Explore the largest curated directory of cybersecurity tools and resources to enhance your security practices. Find the right solution for your domain.

LINKS

Blog Contact

LEGAL

Terms of services Privacy policy

CyberSecTools

CyberSecTools

Explore the largest curated directory of cybersecurity tools and resources to enhance your security practices. Find the right solution for your domain.

LINKS

Blog Contact

LEGAL

Terms of services Privacy policy

Application Security

Essential tools and best practices for securing software applications throughout their lifecycle.Explore 245 curated tools and resources

Search tools and resources by name, description, or purpose... (⌘+K)

All

Free

Commercial

Task

Home
Categories
Application Security

PINNED

OSINTLeak
OSINTLeak is a tool for discovering and analyzing leaked sensitive information across various online sources to identify potential security risks.
2
Commercial
Digital Forensics
Osint
Information Security
Security Tools
Data Breach
Reconnaissance
Security Research
Threat Intelligence
Red Team
Blue Team
Vulnerability Assessment
OSINTLeak
OSINTLeak is a tool for discovering and analyzing leaked sensitive information across various online sources to identify potential security risks.
2
Commercial
Digital Forensics
Osint
Information Security
Security Tools
+7
ImmuniWeb® Discovery
ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.
0
Commercial
Attack Surface Management
Attack Surface Management
Attack Surface
Continuous Monitoring
Dark Web Monitoring
Cloud Security
Vulnerability Management
Compliance
Third Party Risk
Threat Intelligence
Security Monitoring
ImmuniWeb® Discovery
ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.
0
Commercial
Attack Surface Management
Attack Surface Management
Attack Surface
Continuous Monitoring
+7
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
1
Commercial
Application Security
Application Security
Dependency Scanning
Vulnerability Management
Software Supply Chain
Open Source
Sbom
Security Scanning
Devsecops
Vulnerability Detection
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
1
Commercial
Application Security
Application Security
Dependency Scanning
Vulnerability Management
+6
Check Point CloudGuard WAF
A cloud-native web application and API security solution that uses contextual AI to protect against known and zero-day threats without signature-based detection.
1
Commercial
Application Security
Web App Security
Api Security
Cloud Security
Waf
Ddos
Bot Detection
Machine Learning
Api Discovery
Threat Prevention
Zero Day
Check Point CloudGuard WAF
A cloud-native web application and API security solution that uses contextual AI to protect against known and zero-day threats without signature-based detection.
1
Commercial
Application Security
Web App Security
Api Security
Cloud Security
+7
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
0
Commercial
Cloud Security
Cloud Security
Cloud Native
Vulnerability Management
Compliance
Container Security
Cloud Compliance
Api Security
Kubernetes Security
Security Monitoring
Security Automation
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
0
Commercial
Cloud Security
Cloud Security
Cloud Native
Vulnerability Management
+7
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.
1
Commercial
Application Security
Application Security
Github
Code Security
Static Analysis
Security Automation
Devsecops
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.
1
Commercial
Application Security
Application Security
Github
Code Security
+3

