Ounce Labs (an IBM company) is a Waltham, Massachusetts-based security software vendor. The company was founded in 2002 and provides a product that analyzes software source code to identify security vulnerabilities in source code. The product is intended to help developers, quality assurance and security analysts locate and remediate software security vulnerabilities. The scans look for a range of vulnerabilities that leave an application open to attack.  The company's customers include GMAC, Lockheed Martin, and the U.S. Navy.
On July 28, 2009 IBM announced it acquired Ounce Labs for an undisclosed sum.