Black Duck Software provides a comprehensive open source management platform to identify, secure and govern OSS in your code. The Black Duck® KnowledgeBase™ is the industry’s most comprehensive database of open source project information. It includes over ten years’ worth of data, more than 1 million software projects from more than 8,500 sites, and detailed data for more than 2,400 unique licenses, including vulnerabilities, full license text and dozens of encoded attributes and obligations for each license. New open source project versions and metadata are continually added in to the KnowledgeBase.

Contact us for a free trial

BlackDuck Software Products

Black Duck Protex

scan, identify, and inventory open source

Black Duck® Protex™ is the industry’s leading solution for managing open source compliance. Protex integrates with existing development tools to automatically scan, identify, and inventory (BOM) open source software, allowing you to understand license obligations, conflicts and risks. This enables you to mitigate these risks by enforcing license compliance and corporate policy requirements.

BlackDuck HUB

Identify, Remediate and control OSS security vulnerabilities

The Black Duck Hub helps security and development teams identify and mitigate open source related risks across application portfolios. The Hub’s lightweight scanning, tracking, and monitoring solution:

  • Identifies open source throughout your code base
  • Automatically maps known vulnerabilities to the open source you have in use
  • Triages and tracks remediation
  • Continuously monitors for newly identified vulnerabilities

BlackDuck Code Center

Automate your OSS policy and procedures


Using open source, along with third-party and custom code, speeds application development, but if not managed properly, it can also introduce significant legal, operational and security risks. With Black Duck Code Center, you can leverage the power of open source in your software projects and empower your team collaboration while automating key governance processes:

  • Find and select open source software
  • Request and get approval for code use
  • Inventory software for reuse and standardization
  • Access license, community activity and vulnerability information for any open source component