Explore the largest curated directory of cybersecurity tools and resources to enhance your security practices. Find the right solution for your domain.

LINKS

Blog Contact

LEGAL

Terms of services Privacy policy

CyberSecTools

CyberSecTools

Explore the largest curated directory of cybersecurity tools and resources to enhance your security practices. Find the right solution for your domain.

LINKS

Blog Contact

LEGAL

Terms of services Privacy policy

Application Security

Essential tools and best practices for securing software applications throughout their lifecycle.Explore 246 curated tools and resources

Search tools and resources by name, description, or purpose... (⌘+K)

All

Free

Commercial

Task

Home
Categories
Application Security

PINNED

OSINTLeak
OSINTLeak is a tool for discovering and analyzing leaked sensitive information across various online sources to identify potential security risks.
2
Commercial
Digital Forensics
Osint
Information Security
Security Tools
Data Breach
Reconnaissance
Security Research
Threat Intelligence
Red Team
Blue Team
Vulnerability Assessment
OSINTLeak
OSINTLeak is a tool for discovering and analyzing leaked sensitive information across various online sources to identify potential security risks.
2
Commercial
Digital Forensics
Osint
Information Security
Security Tools
+7
ImmuniWeb® Discovery
ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.
0
Commercial
Attack Surface Management
Attack Surface Management
Attack Surface
Continuous Monitoring
Dark Web Monitoring
Cloud Security
Vulnerability Management
Compliance
Third Party Risk
Threat Intelligence
Security Monitoring
ImmuniWeb® Discovery
ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.
0
Commercial
Attack Surface Management
Attack Surface Management
Attack Surface
Continuous Monitoring
+7
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
1
Commercial
Application Security
Application Security
Dependency Scanning
Vulnerability Management
Software Supply Chain
Open Source
Sbom
Security Scanning
Devsecops
Vulnerability Detection
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
1
Commercial
Application Security
Application Security
Dependency Scanning
Vulnerability Management
+6
Check Point CloudGuard WAF
A cloud-native web application and API security solution that uses contextual AI to protect against known and zero-day threats without signature-based detection.
1
Commercial
Application Security
Web App Security
Api Security
Cloud Security
Waf
Ddos
Bot Detection
Machine Learning
Api Discovery
Threat Prevention
Zero Day
Check Point CloudGuard WAF
A cloud-native web application and API security solution that uses contextual AI to protect against known and zero-day threats without signature-based detection.
1
Commercial
Application Security
Web App Security
Api Security
Cloud Security
+7
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
0
Commercial
Cloud Security
Cloud Security
Cloud Native
Vulnerability Management
Compliance
Container Security
Cloud Compliance
Api Security
Kubernetes Security
Security Monitoring
Security Automation
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
0
Commercial
Cloud Security
Cloud Security
Cloud Native
Vulnerability Management
+7
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.
1
Commercial
Application Security
Application Security
Github
Code Security
Static Analysis
Security Automation
Devsecops
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.
1
Commercial
Application Security
Application Security
Github
Code Security
+3

