our privacy, corporate data, and critical banking information. Today’s applications need to be built more securely at the code level, and that code needs to be tested regularly.

  1. 1
    No-cost, state-of-the-art, secure facility

    That offers 700 cores, 5 TB of RAM, and 104 TB of HDD through advanced networking capabilities to meet the continuous assurance needs of multiple software and tool development projects

  2. 2
    Hosting a wide library of both commercial and open-source testing tools

    To enable software projects of any size to be comprehensively and quickly tested for vulnerabilities. To further automate software security procedures, the SWAMP provides access to an integrated results viewer that compiles and prioritizes all of the test results into a central platform to ensure that the most critical vulnerabilities are remediated quickly.

  3. 3
    Easily visualize the detected security weaknesses

    From ALL of the tools used, developers can more easily obtain acceptable software assurance levels while infusing security best practices into the software development life cycle (SDLC).

  4. 4
    The SWAMP hosts over 500 open-source software packages,

    Offering the industry’s first testing laboratory that enables tool developers to enhance both the precision and scope of their tools. 287 of these software packages come from the National Institute for Standards and Technology (NIST) Juliet Test Suite, which is a collection of over 81,000 synthetic C/C++ and Java public domain programs with known flaws.

Latest News

Upcoming Events

The SWAMP team will be hosting or at the following events. If you’re in town, come say hello.

  • 2015 RSA Conference in San Francisco, CA this April 20-23. The SWAMP will be part of the DHS booth.
  • The SWAMP and CodeDx are teaming up for the STAR EAST conference in Orlando, FL, May 6-7.
  • AppSec EU 2015 in Amsterdam, the Netherlands, May 19-22!
  • The SWAMP will be sponsoring OSCON 2015 in Portland, OR from July 20-24.

SWAMP Partners