LATEST ADDITIONS

Akamai API Security
API Security is a comprehensive solution that provides continuous discovery, vulnerability assessment, threat detection, compliance monitoring, dynamic testing, and remediation capabilities to protect APIs against various threats and vulnerabilities.
0
Commercial
Application Security
Api Security
Appsec
Application Security
Vulnerability Management
Compliance
Security Testing
Security Automation
Devsecops
Akamai API Security
API Security is a comprehensive solution that provides continuous discovery, vulnerability assessment, threat detection, compliance monitoring, dynamic testing, and remediation capabilities to protect APIs against various threats and vulnerabilities.
0
Commercial
Application Security
Api Security
Appsec
Application Security
+5
Akamai App & API Protector
Akamai App & API Protector is an integrated security solution that safeguards web applications and APIs against various cyber threats using edge computing and adaptive technologies.
0
Commercial
Application Security
Application Security
Api Security
Web Security
Ddos
Waf
Bot Detection
Akamai App & API Protector
Akamai App & API Protector is an integrated security solution that safeguards web applications and APIs against various cyber threats using edge computing and adaptive technologies.
0
Commercial
Application Security
Application Security
Api Security
Web Security
+3
Tenable Web App Scanning
Tenable One Exposure Management Platform is a comprehensive platform for vulnerability management and exposure management.
0
Commercial
Application Security
Vulnerability Management
Web Application Security
Attack Surface
Cloud Security
Tenable Web App Scanning
Tenable One Exposure Management Platform is a comprehensive platform for vulnerability management and exposure management.
0
Commercial
Application Security
Vulnerability Management
Web Application Security
Attack Surface
+1
Snyk Code
Snyk Code is a real-time SAST tool that provides secure code analysis and actionable remediation advice to prevent code delays and ensure secure development.
0
Commercial
Application Security
Api Metadata
Appsec
Apparmor
Application Security
Aws
Aws Config
Aws Secrets
Aws Security
Snyk Code
Snyk Code is a real-time SAST tool that provides secure code analysis and actionable remediation advice to prevent code delays and ensure secure development.
0
Commercial
Application Security
Api Metadata
Appsec
Apparmor
+5
Contrast Code Security Platform
The Contrast Runtime Security Platform is a suite of application security tools that integrates security into the software development lifecycle and production environments, including IAST, SAST, RASP, and SCA capabilities.
0
Commercial
Application Security
Application Security
Appsec
Sast
Contrast Code Security Platform
The Contrast Runtime Security Platform is a suite of application security tools that integrates security into the software development lifecycle and production environments, including IAST, SAST, RASP, and SCA capabilities.
0
Commercial
Application Security
Application Security
Appsec
Sast
Checkmarx SAST
Checkmarx One SAST is a static application security testing tool that combines speed and security to improve developer experience.
0
Commercial
Application Security
Api Metadata
Appsec
Appsecurity
Application Security
Security Testing
Sast
Checkmarx SAST
Checkmarx One SAST is a static application security testing tool that combines speed and security to improve developer experience.
0
Commercial
Application Security
Api Metadata
Appsec
Appsecurity
+3
Veracode
Veracode is an intelligent software security platform that helps developers and security teams secure code, find and fix flaws, and automate remediation.
0
Commercial
Application Security
Appsec
App Security
Security Testing
Vulnerability Scanning
Code Security
Veracode
Veracode is an intelligent software security platform that helps developers and security teams secure code, find and fix flaws, and automate remediation.
0
Commercial
Application Security
Appsec
App Security
Security Testing
+2
Node.js Goof
Goof is a vulnerable Node.js demo application that includes a series of vulnerabilities and exploits
0
Free
Application Security
Appsec
Nodejs
Vulnerable App
Docker
Open Redirect
Code Injection
Xss
Local File Inclusion
Directory Traversal
Command Execution
Node.js Goof
Goof is a vulnerable Node.js demo application that includes a series of vulnerabilities and exploits
0
Free
Application Security
Appsec
Nodejs
Vulnerable App
+7
Verisys Antivirus API
Scan files for viruses and malware with language-agnostic REST API
0
Commercial
Application Security
Antivirus
File Scanning
Malware Detection
Rest Api
Verisys Antivirus API
Scan files for viruses and malware with language-agnostic REST API
0
Commercial
Application Security
Antivirus
File Scanning
Malware Detection
+1
Codacy
A developer-first, API-driven platform that provides development teams with a suite of tools to improve code quality, security, and engineering performance, seamlessly integrated into their existing development workflows.
0
Commercial
Application Security
Code Analysis
Code Security
Devops
Ci Cd
Codacy
A developer-first, API-driven platform that provides development teams with a suite of tools to improve code quality, security, and engineering performance, seamlessly integrated into their existing development workflows.
0
Commercial
Application Security
Code Analysis
Code Security
Devops
+1
WPRecon
WPRecon is a tool for recognizing vulnerabilities and blackbox information for WordPress.
0
Free
Application Security
Wordpress
Vulnerability Scanning
WPRecon
WPRecon is a tool for recognizing vulnerabilities and blackbox information for WordPress.
0
Free
Application Security
Wordpress
Vulnerability Scanning
InQL
InQL is a Burp Suite extension for advanced GraphQL testing and vulnerability detection
0
Free
Application Security
Graphql
Burp Suite
Vulnerability Detection
InQL
InQL is a Burp Suite extension for advanced GraphQL testing and vulnerability detection
0
Free
Application Security
Graphql
Burp Suite
Vulnerability Detection
BurpJSLinkFinder
A Burp extension for scanning JavaScript files for endpoint links
0
Free
Application Security
Appsec
Javascript
Security Audit
Vulnerability Detection
BurpJSLinkFinder
A Burp extension for scanning JavaScript files for endpoint links
0
Free
Application Security
Appsec
Javascript
Security Audit
+1
XSSwagger
A simple Swagger-ui scanner that detects old versions vulnerable to various XSS attacks
0
Free
Application Security
Xss
Vulnerability Scanning
Security Audit
Devsecops
Security Testing
XSSwagger
A simple Swagger-ui scanner that detects old versions vulnerable to various XSS attacks
0
Free
Application Security
Xss
Vulnerability Scanning
Security Audit
+2

Application Security

RELATED TASKS

PINNED

OSINTLeak

OSINTLeak

ImmuniWeb® Discovery

ImmuniWeb® Discovery

Checkmarx SCA

Checkmarx SCA

Check Point CloudGuard WAF

Check Point CloudGuard WAF

Orca Security

Orca Security

DryRun

DryRun

LATEST ADDITIONS

Akamai API Security

Akamai API Security

Akamai App & API Protector

Akamai App & API Protector

Tenable Web App Scanning

Tenable Web App Scanning

Snyk Code

Snyk Code

Contrast Code Security Platform

Contrast Code Security Platform

Checkmarx SAST

Checkmarx SAST

Veracode

Veracode

Node.js Goof

Node.js Goof

Verisys Antivirus API

Verisys Antivirus API

Codacy

Codacy

WPRecon

WPRecon

InQL

InQL

BurpJSLinkFinder

BurpJSLinkFinder

XSSwagger

XSSwagger