Explore the largest curated directory of cybersecurity tools and resources to enhance your security practices. Find the right solution for your domain.

LINKS

Blog Contact

LEGAL

Terms of services Privacy policy

CyberSecTools

CyberSecTools

Explore the largest curated directory of cybersecurity tools and resources to enhance your security practices. Find the right solution for your domain.

LINKS

Blog Contact

LEGAL

Terms of services Privacy policy

Application Security

Essential tools and best practices for securing software applications throughout their lifecycle.Explore 246 curated tools and resources

Search tools and resources by name, description, or purpose... (⌘+K)

All

Free

Commercial

Task

Home
Categories
Application Security

PINNED

PTJunior
An AI-powered penetration testing platform that autonomously discovers, exploits, and documents vulnerabilities while generating NIST-compliant reports.
1
Commercial
Offensive Security
Ai
Penetration Testing
Automation
Security Testing
Exploitation
Reconnaissance
Reporting
Security Assessment
Offensive Security
Vulnerability Exploitation
PTJunior
An AI-powered penetration testing platform that autonomously discovers, exploits, and documents vulnerabilities while generating NIST-compliant reports.
1
Commercial
Offensive Security
Ai
Penetration Testing
Automation
+7
CTIChef.com Detection Feeds
A tiered cyber threat intelligence service providing detection rules from public repositories with varying levels of analysis, processing, and guidance for security teams.
0
Commercial
Threat Management
Threat Intelligence
Detection Rules
Siem
Security Operations
Cti
Threat Detection
Security Monitoring
Rule Management
Threat Hunting
Security Information And Event Management
CTIChef.com Detection Feeds
A tiered cyber threat intelligence service providing detection rules from public repositories with varying levels of analysis, processing, and guidance for security teams.
0
Commercial
Threat Management
Threat Intelligence
Detection Rules
Siem
+7
ImmuniWeb® Discovery
ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.
0
Commercial
Attack Surface Management
Attack Surface Management
Attack Surface
Continuous Monitoring
Dark Web Monitoring
Cloud Security
Vulnerability Management
Compliance
Third Party Risk
Threat Intelligence
Security Monitoring
ImmuniWeb® Discovery
ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.
0
Commercial
Attack Surface Management
Attack Surface Management
Attack Surface
Continuous Monitoring
+7
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
1
Commercial
Application Security
Application Security
Dependency Scanning
Vulnerability Management
Software Supply Chain
Open Source
Sbom
Security Scanning
Devsecops
Vulnerability Detection
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
1
Commercial
Application Security
Application Security
Dependency Scanning
Vulnerability Management
+6
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
0
Commercial
Cloud Security
Cloud Security
Cloud Native
Vulnerability Management
Compliance
Container Security
Cloud Compliance
Api Security
Kubernetes Security
Security Monitoring
Security Automation
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
0
Commercial
Cloud Security
Cloud Security
Cloud Native
Vulnerability Management
+7
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.
1
Commercial
Application Security
Application Security
Github
Code Security
Static Analysis
Security Automation
Devsecops
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.
1
Commercial
Application Security
Application Security
Github
Code Security
+3

