Loading...

Popular Free Commercial Categories Tasks Blog

CybersecTools

Explore the largest curated directory of cybersecurity tools and resources to enhance your security practices. Find the right solution for your domain.

Operated by:

Mandos Cyber • KVK: 97994448

Netherlands • contact@mandos.io

VAT: NL005301434B12

Copyright © 2025 - All rights reserved

LINKS

LEGAL

Terms of services Privacy policy

Application Security for Vulnerability Testing

Essential tools and best practices for securing software applications throughout their lifecycle. Task: Vulnerability TestingExplore 10 curated tools and resources

Search by name, description, or purpose... (⌘+K)

Home
Categories
Application Security
Vulnerability Testing

RELATED TASKS

access-management (1)ai (14)ai-security (1)alerting (1)analytics (1)androguard (1)android (20)android-security (17)anti-forensics (1)antivirus (1)

PINNED

Promoted • 6 tools

Commercial

Data Protection

Commercial

Network Security

Commercial

Consulting

Commercial

Application Security

Commercial

Cloud Security

Commercial

Application Security

Want your tool featured here?

Get maximum visibility with pinned placement

LATEST ADDITIONS

Node.js Goof
Node.js Goof is a vulnerable Node.js demo application containing multiple security vulnerabilities for testing and educational purposes.
0
Free
Application Security
Nodejs
Vulnerable App
Application Security
Educational
Xss
Code Injection
Open Redirect
Lfi
Docker
Vulnerability Testing
Security Testing
Node.js Goof
Node.js Goof is a vulnerable Node.js demo application containing multiple security vulnerabilities for testing and educational purposes.
0
Free
Application Security
Nodejs
Vulnerable App
Application Security
+8
Burp-LFI-tests
A collection of Local File Inclusion (LFI) vulnerability tests and exploitation techniques designed for use with Burp Suite.
0
Free
Application Security
Burp Suite
Lfi
Local File Inclusion
Web Application Security
Vulnerability Testing
Penetration Testing
Educational
Fuzzing
Web Security
Appsec Testing
Burp-LFI-tests
A collection of Local File Inclusion (LFI) vulnerability tests and exploitation techniques designed for use with Burp Suite.
0
Free
Application Security
Burp Suite
Lfi
Local File Inclusion
+7
qsfuzz
qsfuzz is a rule-based fuzzing tool for testing query string parameters in web applications to identify security vulnerabilities.
0
Free
Application Security
Fuzzing
Web Security
Vulnerability Testing
Application Security
Web Application Security
Rule Based
Security Testing
Penetration Testing
Vulnerability Scanner
qsfuzz
qsfuzz is a rule-based fuzzing tool for testing query string parameters in web applications to identify security vulnerabilities.
0
Free
Application Security
Fuzzing
Web Security
Vulnerability Testing
+6
requests-racer
A Python library that simplifies testing and exploiting race conditions in web applications using concurrent HTTP requests.
0
Free
Application Security
Python
Web Security
Application Security
Penetration Testing
Vulnerability Testing
Http
Library
Security Testing
Python Library
requests-racer
A Python library that simplifies testing and exploiting race conditions in web applications using concurrent HTTP requests.
0
Free
Application Security
Python
Web Security
Application Security
+6
FuzzDB
FuzzDB is an open-source dictionary of attack patterns and predictable resource locations for dynamic application security testing and vulnerability discovery.
0
Free
Application Security
Application Security
Vulnerability Testing
Penetration Testing
Web Security
Sql Injection
Xss
Fuzzing
Security Testing
Open Source
Vulnerability Scanner
FuzzDB
FuzzDB is an open-source dictionary of attack patterns and predictable resource locations for dynamic application security testing and vulnerability discovery.
0
Free
Application Security
Application Security
Vulnerability Testing
Penetration Testing
+7
MCIR
MCIR is a unified framework for building code injection vulnerability testbeds that combines SQL, XML, shell, and XSS injection testing tools with shared functionality and template-based extensibility.
0
Free
Application Security
Application Security
Vulnerability Testing
Code Injection
Sql Injection
Xss
Framework
Testing
Appsec
Vulnerable Applications
Security Testing
MCIR
MCIR is a unified framework for building code injection vulnerability testbeds that combines SQL, XML, shell, and XSS injection testing tools with shared functionality and template-based extensibility.
0
Free
Application Security
Application Security
Vulnerability Testing
Code Injection
+7
Dockerfiles for Testing
Container image definitions that create standardized testing environments for software applications with consistent dependencies and configurations.
0
Free
Application Security
Docker
Containers
Testing
Application Security
Containerization
Security Testing
Vulnerability Testing
Devsecops
Automation
Dockerfiles for Testing
Container image definitions that create standardized testing environments for software applications with consistent dependencies and configurations.
0
Free
Application Security
Docker
Containers
Testing
+6
Securibench Micro
A collection of vulnerable web application test cases designed to benchmark and evaluate the effectiveness of static security analyzers and penetration testing tools.
0
Free
Application Security
Application Security
Vulnerability Testing
Static Analysis
Penetration Testing
Sql Injection
Xss
Vulnerable Apps
Security Testing
Benchmark
Securibench Micro
A collection of vulnerable web application test cases designed to benchmark and evaluate the effectiveness of static security analyzers and penetration testing tools.
0
Free
Application Security
Application Security
Vulnerability Testing
Static Analysis
+6
Lambda-Proxy
Lambda-Proxy is a utility that enables SQL injection testing of AWS Lambda functions by converting SQLMap HTTP attacks into Lambda invoke calls through a local proxy.
0
Free
Application Security
Application Security
Aws
Lambda
Sql Injection
Penetration Testing
Serverless
Vulnerability Testing
Proxy
Security Testing
Cloud Security
Lambda-Proxy
Lambda-Proxy is a utility that enables SQL injection testing of AWS Lambda functions by converting SQLMap HTTP attacks into Lambda invoke calls through a local proxy.
0
Free
Application Security
Application Security
Aws
Lambda
+7
Joi Security
A CLI tool that performs security assessments on Joi validator schemas by testing them against various attack vectors including XSS, SQL injection, RCE, and SSRF.
0
Free
Application Security
Application Security
Cli
Nodejs
Javascript
Security Testing
Vulnerability Testing
Xss
Sql Injection
Rce
Ssrf
Joi Security
A CLI tool that performs security assessments on Joi validator schemas by testing them against various attack vectors including XSS, SQL injection, RCE, and SSRF.
0
Free
Application Security
Application Security
Cli
Nodejs
+7

1