Explore the largest curated directory of cybersecurity tools and resources to enhance your security practices. Find the right solution for your domain.

LINKS

Blog Contact

LEGAL

Terms of services Privacy policy

CyberSecTools

CyberSecTools

Explore the largest curated directory of cybersecurity tools and resources to enhance your security practices. Find the right solution for your domain.

LINKS

Blog Contact

LEGAL

Terms of services Privacy policy

Application Security

Essential tools and best practices for securing software applications throughout their lifecycle.Explore 245 curated tools and resources

Search tools and resources by name, description, or purpose... (⌘+K)

All

Free

Commercial

Task

Home
Categories
Application Security

PINNED

OSINTLeak
OSINTLeak is a tool for discovering and analyzing leaked sensitive information across various online sources to identify potential security risks.
2
Commercial
Digital Forensics
Osint
Information Security
Security Tools
Data Breach
Reconnaissance
Security Research
Threat Intelligence
Red Team
Blue Team
Vulnerability Assessment
OSINTLeak
OSINTLeak is a tool for discovering and analyzing leaked sensitive information across various online sources to identify potential security risks.
2
Commercial
Digital Forensics
Osint
Information Security
Security Tools
+7
ImmuniWeb® Discovery
ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.
0
Commercial
Attack Surface Management
Attack Surface Management
Attack Surface
Continuous Monitoring
Dark Web Monitoring
Cloud Security
Vulnerability Management
Compliance
Third Party Risk
Threat Intelligence
Security Monitoring
ImmuniWeb® Discovery
ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.
0
Commercial
Attack Surface Management
Attack Surface Management
Attack Surface
Continuous Monitoring
+7
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
1
Commercial
Application Security
Application Security
Dependency Scanning
Vulnerability Management
Software Supply Chain
Open Source
Sbom
Security Scanning
Devsecops
Vulnerability Detection
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
1
Commercial
Application Security
Application Security
Dependency Scanning
Vulnerability Management
+6
Check Point CloudGuard WAF
A cloud-native web application and API security solution that uses contextual AI to protect against known and zero-day threats without signature-based detection.
1
Commercial
Application Security
Web App Security
Api Security
Cloud Security
Waf
Ddos
Bot Detection
Machine Learning
Api Discovery
Threat Prevention
Zero Day
Check Point CloudGuard WAF
A cloud-native web application and API security solution that uses contextual AI to protect against known and zero-day threats without signature-based detection.
1
Commercial
Application Security
Web App Security
Api Security
Cloud Security
+7
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
0
Commercial
Cloud Security
Cloud Security
Cloud Native
Vulnerability Management
Compliance
Container Security
Cloud Compliance
Api Security
Kubernetes Security
Security Monitoring
Security Automation
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
0
Commercial
Cloud Security
Cloud Security
Cloud Native
Vulnerability Management
+7
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.
1
Commercial
Application Security
Application Security
Github
Code Security
Static Analysis
Security Automation
Devsecops
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.
1
Commercial
Application Security
Application Security
Github
Code Security
+3