LATEST ADDITIONS

Autorize
Automatic authorization enforcement detection extension for Burp Suite
0
Free
Application Security
Burp Suite
Authorization
Security Testing
Autorize
Automatic authorization enforcement detection extension for Burp Suite
0
Free
Application Security
Burp Suite
Authorization
Security Testing
QIRA
QIRA is a competitor to strace and gdb with MIT license, supporting Ubuntu and Docker for wider compatibility.
0
Free
Application Security
Debugging
Gdb
Mit License
Ubuntu
Docker
QIRA
QIRA is a competitor to strace and gdb with MIT license, supporting Ubuntu and Docker for wider compatibility.
0
Free
Application Security
Debugging
Gdb
Mit License
+2
Betterscan
Orchestration toolchain for scanning source code and infrastructure IaC against security risks.
0
Free
Application Security
Appsec
Compliance
Cloud Security
Dependency Scanning
Infrastructure As Code
Betterscan
Orchestration toolchain for scanning source code and infrastructure IaC against security risks.
0
Free
Application Security
Appsec
Compliance
Cloud Security
+2
HackSys Extreme Vulnerable Driver (HEVD)
A Windows Kernel driver intentionally vulnerable to help improve skills in kernel-level exploitation.
0
Free
Application Security
Binary Security
Windows
Exploitation
HackSys Extreme Vulnerable Driver (HEVD)
A Windows Kernel driver intentionally vulnerable to help improve skills in kernel-level exploitation.
0
Free
Application Security
Binary Security
Windows
Exploitation
The Update Framework (TUF)
A tool for secure content publishing and verification using offline signing and trusted collections.
0
Free
Application Security
The Update Framework (TUF)
A tool for secure content publishing and verification using offline signing and trusted collections.
0
Free
Application Security
Redirecting
A tool for redirecting HTTP and HTTPS requests to other URLs.
0
Free
Application Security
Redirection
Http
Https
Redirecting
A tool for redirecting HTTP and HTTPS requests to other URLs.
0
Free
Application Security
Redirection
Http
Https
Bearer CLI
Static application security testing (SAST) tool for scanning source code against security and privacy risks.
0
Free
Application Security
Appsec
Sast
Static Analysis
Security Testing
Vulnerability Scanning
Code Security
Bearer CLI
Static application security testing (SAST) tool for scanning source code against security and privacy risks.
0
Free
Application Security
Appsec
Sast
Static Analysis
+3
Webshell-Sniper
A webshell manager via terminal for controlling web servers running PHP or MySQL.
0
Free
Application Security
Php
Mysql
Unix
Terminal
Web Server
Webshell-Sniper
A webshell manager via terminal for controlling web servers running PHP or MySQL.
0
Free
Application Security
Php
Mysql
Unix
+2
App-Ray
App-Ray offers comprehensive security analysis and compliance solutions for mobile applications.
0
Free
Application Security
Appsec
Compliance
Devops
Fuzzing
Mobile Security
Network Security
Sdk
Security Testing
Vulnerability Analysis
App-Ray
App-Ray offers comprehensive security analysis and compliance solutions for mobile applications.
0
Free
Application Security
Appsec
Compliance
Devops
+6
Hackazon
Hackazon is a free, vulnerable test site with an online storefront to train and test IT security professionals on various vulnerabilities like SQL Injection and cross-site scripting.
0
Free
Application Security
Appsec
Apparmor
Appsec Testing
Vulnerable Apps
Web App Security
Sql Injection
Restful Api
Mobile Security
Hackazon
Hackazon is a free, vulnerable test site with an online storefront to train and test IT security professionals on various vulnerabilities like SQL Injection and cross-site scripting.
0
Free
Application Security
Appsec
Apparmor
Appsec Testing
+5
Secure Coding Guidelines for Java SE
Guidelines for secure coding in Java SE to avoid bugs that could weaken security and open holes in Java's security features.
0
Free
Application Security
Java
Security
Bug Bounty
Vulnerability
Secure Coding Guidelines for Java SE
Guidelines for secure coding in Java SE to avoid bugs that could weaken security and open holes in Java's security features.
0
Free
Application Security
Java
Security
Bug Bounty
+1
snync
Mitigate security concerns of Dependency Confusion supply chain security risks.
0
Free
Application Security
Appsec
Apparmor
Appsec
Dependency Management
Dependency Scanning
Devsecops
Npm
Package Management
Security Audit
snync
Mitigate security concerns of Dependency Confusion supply chain security risks.
0
Free
Application Security
Appsec
Apparmor
Appsec
+6
WP-Smart-Honeypot
WordPress plugin to reduce comment spam with a smarter honeypot.
0
Free
Application Security
Infosec
Spam Prevention
Honeypot
Security Tool
WP-Smart-Honeypot
WordPress plugin to reduce comment spam with a smarter honeypot.
0
Free
Application Security
Infosec
Spam Prevention
Honeypot
+1
TerraGoat
A learning and training project demonstrating common configuration errors in cloud environments.
0
Free
Application Security
Terraform
Devsecops
Misconfiguration
Cloud Security
TerraGoat
A learning and training project demonstrating common configuration errors in cloud environments.
0
Free
Application Security
Terraform
Devsecops
Misconfiguration
+1

Application Security

RELATED TASKS

PINNED

OSINTLeak

OSINTLeak

ImmuniWeb® Discovery

ImmuniWeb® Discovery

Checkmarx SCA

Checkmarx SCA

Check Point CloudGuard WAF

Check Point CloudGuard WAF

Orca Security

Orca Security

DryRun

DryRun

LATEST ADDITIONS

Autorize

Autorize

QIRA

QIRA

Betterscan

Betterscan

HackSys Extreme Vulnerable Driver (HEVD)

HackSys Extreme Vulnerable Driver (HEVD)

The Update Framework (TUF)

The Update Framework (TUF)

Redirecting

Redirecting

Bearer CLI

Bearer CLI

Webshell-Sniper

Webshell-Sniper

App-Ray

App-Ray

Hackazon

Hackazon

Secure Coding Guidelines for Java SE

Secure Coding Guidelines for Java SE

snync

snync

WP-Smart-Honeypot

WP-Smart-Honeypot

TerraGoat

TerraGoat