Application Security for Vulnerability Detection

Mandos

Commercial

Consulting

Checkmarx SCA

Commercial

Application Security

Orca Security

Commercial

Cloud Security

DryRun

Commercial

Application Security

LATEST ADDITIONS

• 

  ZeroThreat

  ZeroThreat is a cloud-based DAST platform that provides automated penetration testing and vulnerability detection for web applications and APIs with AI-driven remediation guidance.

  0

  Commercial

  Application Security

  Application Security

  Web App Security

  Api Security

  Vulnerability Detection

  Penetration Testing

  Dast

  Ai

  Security Automation

  Compliance

  Sensitive Data

  Share

  

  ZeroThreat

  ZeroThreat is a cloud-based DAST platform that provides automated penetration testing and vulnerability detection for web applications and APIs with AI-driven remediation guidance.

  0

  Commercial

  Application Security

  Application Security

  Web App Security

  Api Security

  +7
• 

  Jsmon

  A JavaScript security scanning platform that detects exposed secrets, API keys, and vulnerabilities in JavaScript files through continuous monitoring and automated discovery.

  0

  Commercial

  Application Security

  Javascript

  Security Scanning

  Secrets Detection

  Api

  Web Security

  Vulnerability Detection

  Monitoring

  Security Automation

  Bug Bounty

  Application Security

  Share

  

  Jsmon

  A JavaScript security scanning platform that detects exposed secrets, API keys, and vulnerabilities in JavaScript files through continuous monitoring and automated discovery.

  0

  Commercial

  Application Security

  Javascript

  Security Scanning

  Secrets Detection

  +7
• 

  Symbiotic Security

  An IDE-integrated AI security solution that detects, remediates, and educates about code vulnerabilities in real-time as developers write code.

  0

  Commercial

  Application Security

  Ai

  Application Security

  Code Security

  Security Automation

  Devsecops

  Security Analysis

  Vulnerability Detection

  Security Education

  Ide

  Static Analysis

  Share

  

  Symbiotic Security

  An IDE-integrated AI security solution that detects, remediates, and educates about code vulnerabilities in real-time as developers write code.

  0

  Commercial

  Application Security

  Ai

  Application Security

  Code Security

  +7
• 

  Contrast Runtime Security Platform

  A comprehensive application security platform that combines runtime protection, security testing, and monitoring capabilities across the entire application lifecycle.

  0

  Commercial

  Application Security

  Application Security

  Api Security

  Security Testing

  Runtime Security

  Devsecops

  Vulnerability Detection

  Security Monitoring

  Ci Cd

  Compliance

  Software Supply Chain

  Share

  

  Contrast Runtime Security Platform

  A comprehensive application security platform that combines runtime protection, security testing, and monitoring capabilities across the entire application lifecycle.

  0

  Commercial

  Application Security

  Application Security

  Api Security

  Security Testing

  +7
• 

  ReversingLabs Spectra Assure

  A software supply chain security platform that analyzes binaries and software components to detect malware, vulnerabilities, exposed secrets, and tampering throughout the development lifecycle.

  1

  Commercial

  Application Security

  Software Supply Chain

  Binary Analysis

  Vulnerability Detection

  Malware Detection

  Security Scanning

  Devsecops

  Threat Intelligence

  Static Analysis

  Dynamic Analysis

  Secret Detection

  Share

  

  ReversingLabs Spectra Assure

  A software supply chain security platform that analyzes binaries and software components to detect malware, vulnerabilities, exposed secrets, and tampering throughout the development lifecycle.

  1

  Commercial

  Application Security

  Software Supply Chain

  Binary Analysis

  Vulnerability Detection

  +7
• 

  Offensive 360

  A static application security testing (SAST) platform that performs comprehensive source code analysis to identify vulnerabilities, malware, and security issues in application code and dependencies.

  0

  Commercial

  Application Security

  Application Security

  Static Analysis

  Source Code Analysis

  Vulnerability Detection

  Security Scanning

  Devsecops

  Malware Detection

  Dependency Scanning

  Ci Cd

  Code Security

  Share

  

  Offensive 360

  A static application security testing (SAST) platform that performs comprehensive source code analysis to identify vulnerabilities, malware, and security issues in application code and dependencies.

  0

  Commercial

  Application Security

  Application Security

  Static Analysis

  Source Code Analysis

  +7
• 

  42Crunch API Security Platform

  An API security platform that provides automated security testing, runtime protection, and lifecycle management for APIs through integrated tools and controls.

  0

  Commercial

  Application Security

  Api Security

  Application Security

  Devsecops

  Security Testing

  Security Automation

  Api

  Ci Cd

  Security Monitoring

  Vulnerability Detection

  Web Security

  Share

  

  42Crunch API Security Platform

  An API security platform that provides automated security testing, runtime protection, and lifecycle management for APIs through integrated tools and controls.

