Vulnerability Management for Security Testing

Tools for identifying, prioritizing, and remediating security vulnerabilities in systems and applications. Task: Security Testing
Explore 20 curated tools and resources

Search tools and resources by name, description, or purpose... (⌘+K)

All

Free

Commercial

Task

RELATED TASKS

ai (1)android-security (1)ansible (1)antivirus (1)api (1)api-metadata (1)api-security (2)app-security (10)apparmor (2)application-security (4)

PINNED

ImmuniWeb® Discovery
ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.
0
Commercial
Attack Surface Management
Attack Surface Management
Attack Surface
Continuous Monitoring
Dark Web Monitoring
Cloud Security
Vulnerability Management
Compliance
Third Party Risk
Threat Intelligence
Security Monitoring
ImmuniWeb® Discovery
ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.
0
Commercial
Attack Surface Management
Attack Surface Management
Attack Surface
Continuous Monitoring
+7
InfoSecHired
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.
2
Commercial
Resources
Resources
Cybersecurity
Education
Training
Security Professionals
InfoSecHired
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.
2
Commercial
Resources
Resources
Cybersecurity
Education
+2
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
1
Commercial
Application Security
Application Security
Dependency Scanning
Vulnerability Management
Software Supply Chain
Open Source
Sbom
Security Scanning
Devsecops
Vulnerability Detection
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
1
Commercial
Application Security
Application Security
Dependency Scanning
Vulnerability Management
+6
Check Point CloudGuard WAF
A cloud-native web application and API security solution that uses contextual AI to protect against known and zero-day threats without signature-based detection.
1
Commercial
Application Security
Web App Security
Api Security
Cloud Security
Waf
Ddos
Bot Detection
Machine Learning
Api Discovery
Threat Prevention
Zero Day
Check Point CloudGuard WAF
A cloud-native web application and API security solution that uses contextual AI to protect against known and zero-day threats without signature-based detection.
1
Commercial
Application Security
Web App Security
Api Security
Cloud Security
+7
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
0
Commercial
Cloud Security
Cloud Security
Cloud Native
Vulnerability Management
Compliance
Container Security
Cloud Compliance
Api Security
Kubernetes Security
Security Monitoring
Security Automation
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
0
Commercial
Cloud Security
Cloud Security
Cloud Native
Vulnerability Management
+7
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.
1
Commercial
Application Security
Application Security
Github
Code Security
Static Analysis
Security Automation
Devsecops
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.
1
Commercial
Application Security
Application Security
Github
Code Security
+3