LATEST ADDITIONS

Ghost Platform
An AI-powered application security platform that provides automated discovery, testing, and continuous monitoring of applications and APIs with minimal operational impact.
0
Commercial
Application Security
Ai
Application Security
Api Security
Security Automation
Vulnerability Detection
Security Testing
Continuous Monitoring
Risk Assessment
Compliance
Security Analysis
Ghost Platform
An AI-powered application security platform that provides automated discovery, testing, and continuous monitoring of applications and APIs with minimal operational impact.
0
Commercial
Application Security
Ai
Application Security
Api Security
+7
Heeler
An application security platform that provides runtime threat modeling, vulnerability management, and automated remediation workflows with a focus on identifying exploitable vulnerabilities in production environments.
0
Commercial
Application Security
Application Security
Vulnerability Management
Security Automation
Runtime Security
Devsecops
Ci Cd
Security Analysis
Vulnerability Analysis
Security Monitoring
Threat Modeling
Heeler
An application security platform that provides runtime threat modeling, vulnerability management, and automated remediation workflows with a focus on identifying exploitable vulnerabilities in production environments.
0
Commercial
Application Security
Application Security
Vulnerability Management
Security Automation
+7
Data Theorem API Secure
An application security platform that combines API discovery, multiple security testing methodologies, and continuous monitoring to protect modern applications throughout their development lifecycle.
0
Commercial
Application Security
Data Theorem API Secure
An application security platform that combines API discovery, multiple security testing methodologies, and continuous monitoring to protect modern applications throughout their development lifecycle.
0
Commercial
Application Security
SonarQube Server
A self-managed static code analysis platform that conducts continuous inspection of codebases to identify security vulnerabilities, bugs, and code quality issues.
0
Commercial
Application Security
Application Security
Static Analysis
Security Scanning
Vulnerability Detection
Code Security
Ci Cd
Security Testing
Sast
Devsecops
Source Code Analysis
SonarQube Server
A self-managed static code analysis platform that conducts continuous inspection of codebases to identify security vulnerabilities, bugs, and code quality issues.
0
Commercial
Application Security
Application Security
Static Analysis
Security Scanning
+7
Flyingduck
A security analysis platform that combines SAST, SCA, SBOM generation and AI-assisted remediation to detect and fix vulnerabilities during the software development lifecycle.
2
Commercial
Application Security
Application Security
Static Analysis
Devsecops
Ci Cd
Vulnerability Detection
Dependency Scanning
Sbom
Ai
Security Automation
Github
Flyingduck
A security analysis platform that combines SAST, SCA, SBOM generation and AI-assisted remediation to detect and fix vulnerabilities during the software development lifecycle.
2
Commercial
Application Security
Application Security
Static Analysis
Devsecops
+7
Seezo
Security design review automation tool that scans design documents and provides security requirements to development teams during the planning phase.
0
Commercial
Application Security
Appsec
Security Automation
Devsecops
Compliance
Seezo
Security design review automation tool that scans design documents and provides security requirements to development teams during the planning phase.
0
Commercial
Application Security
Appsec
Security Automation
Devsecops
+1
Pixee
An automated code security tool that analyzes repositories, identifies vulnerabilities, and generates pull requests with fixes while integrating with existing development workflows.
0
Commercial
Application Security
Application Security
Automation
Security Automation
Vulnerability Management
Code Security
Devsecops
Pixee
An automated code security tool that analyzes repositories, identifies vulnerabilities, and generates pull requests with fixes while integrating with existing development workflows.
0
Commercial
Application Security
Application Security
Automation
Security Automation
+3
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.
1
Commercial
Application Security
Application Security
Github
Code Security
Static Analysis
Security Automation
Devsecops
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.
1
Commercial
Application Security
Application Security
Github
Code Security
+3
Amplify
An automated code remediation tool that integrates with source control platforms to automatically fix security vulnerabilities in code through AI-driven analysis and one-click implementations.
0
Commercial
Application Security
Application Security
Automation
Security Automation
Github
Gitlab
Ai
Vulnerability Management
Code Security
Devsecops
Security Analysis
Amplify
An automated code remediation tool that integrates with source control platforms to automatically fix security vulnerabilities in code through AI-driven analysis and one-click implementations.
0
Commercial
Application Security
Application Security
Automation
Security Automation
+7
Seekrets OSS
A command-line tool that scans NPM packages and ZIP files to detect exposed secrets and sensitive credentials in source code and configuration files.
0
Free
Application Security
Secret Management
Source Code Analysis
Security Scanning
Devsecops
Software Supply Chain
Sbom
Seekrets OSS
A command-line tool that scans NPM packages and ZIP files to detect exposed secrets and sensitive credentials in source code and configuration files.
0
Free
Application Security
Secret Management
Source Code Analysis
Security Scanning
+3
Impart
A web application firewall and API security platform that combines API discovery, runtime protection, vulnerability testing, and security posture management.
0
Commercial
Application Security
Waf
Api Security
Web Security
Vulnerability Scanning
Security Monitoring
Cloud Security
Impart
A web application firewall and API security platform that combines API discovery, runtime protection, vulnerability testing, and security posture management.
0
Commercial
Application Security
Waf
Api Security
Web Security
+3
Akto
API security platform that combines discovery, testing, and monitoring capabilities to identify and protect against API vulnerabilities throughout the development lifecycle.
0
Commercial
Application Security
Api Security
Application Security
Devsecops
Authentication
Vulnerability Management
Ci Cd
Akto
API security platform that combines discovery, testing, and monitoring capabilities to identify and protect against API vulnerabilities throughout the development lifecycle.
0
Commercial
Application Security
Api Security
Application Security
Devsecops
+3
Levo
An API security platform that discovers, documents, and tests APIs throughout the development lifecycle while maintaining a centralized catalog of all API assets.
0
Commercial
Application Security
Api Security
Appsec
Devsecops
Security Testing
Ci Cd
Levo
An API security platform that discovers, documents, and tests APIs throughout the development lifecycle while maintaining a centralized catalog of all API assets.
0
Commercial
Application Security
Api Security
Appsec
Devsecops
+2
Kodem
Application security platform that combines SAST and SCA with runtime intelligence to validate vulnerability exploitability and provide contextual remediation guidance.
0
Commercial
Application Security
Application Security
Sast
Vulnerability Management
Container Security
Sbom
Runtime Security
Kodem
Application security platform that combines SAST and SCA with runtime intelligence to validate vulnerability exploitability and provide contextual remediation guidance.
0
Commercial
Application Security
Application Security
Sast
Vulnerability Management
+3

Application Security

RELATED TASKS

PINNED

OSINTLeak

OSINTLeak

ImmuniWeb® Discovery

ImmuniWeb® Discovery

Checkmarx SCA

Checkmarx SCA

Check Point CloudGuard WAF

Check Point CloudGuard WAF

Orca Security

Orca Security

DryRun

DryRun

LATEST ADDITIONS

Ghost Platform

Ghost Platform

Heeler

Heeler

Data Theorem API Secure

Data Theorem API Secure

SonarQube Server

SonarQube Server

Flyingduck

Flyingduck

Seezo

Seezo

Pixee

Pixee

DryRun

DryRun

Amplify

Amplify

Seekrets OSS

Seekrets OSS

Impart

Impart

Akto

Akto

Levo

Levo

Kodem

Kodem