Application Security

181 tools and resources

Tags in this Category
analyticsapp-securityapparmorappsecappsec-testingautomationawsbinary-securitybrowser-securitybrute-forceciscloud-compliancecloud-nativecloud-securitycomplianceconfiguration-managementcontainer-securitycontainerizationcontent-security-policycspctfdevsecopsdockerdvwaeducationalendpoint-protectionexecutable-analysisexploit-detectionexpressfile-analysisfirewalllinux-securitymalware-analysismalware-detectionmiddlewaremobile-securitymysqlnistnodejsnpmowasppackage-managementpenetration-testingpentestphpsastsecuritysecurity-auditsecurity-testingstatic-analysisthreat-detectionthreat-intelligencetiming-attackvulnerability-scanningvulnerable-appvulnerable-appsweb-app-securityweb-application-securityweb-securitywebsocketwordpressxssyarnzero-trust

FEATURED

Feature Your Cybersecurity Product

Showcase your innovative cybersecurity solution to our dedicated audience of security professionals.

Boost Your Visibility

NEW

Stowaway Logo
Stowaway
0.0

A static analysis tool for Android apps that detects malware and other malicious code

Application Security
Free
appsecbinary-securitymalware-detectionstatic-analysis
0l4bs Cross-site scripting labs Logo
0l4bs Cross-site scripting labs
0.0

Cross-site scripting labs for web application security enthusiasts

Application Security
Free
xssctfweb-securityvulnerable-app
OWASP Damn Vulnerable Web Sockets (DVWS) Logo
OWASP Damn Vulnerable Web Sockets (DVWS)
0.0

OWASP Damn Vulnerable Web Sockets (DVWS) is a vulnerable web application for client-server communication with numerous vulnerabilities.

Application Security
Free
appsecweb-app-securitywebsocketdvwaphpmysql
XSS (Cross Site Scripting) Cheatsheet Logo
XSS (Cross Site Scripting) Cheatsheet
0.0

A comprehensive cheatsheet for XSS filter evasion techniques.

Application Security
Free
xss
ASH - The Automated Security Helper Logo
ASH - The Automated Security Helper
0.0

A tool to conduct preliminary security checks in code, infrastructure, or IAM configurations using various open-source tools.

Application Security
Free
appsecapparmorautomationawscloud-securitycomplianceconfiguration-managementcontainer-securitydevsecops
NodeJsScan Logo
NodeJsScan
0.0

Static security code scanner (SAST) for Node.js applications with Docker support and integrations with Slack.

Application Security
Free
nodejssaststatic-analysissecurity-testingdevsecops
CSP Auditor Logo
CSP Auditor
0.0

A plugin for viewing, detecting weak configurations, and generating Content Security Policy headers.

Application Security
Free
cspcontent-security-policysecurity-audit
Caido Logo
Caido
0.0

A lightweight web security auditing toolkit that simplifies security tasks and enhances productivity.

Application Security
Free
appsecautomationsecurity-testingweb-security
Alert(1) to Win Logo
Alert(1) to Win
0.0

A free online tool that scans and fixes common security issues in WordPress websites.

Application Security
Free
wordpresssecurity-auditvulnerability-scanningweb-app-securitysecurity-testingcompliance
flAWS Challenge Logo
flAWS Challenge
0.0

A series of levels teaching about common mistakes and gotchas when using Amazon Web Services (AWS).

Application Security
Free
awssecuritycloud-securitycloud-compliancecloud-native
ZAP The Zed Attack Proxy Logo
ZAP The Zed Attack Proxy
0.0

A popular free security tool for automatically finding security vulnerabilities in web applications

Application Security
Free
appsecapp-securitypentestpenetration-testingweb-app-securityweb-security
Lockfile Linting Logo
Lockfile Linting
0.0

Lint lockfiles for improved security and trust policies.

Application Security
Free
npmyarnsecuritypackage-management
ThreatLocker Platform Logo
ThreatLocker Platform
0.0

ThreatLocker is an enterprise cybersecurity platform that provides comprehensive endpoint protection and zero-trust security to prevent ransomware, viruses, and other malicious software from running on endpoints.

Application Security
Free
endpoint-protectionthreat-detectionzero-trustcompliancenistcis
express-brute Logo
express-brute
0.0

A brute-force protection middleware for express routes that rate-limits incoming requests.

Application Security
Free
expressmiddlewarebrute-forcesecurity
Firejail Logo
Firejail
0.0

Firejail is a SUID sandbox program for restricting the running environment of untrusted applications on Linux.

Application Security
Free
apparmorbinary-securitycontainerizationfirewalllinux-security
CAPA Logo
CAPA
0.0

A tool for detecting capabilities in executable files, providing insights into a program's behavior and potential malicious activities.

Application Security
Free
binary-securityfile-analysisexecutable-analysismalware-analysisthreat-intelligence
Damn Small Vulnerable Web Logo
Damn Small Vulnerable Web
0.0

Deliberately vulnerable web application for educational purposes.

Application Security
Free
appsecappsec-testingvulnerable-appeducationalweb-app-securityweb-application-security
It's All About Time Logo
It's All About Time
0.0

This article discusses the different types of remote timing attacks and provides defense strategies against them.

Application Security
Free
timing-attack
AMAaaS Agent Logo
AMAaaS Agent
0.0

Enhance your Android experience with the AMAaaS Agent APK for better performance and improved user experience.

Application Security
Free
mobile-securityanalytics
WackoPicko Vulnerable Website Logo
WackoPicko Vulnerable Website
0.0

WackoPicko is a vulnerable website with known vulnerabilities, now available as a Docker image and included in the OWASP Broken Web Applications Project.

Application Security
Free
appsecvulnerable-appsweb-app-securityowaspdockerpentest
jsunpack-n Logo
jsunpack-n
0.0

Emulates browser functionality to detect exploits targeting browser vulnerabilities.

Application Security
Free
browser-securityexploit-detectionfile-analysis
67
8
9