Explore the largest curated directory of cybersecurity tools and resources to enhance your security practices. Find the right solution for your domain.

LINKS

Blog Contact

LEGAL

Terms of services Privacy policy

CyberSecTools

CyberSecTools

Explore the largest curated directory of cybersecurity tools and resources to enhance your security practices. Find the right solution for your domain.

LINKS

Blog Contact

LEGAL

Terms of services Privacy policy

Application Security

Essential tools and best practices for securing software applications throughout their lifecycle.Explore 246 curated tools and resources

Search tools and resources by name, description, or purpose... (⌘+K)

All

Free

Commercial

Task

Home
Categories
Application Security

PINNED

OSINTLeak
OSINTLeak is a tool for discovering and analyzing leaked sensitive information across various online sources to identify potential security risks.
2
Commercial
Digital Forensics
Osint
Information Security
Security Tools
Data Breach
Reconnaissance
Security Research
Threat Intelligence
Red Team
Blue Team
Vulnerability Assessment
OSINTLeak
OSINTLeak is a tool for discovering and analyzing leaked sensitive information across various online sources to identify potential security risks.
2
Commercial
Digital Forensics
Osint
Information Security
Security Tools
+7
ImmuniWeb® Discovery
ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.
0
Commercial
Attack Surface Management
Attack Surface Management
Attack Surface
Continuous Monitoring
Dark Web Monitoring
Cloud Security
Vulnerability Management
Compliance
Third Party Risk
Threat Intelligence
Security Monitoring
ImmuniWeb® Discovery
ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.
0
Commercial
Attack Surface Management
Attack Surface Management
Attack Surface
Continuous Monitoring
+7
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
1
Commercial
Application Security
Application Security
Dependency Scanning
Vulnerability Management
Software Supply Chain
Open Source
Sbom
Security Scanning
Devsecops
Vulnerability Detection
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
1
Commercial
Application Security
Application Security
Dependency Scanning
Vulnerability Management
+6
Check Point CloudGuard WAF
A cloud-native web application and API security solution that uses contextual AI to protect against known and zero-day threats without signature-based detection.
1
Commercial
Application Security
Web App Security
Api Security
Cloud Security
Waf
Ddos
Bot Detection
Machine Learning
Api Discovery
Threat Prevention
Zero Day
Check Point CloudGuard WAF
A cloud-native web application and API security solution that uses contextual AI to protect against known and zero-day threats without signature-based detection.
1
Commercial
Application Security
Web App Security
Api Security
Cloud Security
+7
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
0
Commercial
Cloud Security
Cloud Security
Cloud Native
Vulnerability Management
Compliance
Container Security
Cloud Compliance
Api Security
Kubernetes Security
Security Monitoring
Security Automation
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
0
Commercial
Cloud Security
Cloud Security
Cloud Native
Vulnerability Management
+7
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.
1
Commercial
Application Security
Application Security
Github
Code Security
Static Analysis
Security Automation
Devsecops
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.
1
Commercial
Application Security
Application Security
Github
Code Security
+3