LATEST ADDITIONS

npq
A tool that safely installs packages with npm/yarn by auditing them as part of your install process.
0
Free
Application Security
Npm
Yarn
Package Management
Security Audit
Vulnerability Scanning
Package Audit
npq
A tool that safely installs packages with npm/yarn by auditing them as part of your install process.
0
Free
Application Security
Npm
Yarn
Package Management
+3
sdc-check
Tool to inform about potential risks in project dependencies list.
0
Free
Application Security
Dependency Management
Package Security
Vulnerability Detection
Security Audit
Package Audit
sdc-check
Tool to inform about potential risks in project dependencies list.
0
Free
Application Security
Dependency Management
Package Security
Vulnerability Detection
+2
Xtreme Vulnerable Web Application (XVWA)
A web application designed to be 'Xtremely Vulnerable' for security enthusiasts to learn application security.
0
Free
Application Security
Appsec
Php
Mysql
Sql Injection
Ssrf
File Inclusion
Csrf
Cryptography
Xtreme Vulnerable Web Application (XVWA)
A web application designed to be 'Xtremely Vulnerable' for security enthusiasts to learn application security.
0
Free
Application Security
Appsec
Php
Mysql
+5
PINT
Pint is a PIN tool that exposes the PIN API to lua scripts, allowing dynamic instrumentation of binaries.
0
Free
Application Security
Binary Security
PINT
Pint is a PIN tool that exposes the PIN API to lua scripts, allowing dynamic instrumentation of binaries.
0
Free
Application Security
Binary Security
@fastify/helmet
Important security headers for Fastify with granular control over application routes.
0
Free
Application Security
Appsec
Fastify
Security Configuration
Web Security
@fastify/helmet
Important security headers for Fastify with granular control over application routes.
0
Free
Application Security
Appsec
Fastify
Security Configuration
+1
Fnord
Fnord is a pattern extractor for obfuscated code that extracts byte sequences and creates statistics, as well as generates experimental YARA rules.
0
Free
Application Security
Binary Security
File Analysis
Entropy
Fnord
Fnord is a pattern extractor for obfuscated code that extracts byte sequences and creates statistics, as well as generates experimental YARA rules.
0
Free
Application Security
Binary Security
File Analysis
Entropy
CFRipper
CFRipper is a Library and CLI security analyzer for AWS CloudFormation templates.
0
Free
Application Security
Aws
Cloud Security
Compliance
Security Audit
CFRipper
CFRipper is a Library and CLI security analyzer for AWS CloudFormation templates.
0
Free
Application Security
Aws
Cloud Security
Compliance
+1
JS NICE
Statistical renaming, Type inference, and Deobfuscation tool for JavaScript code.
0
Free
Application Security
Javascript
Obfuscation
Deobfuscation
Code Analysis
JS NICE
Statistical renaming, Type inference, and Deobfuscation tool for JavaScript code.
0
Free
Application Security
Javascript
Obfuscation
Deobfuscation
+1
Acunetix Vulnerability Scanner
A comprehensive web application security testing solution that offers built-in vulnerability assessment and management, as well as integration options with popular software development tools.
0
Free
Application Security
Appsec
Appsec Testing
Integration
Jenkins
Docker
Vulnerability Assessment
Vulnerability Management
Acunetix Vulnerability Scanner
A comprehensive web application security testing solution that offers built-in vulnerability assessment and management, as well as integration options with popular software development tools.
0
Free
Application Security
Appsec
Appsec Testing
Integration
+4
AWS Web Application Firewalls (WAFs)
AWS Web Application Firewalls (WAFs) protect web applications and APIs from attacks, providing prebuilt security rules and the ability to create custom rules.
0
Free
Application Security
Aws
Waf
Web Application Firewall
Security
AWS Web Application Firewalls (WAFs)
AWS Web Application Firewalls (WAFs) protect web applications and APIs from attacks, providing prebuilt security rules and the ability to create custom rules.
0
Free
Application Security
Aws
Waf
Web Application Firewall
+1
OpenRASP
OpenRASP directly integrates its protection engine into the application server by instrumentation, providing context-aware protection and detailed stack trace logging.
0
Free
Application Security
Appsec
Application Security
Instrumentation
Forensic Analysis
Web Application Security
Linux
OpenRASP
OpenRASP directly integrates its protection engine into the application server by instrumentation, providing context-aware protection and detailed stack trace logging.
0
Free
Application Security
Appsec
Application Security
Instrumentation
+3
eBPF Runtime Security
Cutting-edge technology for developing security applications within the Linux kernel.
0
Free
Application Security
Ebpf
Runtime Security
Linux
Kernel
eBPF Runtime Security
Cutting-edge technology for developing security applications within the Linux kernel.
0
Free
Application Security
Ebpf
Runtime Security
Linux
+1
Operating System Based Redirection with Apache mod_rewrite
Detect users' operating systems and perform redirection with Apache mod_rewrite.
0
Free
Application Security
Apache
Mod_rewrite
Javascript
Redirection
Operating System Based Redirection with Apache mod_rewrite
Detect users' operating systems and perform redirection with Apache mod_rewrite.
0
Free
Application Security
Apache
Mod_rewrite
Javascript
+1
django-admin-honeypot
A fake Django admin login screen to detect and notify admins of attempted unauthorized access
0
Free
Application Security
Django
Honeypot
Security
Intrusion Detection
django-admin-honeypot
A fake Django admin login screen to detect and notify admins of attempted unauthorized access
0
Free
Application Security
Django
Honeypot
Security
+1

Application Security

RELATED TASKS

PINNED

PTJunior

PTJunior

CTIChef.com Detection Feeds

CTIChef.com Detection Feeds

ImmuniWeb® Discovery

ImmuniWeb® Discovery

Checkmarx SCA

Checkmarx SCA

Orca Security

Orca Security

DryRun

DryRun

LATEST ADDITIONS

npq

npq

sdc-check

sdc-check

Xtreme Vulnerable Web Application (XVWA)

Xtreme Vulnerable Web Application (XVWA)

PINT

PINT

@fastify/helmet

@fastify/helmet

Fnord

Fnord

CFRipper

CFRipper

JS NICE

JS NICE

Acunetix Vulnerability Scanner

Acunetix Vulnerability Scanner

AWS Web Application Firewalls (WAFs)

AWS Web Application Firewalls (WAFs)

OpenRASP

OpenRASP

eBPF Runtime Security

eBPF Runtime Security

Operating System Based Redirection with Apache mod_rewrite

Operating System Based Redirection with Apache mod_rewrite

django-admin-honeypot

django-admin-honeypot