Offensive Security for Web Application Security

PINNED

• 

  OSINTLeak

  OSINTLeak is a tool for discovering and analyzing leaked sensitive information across various online sources to identify potential security risks.

  2

  Commercial

  Digital Forensics

  Osint

  Information Security

  Security Tools

  Data Breach

  Reconnaissance

  Security Research

  Threat Intelligence

  Red Team

  Blue Team

  Vulnerability Assessment

  

  OSINTLeak

  OSINTLeak is a tool for discovering and analyzing leaked sensitive information across various online sources to identify potential security risks.

  2

  Commercial

  Digital Forensics

  Osint

  Information Security

  Security Tools

  +7
• 

  ImmuniWeb® Discovery

  ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.

  0

  Commercial

  Attack Surface Management

  Attack Surface Management

  Attack Surface

  Continuous Monitoring

  Dark Web Monitoring

  Cloud Security

  Vulnerability Management

  Compliance

  Third Party Risk

  Threat Intelligence

  Security Monitoring

  

  ImmuniWeb® Discovery

  ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.

  0

  Commercial

  Attack Surface Management

  Attack Surface Management

  Attack Surface

  Continuous Monitoring

  +7
• 

  Checkmarx SCA

  A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

  1

  Commercial

  Application Security

  Application Security

  Dependency Scanning

  Vulnerability Management

  Software Supply Chain

  Open Source

  Sbom

  Security Scanning

  Devsecops

  Vulnerability Detection

  

  Checkmarx SCA

  A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

  1

  Commercial

  Application Security

  Application Security

  Dependency Scanning

  Vulnerability Management

  +6
• 

  Check Point CloudGuard WAF

  A cloud-native web application and API security solution that uses contextual AI to protect against known and zero-day threats without signature-based detection.

  1

  Commercial

  Application Security

  Web App Security

  Api Security

  Cloud Security

  Waf

  Ddos

  Bot Detection

  Machine Learning

  Api Discovery

  Threat Prevention

  Zero Day

  

  Check Point CloudGuard WAF

  A cloud-native web application and API security solution that uses contextual AI to protect against known and zero-day threats without signature-based detection.

  1

  Commercial

  Application Security

  Web App Security

  Api Security

  Cloud Security

  +7
• 

  Orca Security

  A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

  0

  Commercial

  Cloud Security

  Cloud Security

  Cloud Native

  Vulnerability Management

  Compliance

  Container Security

  Cloud Compliance

  Api Security

  Kubernetes Security

  Security Monitoring

  Security Automation

  

  Orca Security

  A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

  0

  Commercial

  Cloud Security

  Cloud Security

  Cloud Native

  Vulnerability Management

  +7
• 

  DryRun

  A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.

  1

  Commercial

  Application Security

  Application Security

  Github

  Code Security

  Static Analysis

  Security Automation

  Devsecops

  

  DryRun

  A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.

  1

  Commercial

  Application Security

  Application Security

  Github

  Code Security

  +3

LATEST ADDITIONS

• 

  httprebind

  Automatic tool for DNS rebinding-based SSRF attacks

  0

  Free

  Offensive Security

  Dns Rebinding

  Ssrf

  Penetration Testing

  Security Research

  Web Application Security

  

  httprebind

  Automatic tool for DNS rebinding-based SSRF attacks

  0

  Free

  Offensive Security

  Dns Rebinding

  Ssrf

  Penetration Testing

  +2
• 

  Singularity

  A DNS rebinding attack framework for security researchers and penetration testers.

  0

  Free

  Offensive Security

  Dns Rebinding

  Penetration Testing

  Security Research

  Web Application Security

  Network Security

  

  Singularity

  A DNS rebinding attack framework for security researchers and penetration testers.

  0

  Free

  Offensive Security

  Dns Rebinding

  Penetration Testing

  Security Research

  +2
• 

  ParamSpider

  A tool for mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probing

  1

  Free

  Offensive Security

  Bug Bounty

  Bug Hunting

  Fuzzing

  Security Research

  Web Application Security

  Web Scraping

  

  ParamSpider

  A tool for mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probing

  1

  Free

  Offensive Security

  Bug Bounty

  Bug Hunting

  Fuzzing

  +3
• 

  Raccoon

  Offensive security tool for reconnaissance and information gathering with a wide range of features and future roadmap.

  0

  Free

  Offensive Security

  Dns

  Reconnaissance

  Port Scanning

  Subdomain Enumeration

  Web Application Security

  

  Raccoon

  Offensive security tool for reconnaissance and information gathering with a wide range of features and future roadmap.

  0

  Free

  Offensive Security

  Dns

  Reconnaissance

  Port Scanning

  +2
• 

  Payloads All The Things

  A list of useful payloads and bypasses for Web Application Security.

  0

  Free

  Offensive Security

  Appsec

  Appsec Tool

  Web Application Security

  Dns Rebinding

  Blind Xss

  Rebinding

  Xss Scanner

  Jwt

  Jwt Security

  

  Payloads All The Things

  A list of useful payloads and bypasses for Web Application Security.

  0

  Free

  Offensive Security

  Appsec

  Appsec Tool

  Web Application Security

  +6
• 

  Modlishka

  Modlishka is a reverse proxy tool for intercepting and manipulating HTTP traffic, ideal for penetration testers, security researchers, and developers to analyze and test web applications.

  0

  Free

  Offensive Security

  Reverse Proxy

  Penetration Testing

  Web Application Security

  Security Testing

  

  Modlishka

  Modlishka is a reverse proxy tool for intercepting and manipulating HTTP traffic, ideal for penetration testers, security researchers, and developers to analyze and test web applications.

  0

  Free

  Offensive Security

  Reverse Proxy

  Penetration Testing

  Web Application Security

  +1
• 

  Wfuzz

  Wfuzz is a tool designed for bruteforcing Web Applications with multiple features like multiple injection points, recursion, and payload combinations.

  0

  Free

  Offensive Security

  Appsec

  Bruteforce

  Injection

  Web Application Security

  Web Security

  

  Wfuzz

  Wfuzz is a tool designed for bruteforcing Web Applications with multiple features like multiple injection points, recursion, and payload combinations.

  0

  Free

  Offensive Security

  Appsec

  Bruteforce

  Injection

  +2
• 

  BeEF

  BeEF is a specialized penetration testing tool for exploiting web browser vulnerabilities to assess security.

  0

  Free

  Offensive Security

  Penetration Testing

  Web Application Security

  Browser Security

  Exploitation Framework

  

  BeEF

  BeEF is a specialized penetration testing tool for exploiting web browser vulnerabilities to assess security.

  0

  Free

  Offensive Security

  Penetration Testing

  Web Application Security

  Browser Security

  +1