LATEST ADDITIONS

dom-red
A small script to check a list of domains against open redirect vulnerability
0
Free
Vulnerability Management
Open Redirect
Vulnerability Scanning
Domain Check
Command Line Tool
Security Testing
Vulnerability Detection
dom-red
A small script to check a list of domains against open redirect vulnerability
0
Free
Vulnerability Management
Open Redirect
Vulnerability Scanning
Domain Check
+3
FuzzDB
A comprehensive open dictionary of fault injection patterns and predictable resource locations for dynamic application security testing
0
Free
Vulnerability Management
Appsec
Attack Paths
Binary Security
Security Testing
Vulnerability Detection
FuzzDB
A comprehensive open dictionary of fault injection patterns and predictable resource locations for dynamic application security testing
0
Free
Vulnerability Management
Appsec
Attack Paths
Binary Security
+2
Vuldroid
A vulnerable Android application demonstrating various security issues and vulnerabilities
0
Free
Vulnerability Management
Appsec
Appsec Tool
Vulnerable App
Security Testing
Penetration Testing
Vuldroid
A vulnerable Android application demonstrating various security issues and vulnerabilities
0
Free
Vulnerability Management
Appsec
Appsec Tool
Vulnerable App
+2
MCIR
A framework for building code injection vulnerability testbeds
0
Free
Vulnerability Management
Appsec
Appsec Testing
Code Injection
Vulnerability Testing
Security Testing
MCIR
A framework for building code injection vulnerability testbeds
0
Free
Vulnerability Management
Appsec
Appsec Testing
Code Injection
+2
testssl.sh
testssl.sh is a free command line tool for checking server's TLS/SSL configurations with clear and machine-readable output.
0
Free
Vulnerability Management
Ssl
Tls
Protocol
Security Testing
Network Security
testssl.sh
testssl.sh is a free command line tool for checking server's TLS/SSL configurations with clear and machine-readable output.
0
Free
Vulnerability Management
Ssl
Tls
Protocol
+2
Flan
A vulnerability scanner that helps you identify and fix vulnerabilities in your code
0
Free
Vulnerability Management
Vulnerability Scanning
Vulnerability Detection
Security Testing
Penetration Testing
Vulnerability Assessment
Flan
A vulnerability scanner that helps you identify and fix vulnerabilities in your code
0
Free
Vulnerability Management
Vulnerability Scanning
Vulnerability Detection
Security Testing
+2
Securibench Micro
A series of small test cases designed to exercise different parts of a static security analyzer
0
Free
Vulnerability Management
Appsec
Apparmor
Appsec Testing
Security Testing
Vulnerability Scanning
Penetration Testing
Securibench Micro
A series of small test cases designed to exercise different parts of a static security analyzer
0
Free
Vulnerability Management
Appsec
Apparmor
Appsec Testing
+3
Commix-Testbed
A collection of real-world scenarios to evaluate command injection detection and exploitation abilities
0
Free
Vulnerability Management
Appsec
Apparmor
Appsec Testing
Bug Bounty
Security Testing
Commix-Testbed
A collection of real-world scenarios to evaluate command injection detection and exploitation abilities
0
Free
Vulnerability Management
Appsec
Apparmor
Appsec Testing
+2
sqliv
A massive SQL injection vulnerability scanner
0
Free
Vulnerability Management
Sql Injection
Vulnerability Scanning
Scanner
Security Testing
Penetration Testing
sqliv
A massive SQL injection vulnerability scanner
0
Free
Vulnerability Management
Sql Injection
Vulnerability Scanning
Scanner
+2
Vulnerable Node
A vulnerable web site in NodeJS for testing security source code analyzers.
0
Free
Vulnerability Management
Nodejs
Source Code Analysis
Security Testing
Web Application Security
Vulnerable Node
A vulnerable web site in NodeJS for testing security source code analyzers.
0
Free
Vulnerability Management
Nodejs
Source Code Analysis
Security Testing
+1
Hack Yourself First
Platform for users to test cybersecurity skills by exploiting vulnerabilities.
0
Free
Vulnerability Management
Bug Bounty
Ctf
Hacking
Infosec
Penetration Testing
Security Testing
Hack Yourself First
Platform for users to test cybersecurity skills by exploiting vulnerabilities.
0
Free
Vulnerability Management
Bug Bounty
Ctf
Hacking
+3
Lambda-Proxy
A utility for testing AWS Lambda functions for SQL Injection vulnerabilities using SQLMap attacks.
0
Free
Vulnerability Management
Aws
Aws Lambda
Sql Injection
Vulnerability Testing
Security Testing
Lambda-Proxy
A utility for testing AWS Lambda functions for SQL Injection vulnerabilities using SQLMap attacks.
0
Free
Vulnerability Management
Aws
Aws Lambda
Sql Injection
+2
Metasploitable3
A virtual machine with numerous security vulnerabilities for testing exploits with Metasploit.
0
Free
Vulnerability Management
Metasploit
Vulnerability Testing
Security Testing
Pentesting
Metasploitable3
A virtual machine with numerous security vulnerabilities for testing exploits with Metasploit.
0
Free
Vulnerability Management
Metasploit
Vulnerability Testing
Security Testing
+1
LeakIX
LeakIX is a red-team search engine that indexes mis-configurations and vulnerabilities online.
0
Free
Vulnerability Management
Red Team
Search Engine
Security Testing
LeakIX
LeakIX is a red-team search engine that indexes mis-configurations and vulnerabilities online.
0
Free
Vulnerability Management
Red Team
Search Engine
Security Testing

Vulnerability Management for Security Testing

RELATED TASKS

PINNED

ImmuniWeb® Discovery

ImmuniWeb® Discovery

InfoSecHired

InfoSecHired

Checkmarx SCA

Checkmarx SCA

Check Point CloudGuard WAF

Check Point CloudGuard WAF

Orca Security

Orca Security

DryRun

DryRun

LATEST ADDITIONS

dom-red

dom-red

FuzzDB

FuzzDB

Vuldroid

Vuldroid

MCIR

MCIR

testssl.sh

testssl.sh

Flan

Flan

Securibench Micro

Securibench Micro

Commix-Testbed

Commix-Testbed

sqliv

sqliv

Vulnerable Node

Vulnerable Node

Hack Yourself First

Hack Yourself First

Lambda-Proxy

Lambda-Proxy

Metasploitable3

Metasploitable3

LeakIX

LeakIX