Application Security for Security Audit

Essential tools and best practices for securing software applications throughout their lifecycle. Task: Security AuditExplore 16 curated tools and resources

Search by name, description, or purpose... (⌘+K)

PINNED

Promoted • 4 tools

Mandos

Commercial

Consulting

Checkmarx SCA

Commercial

Application Security

Orca Security

Commercial

Cloud Security

DryRun

Commercial

Application Security

Want your tool featured here?

Get maximum visibility with pinned placement

LATEST ADDITIONS

BurpJSLinkFinder
A Burp extension for scanning JavaScript files for endpoint links
0
Free
Application Security
Appsec
Javascript
Security Audit
Vulnerability Detection
BurpJSLinkFinder
A Burp extension for scanning JavaScript files for endpoint links
0
Free
Application Security
Appsec
Javascript
Security Audit
+1
XSSwagger
A simple Swagger-ui scanner that detects old versions vulnerable to various XSS attacks
0
Free
Application Security
Xss
Vulnerability Scanning
Security Audit
Devsecops
Security Testing
XSSwagger
A simple Swagger-ui scanner that detects old versions vulnerable to various XSS attacks
0
Free
Application Security
Xss
Vulnerability Scanning
Security Audit
+2
Talisman
Pre-commit hook for validating outgoing changeset
0
Free
Application Security
Security Audit
Code Security
Vulnerability Detection
Talisman
Pre-commit hook for validating outgoing changeset
0
Free
Application Security
Security Audit
Code Security
Vulnerability Detection
CorsMe
A tool to scan for CORS misconfigurations in web applications
0
Free
Application Security
Appsec
Security Audit
Web App Security
Vulnerability Detection
CorsMe
A tool to scan for CORS misconfigurations in web applications
0
Free
Application Security
Appsec
Security Audit
Web App Security
+1
snync
Mitigate security concerns of Dependency Confusion supply chain security risks.
0
Free
Application Security
Appsec
Apparmor
Appsec
Dependency Management
Dependency Scanning
Devsecops
Npm
Package Management
Security Audit
snync
Mitigate security concerns of Dependency Confusion supply chain security risks.
0
Free
Application Security
Appsec
Apparmor
Appsec
+6
Tracy
A tool for identifying potential security vulnerabilities in web applications
0
Free
Application Security
Web App Security
Vulnerability Detection
Code Analysis
Security Audit
Penetration Testing
Tracy
A tool for identifying potential security vulnerabilities in web applications
0
Free
Application Security
Web App Security
Vulnerability Detection
Code Analysis
+2
Dependency Combobulator
Open-Source framework for detecting and preventing dependency confusion leakage with a holistic approach and wide technology support.
0
Free
Application Security
Appsec
Dependency Management
Security Audit
Pentesting
Security Tool
Vulnerability Detection
Dependency Combobulator
Open-Source framework for detecting and preventing dependency confusion leakage with a holistic approach and wide technology support.
0
Free
Application Security
Appsec
Dependency Management
Security Audit
+3
npq
A tool that safely installs packages with npm/yarn by auditing them as part of your install process.
0
Free
Application Security
Npm
Yarn
Package Management
Security Audit
Vulnerability Scanning
Package Audit
npq
A tool that safely installs packages with npm/yarn by auditing them as part of your install process.
0
Free
Application Security
Npm
Yarn
Package Management
+3
sdc-check
Tool to inform about potential risks in project dependencies list.
0
Free
Application Security
Dependency Management
Package Security
Vulnerability Detection
Security Audit
Package Audit
sdc-check
Tool to inform about potential risks in project dependencies list.
0
Free
Application Security
Dependency Management
Package Security
Vulnerability Detection
+2
CFRipper
CFRipper is a Library and CLI security analyzer for AWS CloudFormation templates.
0
Free
Application Security
Aws
Cloud Security
Compliance
Security Audit
CFRipper
CFRipper is a Library and CLI security analyzer for AWS CloudFormation templates.
0
Free
Application Security
Aws
Cloud Security
Compliance
+1
Websecurify
Websecurify provides efficient ways to protect organizations with sophisticated technology and expert consultancy.
0
Free
Application Security
Appsec
Security Audit
Websecurify
Websecurify provides efficient ways to protect organizations with sophisticated technology and expert consultancy.
0
Free
Application Security
Appsec
Security Audit
Confused
A tool for identifying potential security vulnerabilities in dependency configurations by checking for lingering free namespaces for private package names.
0
Free
Application Security
Dependency Management
Dependency Scanning
Package Management
Security Audit
Vulnerability Detection
Confused
A tool for identifying potential security vulnerabilities in dependency configurations by checking for lingering free namespaces for private package names.
0
Free
Application Security
Dependency Management
Dependency Scanning
Package Management
+2
CloudFrunt
Identifies misconfigured CloudFront domains vulnerable to hijacking
0
Free
Application Security
Cloud Security
Security Audit
Configuration Management
Vulnerability Detection
CloudFrunt
Identifies misconfigured CloudFront domains vulnerable to hijacking
0
Free
Application Security
Cloud Security
Security Audit
Configuration Management
+1
CSP Auditor
A plugin for viewing, detecting weak configurations, and generating Content Security Policy headers.
0
Free
Application Security
Csp
Content Security Policy
Security Audit
CSP Auditor
A plugin for viewing, detecting weak configurations, and generating Content Security Policy headers.
0
Free
Application Security
Csp
Content Security Policy
Security Audit
Alert(1) to Win
A free online tool that scans and fixes common security issues in WordPress websites.
0
Free
Application Security
Wordpress
Security Audit
Vulnerability Scanning
Web App Security
Security Testing
Compliance
Alert(1) to Win
A free online tool that scans and fixes common security issues in WordPress websites.
0
Free
Application Security
Wordpress
Security Audit
Vulnerability Scanning
+3
Checkov
Static code analysis tool for infrastructure as code (IaC) and software composition analysis (SCA) with over 1000 built-in policies for AWS, Azure, and Google Cloud.
0
Free
Application Security
Cloud Security
Compliance
Infrastructure As Code
Security Audit
Checkov
Static code analysis tool for infrastructure as code (IaC) and software composition analysis (SCA) with over 1000 built-in policies for AWS, Azure, and Google Cloud.
0
Free
Application Security
Cloud Security
Compliance
Infrastructure As Code
+1

Application Security for Security Audit

RELATED TASKS

PINNED

LATEST ADDITIONS

BurpJSLinkFinder

BurpJSLinkFinder

XSSwagger

XSSwagger

Talisman

Talisman

CorsMe

CorsMe

snync

snync

Tracy

Tracy

Dependency Combobulator

Dependency Combobulator

npq

npq

sdc-check

sdc-check

CFRipper

CFRipper

Websecurify

Websecurify

Confused

Confused

CloudFrunt

CloudFrunt

CSP Auditor

CSP Auditor

Alert(1) to Win

Alert(1) to Win

Checkov

Checkov