Loading...

Popular Free Commercial Categories Tasks Blog

CyberSecTools

Explore the largest curated directory of cybersecurity tools and resources to enhance your security practices. Find the right solution for your domain.

Copyright © 2025 - All rights reserved

LINKS

LEGAL

Terms of services Privacy policy

Application Security for Appsec

Essential tools and best practices for securing software applications throughout their lifecycle. Task: Appsec
Explore 58 curated tools and resources

Search tools and resources by name, description, or purpose... (⌘+K)

All

Free

Commercial

Task

Home
Categories
Application Security
Appsec

RELATED TASKS

access-management (1)ai (10)analytics (1)androguard (1)android-security (1)antivirus (1)apache (3)api (3)api-access (1)api-discovery (1)

PINNED

ImmuniWeb® Discovery
ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.
1
Commercial
Attack Surface Management
Attack Surface Management
Attack Surface
Continuous Monitoring
Dark Web Monitoring
Cloud Security
Vulnerability Management
Compliance
Third Party Risk
Threat Intelligence
Security Monitoring
ImmuniWeb® Discovery
ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.
1
Commercial
Attack Surface Management
Attack Surface Management
Attack Surface
Continuous Monitoring
+7
InfoSecHired
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.
2
Commercial
Resources
Resources
Cybersecurity
Education
Training
Security Professionals
InfoSecHired
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.
2
Commercial
Resources
Resources
Cybersecurity
Education
+2
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
1
Commercial
Application Security
Application Security
Dependency Scanning
Vulnerability Management
Software Supply Chain
Open Source
Sbom
Security Scanning
Devsecops
Vulnerability Detection
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
1
Commercial
Application Security
Application Security
Dependency Scanning
Vulnerability Management
+6
Check Point CloudGuard WAF
A cloud-native web application and API security solution that uses contextual AI to protect against known and zero-day threats without signature-based detection.
1
Commercial
Application Security
Web App Security
Api Security
Cloud Security
Waf
Ddos
Bot Detection
Machine Learning
Api Discovery
Threat Prevention
Zero Day
Check Point CloudGuard WAF
A cloud-native web application and API security solution that uses contextual AI to protect against known and zero-day threats without signature-based detection.
1
Commercial
Application Security
Web App Security
Api Security
Cloud Security
+7
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
0
Commercial
Cloud Security
Cloud Security
Cloud Native
Vulnerability Management
Compliance
Container Security
Cloud Compliance
Api Security
Kubernetes Security
Security Monitoring
Security Automation
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
0
Commercial
Cloud Security
Cloud Security
Cloud Native
Vulnerability Management
+7
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.
1
Commercial
Application Security
Application Security
Github
Code Security
Static Analysis
Security Automation
Devsecops
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.
1
Commercial
Application Security
Application Security
Github
Code Security
+3