LATEST ADDITIONS

XSSwagger
A simple Swagger-ui scanner that detects old versions vulnerable to various XSS attacks
0
Free
Application Security
Xss
Vulnerability Scanning
Security Audit
Devsecops
Security Testing
XSSwagger
A simple Swagger-ui scanner that detects old versions vulnerable to various XSS attacks
0
Free
Application Security
Xss
Vulnerability Scanning
Security Audit
+2
CMSmap
A python open source CMS scanner that automates the process of detecting security flaws of the most popular CMSs.
0
Free
Application Security
Scanner
Vulnerability Detection
Pentest
Penetration Testing
CMSmap
A python open source CMS scanner that automates the process of detecting security flaws of the most popular CMSs.
0
Free
Application Security
Scanner
Vulnerability Detection
Pentest
+1
jaeles
Automated web application testing tool
1
Free
Application Security
Appsec
Web Application Security
Vulnerability Scanning
Security Testing
jaeles
Automated web application testing tool
1
Free
Application Security
Appsec
Web Application Security
Vulnerability Scanning
+1
headi
A tool for automated HTTP header injection
0
Free
Application Security
Security Testing
Vulnerability Scanning
Web Application Security
headi
A tool for automated HTTP header injection
0
Free
Application Security
Security Testing
Vulnerability Scanning
Web Application Security
Param Miner
A tool for identifying and extracting parameters from HTTP requests and responses
0
Free
Application Security
Appsec
Http
Security Testing
Vulnerability Assessment
Param Miner
A tool for identifying and extracting parameters from HTTP requests and responses
0
Free
Application Security
Appsec
Http
Security Testing
+1
Oralyzer
Open Redirection Analyzer
0
Free
Application Security
Appsec
Vulnerability Scanning
Web App Security
Security Research
Devsecops
Oralyzer
Open Redirection Analyzer
0
Free
Application Security
Appsec
Vulnerability Scanning
Web App Security
+2
parameth
A tool for brute-forcing GET and POST parameters to discover potential vulnerabilities in web applications.
0
Free
Application Security
Appsec
App Security
Web App Security
Web Security
Vulnerability Detection
Vulnerability Assessment
parameth
A tool for brute-forcing GET and POST parameters to discover potential vulnerabilities in web applications.
0
Free
Application Security
Appsec
App Security
Web App Security
+3
Android Security Awesome
A collection of Android security related resources
0
Free
Application Security
Security
Resources
Android Security Awesome
A collection of Android security related resources
0
Free
Application Security
Security
Resources
Talisman
Pre-commit hook for validating outgoing changeset
0
Free
Application Security
Security Audit
Code Security
Vulnerability Detection
Talisman
Pre-commit hook for validating outgoing changeset
0
Free
Application Security
Security Audit
Code Security
Vulnerability Detection
GoLinkFinder
A fast and minimal JS endpoint extractor
0
Free
Application Security
Javascript
GoLinkFinder
A fast and minimal JS endpoint extractor
0
Free
Application Security
Javascript
WPSpider
A centralized dashboard for running and scheduling WordPress scans powered by wpscan utility.
0
Free
Application Security
Wordpress
Security Scanning
WPSpider
A centralized dashboard for running and scheduling WordPress scans powered by wpscan utility.
0
Free
Application Security
Wordpress
Security Scanning
DOMXSS Scanner
A free online tool to scan for DOM-based XSS vulnerabilities in HTML, JavaScript, and CSS files.
0
Free
Application Security
Xss
Vulnerability Scanning
Source Code Analysis
Web Security
Security Testing
DOMXSS Scanner
A free online tool to scan for DOM-based XSS vulnerabilities in HTML, JavaScript, and CSS files.
0
Free
Application Security
Xss
Vulnerability Scanning
Source Code Analysis
+2
Insider
Insider is a source code analysis tool focusing on OWASP Top 10 vulnerabilities with easy integration into DevOps pipelines.
0
Free
Application Security
Source Code Analysis
Vulnerability Detection
Devops
Code Security
Insider
Insider is a source code analysis tool focusing on OWASP Top 10 vulnerabilities with easy integration into DevOps pipelines.
0
Free
Application Security
Source Code Analysis
Vulnerability Detection
Devops
+1
Yara-Java
Embeddable Yara library for Java with support for loading rules and scanning data.
0
Free
Application Security
Yara
Java
Rule Engine
Binary Analysis
File Analysis
Yara-Java
Embeddable Yara library for Java with support for loading rules and scanning data.
0
Free
Application Security
Yara
Java
Rule Engine
+2

Application Security

RELATED TASKS

PINNED

OSINTLeak

OSINTLeak

ImmuniWeb® Discovery

ImmuniWeb® Discovery

Checkmarx SCA

Checkmarx SCA

Check Point CloudGuard WAF

Check Point CloudGuard WAF

Orca Security

Orca Security

DryRun

DryRun

LATEST ADDITIONS

XSSwagger

XSSwagger

CMSmap

CMSmap

jaeles

jaeles

headi

headi

Param Miner

Param Miner

Oralyzer

Oralyzer

parameth

parameth

Android Security Awesome

Android Security Awesome

Talisman

Talisman

GoLinkFinder

GoLinkFinder

WPSpider

WPSpider

DOMXSS Scanner

DOMXSS Scanner

Insider

Insider

Yara-Java

Yara-Java