Loading...

Popular Free Commercial Categories Tasks Blog

CyberSecTools

Explore the largest curated directory of cybersecurity tools and resources to enhance your security practices. Find the right solution for your domain.

Copyright © 2025 - All rights reserved

LINKS

LEGAL

Terms of services Privacy policy

Application Security for Vulnerability Scanning

Essential tools and best practices for securing software applications throughout their lifecycle. Task: Vulnerability Scanning
Explore 22 curated tools and resources

Search tools and resources by name, description, or purpose... (⌘+K)

All

Free

Commercial

Task

Home
Categories
Application Security
Vulnerability Scanning

RELATED TASKS

access-management (1)ai (10)analytics (1)androguard (1)android-security (1)antivirus (1)apache (3)api (3)api-access (1)api-discovery (1)

PINNED

ImmuniWeb® Discovery
ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.
1
Commercial
Attack Surface Management
Attack Surface Management
Attack Surface
Continuous Monitoring
Dark Web Monitoring
Cloud Security
Vulnerability Management
Compliance
Third Party Risk
Threat Intelligence
Security Monitoring
ImmuniWeb® Discovery
ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.
1
Commercial
Attack Surface Management
Attack Surface Management
Attack Surface
Continuous Monitoring
+7
InfoSecHired
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.
2
Commercial
Resources
Resources
Cybersecurity
Education
Training
Security Professionals
InfoSecHired
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.
2
Commercial
Resources
Resources
Cybersecurity
Education
+2
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
1
Commercial
Application Security
Application Security
Dependency Scanning
Vulnerability Management
Software Supply Chain
Open Source
Sbom
Security Scanning
Devsecops
Vulnerability Detection
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
1
Commercial
Application Security
Application Security
Dependency Scanning
Vulnerability Management
+6
Check Point CloudGuard WAF
A cloud-native web application and API security solution that uses contextual AI to protect against known and zero-day threats without signature-based detection.
1
Commercial
Application Security
Web App Security
Api Security
Cloud Security
Waf
Ddos
Bot Detection
Machine Learning
Api Discovery
Threat Prevention
Zero Day
Check Point CloudGuard WAF
A cloud-native web application and API security solution that uses contextual AI to protect against known and zero-day threats without signature-based detection.
1
Commercial
Application Security
Web App Security
Api Security
Cloud Security
+7
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
0
Commercial
Cloud Security
Cloud Security
Cloud Native
Vulnerability Management
Compliance
Container Security
Cloud Compliance
Api Security
Kubernetes Security
Security Monitoring
Security Automation
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
0
Commercial
Cloud Security
Cloud Security
Cloud Native
Vulnerability Management
+7
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.
1
Commercial
Application Security
Application Security
Github
Code Security
Static Analysis
Security Automation
Devsecops
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.
1
Commercial
Application Security
Application Security
Github
Code Security
+3