LATEST ADDITIONS

ArmorCode Platform
A centralized application security posture management platform that integrates security tools, automates workflows, and provides visibility into application security risks.
0
Commercial
Application Security
Appsec
Vulnerability Management
Security Automation
Devsecops
Security Monitoring
Compliance
Risk Management
Security Assessment
Security Platform
Security Posture
ArmorCode Platform
A centralized application security posture management platform that integrates security tools, automates workflows, and provides visibility into application security risks.
0
Commercial
Application Security
Appsec
Vulnerability Management
Security Automation
+7
Conviso Platform
An Application Security Posture Management platform that helps organizations integrate security throughout the software development lifecycle with a focus on vulnerability management and secure coding practices.
0
Commercial
Application Security
Application Security
Appsec
Vulnerability Management
Devsecops
Security Automation
Code Security
Security Testing
Cloud Security
Compliance
Security Posture
Conviso Platform
An Application Security Posture Management platform that helps organizations integrate security throughout the software development lifecycle with a focus on vulnerability management and secure coding practices.
0
Commercial
Application Security
Application Security
Appsec
Vulnerability Management
+7
Seezo
Security design review automation tool that scans design documents and provides security requirements to development teams during the planning phase.
0
Commercial
Application Security
Appsec
Security Automation
Devsecops
Compliance
Seezo
Security design review automation tool that scans design documents and provides security requirements to development teams during the planning phase.
0
Commercial
Application Security
Appsec
Security Automation
Devsecops
+1
Levo
An API security platform that discovers, documents, and tests APIs throughout the development lifecycle while maintaining a centralized catalog of all API assets.
0
Commercial
Application Security
Api Security
Appsec
Devsecops
Security Testing
Ci Cd
Levo
An API security platform that discovers, documents, and tests APIs throughout the development lifecycle while maintaining a centralized catalog of all API assets.
0
Commercial
Application Security
Api Security
Appsec
Devsecops
+2
Akamai API Security
API Security is a comprehensive solution that provides continuous discovery, vulnerability assessment, threat detection, compliance monitoring, dynamic testing, and remediation capabilities to protect APIs against various threats and vulnerabilities.
0
Commercial
Application Security
Api Security
Appsec
Application Security
Vulnerability Management
Compliance
Security Testing
Security Automation
Devsecops
Akamai API Security
API Security is a comprehensive solution that provides continuous discovery, vulnerability assessment, threat detection, compliance monitoring, dynamic testing, and remediation capabilities to protect APIs against various threats and vulnerabilities.
0
Commercial
Application Security
Api Security
Appsec
Application Security
+5
Snyk Code
Snyk Code is a real-time SAST tool that provides secure code analysis and actionable remediation advice to prevent code delays and ensure secure development.
0
Commercial
Application Security
Api Metadata
Appsec
Apparmor
Application Security
Aws
Aws Config
Aws Secrets
Aws Security
Snyk Code
Snyk Code is a real-time SAST tool that provides secure code analysis and actionable remediation advice to prevent code delays and ensure secure development.
0
Commercial
Application Security
Api Metadata
Appsec
Apparmor
+5
Contrast Code Security Platform
The Contrast Runtime Security Platform is a suite of application security tools that integrates security into the software development lifecycle and production environments, including IAST, SAST, RASP, and SCA capabilities.
0
Commercial
Application Security
Application Security
Appsec
Sast
Contrast Code Security Platform
The Contrast Runtime Security Platform is a suite of application security tools that integrates security into the software development lifecycle and production environments, including IAST, SAST, RASP, and SCA capabilities.
0
Commercial
Application Security
Application Security
Appsec
Sast
Checkmarx SAST
Checkmarx One SAST is a static application security testing tool that combines speed and security to improve developer experience.
0
Commercial
Application Security
Api Metadata
Appsec
Appsecurity
Application Security
Security Testing
Sast
Checkmarx SAST
Checkmarx One SAST is a static application security testing tool that combines speed and security to improve developer experience.
0
Commercial
Application Security
Api Metadata
Appsec
Appsecurity
+3
Veracode
Veracode is an intelligent software security platform that helps developers and security teams secure code, find and fix flaws, and automate remediation.
0
Commercial
Application Security
Appsec
App Security
Security Testing
Vulnerability Scanning
Code Security
Veracode
Veracode is an intelligent software security platform that helps developers and security teams secure code, find and fix flaws, and automate remediation.
0
Commercial
Application Security
Appsec
App Security
Security Testing
+2
Node.js Goof
Goof is a vulnerable Node.js demo application that includes a series of vulnerabilities and exploits
0
Free
Application Security
Appsec
Nodejs
Vulnerable App
Docker
Open Redirect
Code Injection
Xss
Local File Inclusion
Directory Traversal
Command Execution
Node.js Goof
Goof is a vulnerable Node.js demo application that includes a series of vulnerabilities and exploits
0
Free
Application Security
Appsec
Nodejs
Vulnerable App
+7
BurpJSLinkFinder
A Burp extension for scanning JavaScript files for endpoint links
0
Free
Application Security
Appsec
Javascript
Security Audit
Vulnerability Detection
BurpJSLinkFinder
A Burp extension for scanning JavaScript files for endpoint links
0
Free
Application Security
Appsec
Javascript
Security Audit
+1
jaeles
Automated web application testing tool
1
Free
Application Security
Appsec
Web Application Security
Vulnerability Scanning
Security Testing
jaeles
Automated web application testing tool
1
Free
Application Security
Appsec
Web Application Security
Vulnerability Scanning
+1
Param Miner
A tool for identifying and extracting parameters from HTTP requests and responses
0
Free
Application Security
Appsec
Http
Security Testing
Vulnerability Assessment
Param Miner
A tool for identifying and extracting parameters from HTTP requests and responses
0
Free
Application Security
Appsec
Http
Security Testing
+1
Oralyzer
Open Redirection Analyzer
0
Free
Application Security
Appsec
Vulnerability Scanning
Web App Security
Security Research
Devsecops
Oralyzer
Open Redirection Analyzer
0
Free
Application Security
Appsec
Vulnerability Scanning
Web App Security
+2

1
2
3
5
Next