  0

  Commercial

  Application Security

  Api Security

  Application Security

  Devsecops

  +7
• 

  Imperva API Security

  An API security solution that provides continuous discovery, classification, and protection of APIs across environments while integrating with existing security infrastructure to prevent attacks and business logic abuse.

  0

  Commercial

  Application Security

  Api Security

  Web App Security

  Application Security

  Cloud Security

  Vulnerability Detection

  Security Monitoring

  Bot Protection

  Waf

  Api

  Security Automation

  Share

  

  Imperva API Security

  An API security solution that provides continuous discovery, classification, and protection of APIs across environments while integrating with existing security infrastructure to prevent attacks and business logic abuse.

  0

  Commercial

  Application Security

  Api Security

  Web App Security

  Application Security

  +7
• 

  Cequence Unified API Protection Platform

  An API security platform that combines discovery, compliance monitoring, and protection capabilities to defend against API attacks, automated threats, and data exposure.

  0

  Commercial

  Application Security

  Api Security

  Bot Detection

  Application Security

  Cloud Security

  Compliance

  Security Testing

  Vulnerability Detection

  Data Protection

  Cloud Native

  Security Monitoring

  Share

  

  Cequence Unified API Protection Platform

  An API security platform that combines discovery, compliance monitoring, and protection capabilities to defend against API attacks, automated threats, and data exposure.

  0

  Commercial

  Application Security

  Api Security

  Bot Detection

  Application Security

  +7
• 

  Checkmarx SCA

  A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

  1

  Commercial

  Application Security

  Application Security

  Dependency Scanning

  Vulnerability Management

  Software Supply Chain

  Open Source

  Sbom

  Security Scanning

  Devsecops

  Vulnerability Detection

  Share

  

  Checkmarx SCA

  A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

  1

  Commercial

  Application Security

  Application Security

  Dependency Scanning

  Vulnerability Management

  +6
• 

  Black Duck

  Black Duck is an application security platform that provides software composition analysis and supply chain security capabilities to identify vulnerabilities, ensure license compliance, and manage SBOMs throughout the software development lifecycle.

  0

  Commercial

  Application Security

  Application Security

  Software Supply Chain

  Vulnerability Management

  Devsecops

  Sbom

  Security Scanning

  Open Source

  License Compliance

  Ci Cd

  Vulnerability Detection

  Share

  

  Black Duck

  Black Duck is an application security platform that provides software composition analysis and supply chain security capabilities to identify vulnerabilities, ensure license compliance, and manage SBOMs throughout the software development lifecycle.

  0

  Commercial

  Application Security

  Application Security

  Software Supply Chain

  Vulnerability Management

  +7
• 

  Bright

  A Dynamic Application Security Testing (DAST) platform that provides automated security testing for web applications, APIs, and LLM-powered applications throughout the software development lifecycle.

  0

  Commercial

  Application Security

  Application Security

  Dast

  Web Security

  Api Security

  Security Testing

  Devsecops

  Vulnerability Detection

  Large Language Models

  Security Automation

  Web App Security

  Share

  

  Bright

  A Dynamic Application Security Testing (DAST) platform that provides automated security testing for web applications, APIs, and LLM-powered applications throughout the software development lifecycle.

  0

  Commercial

  Application Security

  Application Security

  Dast

  Web Security

  +7
• 

  Ghost Platform

  An AI-powered application security platform that provides automated discovery, testing, and continuous monitoring of applications and APIs with minimal operational impact.

  0

  Commercial

  Application Security

  Ai

  Application Security

  Api Security

  Security Automation

  Vulnerability Detection

  Security Testing

  Continuous Monitoring

  Risk Assessment

  Compliance

  Security Analysis

  Share

  

  Ghost Platform

  An AI-powered application security platform that provides automated discovery, testing, and continuous monitoring of applications and APIs with minimal operational impact.

  0

  Commercial

  Application Security

  Ai

  Application Security

  Api Security

  +7
• 

  SonarQube Server

  A self-managed static code analysis platform that conducts continuous inspection of codebases to identify security vulnerabilities, bugs, and code quality issues.

  0

  Commercial

  Application Security

  Application Security

  Static Analysis

  Security Scanning

  Vulnerability Detection

  Code Security

  Ci Cd

  Security Testing

  Sast

  Devsecops

  Source Code Analysis

  Share

  

  SonarQube Server

  A self-managed static code analysis platform that conducts continuous inspection of codebases to identify security vulnerabilities, bugs, and code quality issues.

  0

  Commercial

  Application Security

  Application Security

  Static Analysis

  Security Scanning

  +7
• 

  Flyingduck

  A security analysis platform that combines SAST, SCA, SBOM generation and AI-assisted remediation to detect and fix vulnerabilities during the software development lifecycle.