LATEST ADDITIONS

Threatspy
Threatspy is an application security testing platform that enables developers and security teams to discover, analyze, prioritize, and remediate vulnerabilities in web applications and APIs through an automated end-to-end process.
0
Commercial
Application Security
Application Security
Vulnerability Management
Api Security
Devsecops
Web App Security
Security Automation
Vulnerability Scanning
Ci Cd
Security Orchestration
Owasp
Threatspy
Threatspy is an application security testing platform that enables developers and security teams to discover, analyze, prioritize, and remediate vulnerabilities in web applications and APIs through an automated end-to-end process.
0
Commercial
Application Security
Application Security
Vulnerability Management
Api Security
+7
Qualys Web Application Scanning (WAS)
A cloud-based DAST solution that discovers, inventories, and tests web applications and APIs for security vulnerabilities across diverse environments.
0
Commercial
Application Security
Application Security
Vulnerability Scanning
Web App Security
Api Security
Cloud
Dast
Vulnerability Management
Compliance
Web Security
Security Scanning
Qualys Web Application Scanning (WAS)
A cloud-based DAST solution that discovers, inventories, and tests web applications and APIs for security vulnerabilities across diverse environments.
0
Commercial
Application Security
Application Security
Vulnerability Scanning
Web App Security
+7
Impart
A web application firewall and API security platform that combines API discovery, runtime protection, vulnerability testing, and security posture management.
0
Commercial
Application Security
Waf
Api Security
Web Security
Vulnerability Scanning
Security Monitoring
Cloud Security
Impart
A web application firewall and API security platform that combines API discovery, runtime protection, vulnerability testing, and security posture management.
0
Commercial
Application Security
Waf
Api Security
Web Security
+3
StackHawk
A DAST solution that performs automated security testing of APIs and web applications within development workflows and CI/CD pipelines.
0
Commercial
Application Security
Api Security
Application Security
Security Testing
Devsecops
Vulnerability Scanning
Ci Cd
StackHawk
A DAST solution that performs automated security testing of APIs and web applications within development workflows and CI/CD pipelines.
0
Commercial
Application Security
Api Security
Application Security
Security Testing
+3
Octoscan
Octoscan is a static analysis tool that scans GitHub Actions workflows for security vulnerabilities and misconfigurations.
0
Free
Application Security
Github
Ci Cd
Static Analysis
Vulnerability Scanning
Workflow
Security Automation
Octoscan
Octoscan is a static analysis tool that scans GitHub Actions workflows for security vulnerabilities and misconfigurations.
0
Free
Application Security
Github
Ci Cd
Static Analysis
+3
Aqua
Aqua Security is a CNAPP that provides comprehensive security for cloud native applications across their entire lifecycle, from development to production, in various cloud and container environments.
0
Commercial
Application Security
Cloud Security
Container Security
Kubernetes Security
Vulnerability Scanning
Devops
Compliance
Aqua
Aqua Security is a CNAPP that provides comprehensive security for cloud native applications across their entire lifecycle, from development to production, in various cloud and container environments.
0
Commercial
Application Security
Cloud Security
Container Security
Kubernetes Security
+3
Veracode
Veracode is an intelligent software security platform that helps developers and security teams secure code, find and fix flaws, and automate remediation.
0
Commercial
Application Security
Appsec
App Security
Security Testing
Vulnerability Scanning
Code Security
Veracode
Veracode is an intelligent software security platform that helps developers and security teams secure code, find and fix flaws, and automate remediation.
0
Commercial
Application Security
Appsec
App Security
Security Testing
+2
WPRecon
WPRecon is a tool for recognizing vulnerabilities and blackbox information for WordPress.
0
Free
Application Security
Wordpress
Vulnerability Scanning
WPRecon
WPRecon is a tool for recognizing vulnerabilities and blackbox information for WordPress.
0
Free
Application Security
Wordpress
Vulnerability Scanning
XSSwagger
A simple Swagger-ui scanner that detects old versions vulnerable to various XSS attacks
0
Free
Application Security
Xss
Vulnerability Scanning
Security Audit
Devsecops
Security Testing
XSSwagger
A simple Swagger-ui scanner that detects old versions vulnerable to various XSS attacks
0
Free
Application Security
Xss
Vulnerability Scanning
Security Audit
+2
jaeles
Automated web application testing tool
1
Free
Application Security
Appsec
Web Application Security
Vulnerability Scanning
Security Testing
jaeles
Automated web application testing tool
1
Free
Application Security
Appsec
Web Application Security
Vulnerability Scanning
+1
headi
A tool for automated HTTP header injection
0
Free
Application Security
Security Testing
Vulnerability Scanning
Web Application Security
headi
A tool for automated HTTP header injection
0
Free
Application Security
Security Testing
Vulnerability Scanning
Web Application Security
Oralyzer
Open Redirection Analyzer
0
Free
Application Security
Appsec
Vulnerability Scanning
Web App Security
Security Research
Devsecops
Oralyzer
Open Redirection Analyzer
0
Free
Application Security
Appsec
Vulnerability Scanning
Web App Security
+2
DOMXSS Scanner
A free online tool to scan for DOM-based XSS vulnerabilities in HTML, JavaScript, and CSS files.
0
Free
Application Security
Xss
Vulnerability Scanning
Source Code Analysis
Web Security
Security Testing
DOMXSS Scanner
A free online tool to scan for DOM-based XSS vulnerabilities in HTML, JavaScript, and CSS files.
0
Free
Application Security
Xss
Vulnerability Scanning
Source Code Analysis
+2
InsightAppSec
Dynamic application security testing tool for identifying and fixing web application vulnerabilities.
0
Commercial
Application Security
Appsec
Application Security
Web Application Security
Vulnerability Scanning
InsightAppSec
Dynamic application security testing tool for identifying and fixing web application vulnerabilities.
0
Commercial
Application Security
Appsec
Application Security
Web Application Security
+1

1
2
Next