  2

  Commercial

  Application Security

  Application Security

  Static Analysis

  Devsecops

  Ci Cd

  Vulnerability Detection

  Dependency Scanning

  Sbom

  Ai

  Security Automation

  Github

  Share

  

  Flyingduck

  A security analysis platform that combines SAST, SCA, SBOM generation and AI-assisted remediation to detect and fix vulnerabilities during the software development lifecycle.

  2

  Commercial

  Application Security

  Application Security

  Static Analysis

  Devsecops

  +7
• 

  EvoMaster

  EvoMaster is an open-source tool that automatically generates system-level test cases for web APIs using AI-driven techniques.

  0

  Free

  Application Security

  Application Security

  Fuzzing

  Automation

  Testing

  Vulnerability Detection

  Share

  

  EvoMaster

  EvoMaster is an open-source tool that automatically generates system-level test cases for web APIs using AI-driven techniques.

  0

  Free

  Application Security

  Application Security

  Fuzzing

  Automation

  +2
• 

  Akamai Client-Side Protection & Compliance

  Akamai Client-Side Protection & Compliance is a security tool that monitors and protects against client-side threats on websites, aiding in PCI DSS v4.0 compliance.

  0

  Commercial

  Application Security

  Web Security

  Pci Dss

  Compliance

  Javascript

  Real Time Monitoring

  Vulnerability Detection

  Share

  

  Akamai Client-Side Protection & Compliance

  Akamai Client-Side Protection & Compliance is a security tool that monitors and protects against client-side threats on websites, aiding in PCI DSS v4.0 compliance.

  0

  Commercial

  Application Security

  Web Security

  Pci Dss

  Compliance

  +3
• 

  InQL

  InQL is a Burp Suite extension for advanced GraphQL testing and vulnerability detection

  0

  Free

  Application Security

  Graphql

  Burp Suite

  Vulnerability Detection

  Share

  

  InQL

  InQL is a Burp Suite extension for advanced GraphQL testing and vulnerability detection

  0

  Free

  Application Security

  Graphql

  Burp Suite

  Vulnerability Detection
• 

  BurpJSLinkFinder

  A Burp extension for scanning JavaScript files for endpoint links

  0

  Free

  Application Security

  Appsec

  Javascript

  Security Audit

  Vulnerability Detection

  Share

  

  BurpJSLinkFinder

  A Burp extension for scanning JavaScript files for endpoint links

  0

  Free

  Application Security

  Appsec

  Javascript

  Security Audit

  +1
• 

  CMSmap

  A python open source CMS scanner that automates the process of detecting security flaws of the most popular CMSs.

  0

  Free

  Application Security

  Scanner

  Vulnerability Detection

  Pentest

  Penetration Testing

  Share

  

  CMSmap

  A python open source CMS scanner that automates the process of detecting security flaws of the most popular CMSs.

  0

  Free

  Application Security

  Scanner

  Vulnerability Detection

  Pentest

  +1
• 

  parameth

  A tool for brute-forcing GET and POST parameters to discover potential vulnerabilities in web applications.

  0

  Free

  Application Security

  Appsec

  App Security

  Web App Security

  Web Security

  Vulnerability Detection

  Vulnerability Assessment

  Share

  

  parameth

  A tool for brute-forcing GET and POST parameters to discover potential vulnerabilities in web applications.

  0

  Free

  Application Security

  Appsec

  App Security

  Web App Security

  +3
• 

  Talisman

  Pre-commit hook for validating outgoing changeset

  0

  Free

  Application Security

  Security Audit

  Code Security

  Vulnerability Detection

  Share

  

  Talisman

  Pre-commit hook for validating outgoing changeset

  0

  Free

  Application Security

  Security Audit

  Code Security

  Vulnerability Detection
• 

  SSTImap

  SSTImap is an automated detection tool that identifies Server-Side Template Injection vulnerabilities in web applications through an interactive testing interface.

  0

  Free

  Application Security

  Application Security

  Vulnerability Scanner

  Web Security

  Penetration Testing

  Security Testing

  Vulnerability Detection

  Web Application Security

  Injection

  Interactive

  Share

  

  SSTImap

  SSTImap is an automated detection tool that identifies Server-Side Template Injection vulnerabilities in web applications through an interactive testing interface.

  0

  Free

  Application Security

  Application Security

  Vulnerability Scanner

  Web Security

  +6
• 

  Insider

  Insider is a source code analysis tool focusing on OWASP Top 10 vulnerabilities with easy integration into DevOps pipelines.

  0

  Free

  Application Security

  Source Code Analysis

  Vulnerability Detection

  Devops

  Code Security

  Share

  

  Insider

  Insider is a source code analysis tool focusing on OWASP Top 10 vulnerabilities with easy integration into DevOps pipelines.

  0

  Free

  Application Security

  Source Code Analysis

  Vulnerability Detection

  Devops

  +1