Akto Logo

Akto

0
Commercial
Application Security
Api Security
Application Security
Devsecops
Authentication
Vulnerability Management
Ci Cd
Visit Website

Akto is an API security platform that provides functionality for API discovery, security testing, and monitoring. The platform includes capabilities for: API Discovery and Inventory: - Discovers APIs across internal, public, and third-party applications - Identifies sensitive data exposure and PII in API traffic - Monitors API changes and new endpoints Security Testing: - Performs authentication and authorization testing - Tests for OWASP API Top 10 vulnerabilities - Enables API security testing in CI/CD pipelines - Includes test cases for JWT vulnerabilities, IDOR, access control issues Monitoring and Management: - Provides continuous API security posture monitoring - Supports multiple API protocols including REST, SOAP, GraphQL, gRPC - Integrates with various traffic sources through connectors - Offers deployment options for cloud and on-premises environments

FEATURES

ALTERNATIVES

The Update Framework (TUF) Logo
The Update Framework (TUF)

A tool for secure content publishing and verification using offline signing and trusted collections.

Free
Application Security
Curiefense Logo
Curiefense

Curiefense is an application security platform that protects against various threats and offers community involvement.

Free
Application Security
Operating System Based Redirection with Apache mod_rewrite Logo
Operating System Based Redirection with Apache mod_rewrite

Detect users' operating systems and perform redirection with Apache mod_rewrite.

Free
Application Security
Google Play Crawler JAVA API Logo
Google Play Crawler JAVA API

A Java API for searching and downloading Android applications from Google Play with additional check-in features for generating ANDROID-ID.

Free
Application Security
Aikido Security Logo
Aikido Security

Aikido is an all-in-one security platform that combines multiple security scanning and management functions for cloud-native applications and infrastructure.

Commercial
Application Security
Beagle Security Logo
Beagle Security

An automated security testing platform that performs AI-driven penetration testing and vulnerability assessment for web applications and APIs with compliance reporting capabilities.

Commercial
Application Security
Webshell-Sniper Logo
Webshell-Sniper

A webshell manager via terminal for controlling web servers running PHP or MySQL.

Free
Application Security
SonarQube Server Logo
SonarQube Server

A self-managed static code analysis platform that conducts continuous inspection of codebases to identify security vulnerabilities, bugs, and code quality issues.

Commercial
Application Security

PINNED

Mandos Brief Newsletter Logo

Mandos Brief Newsletter

A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.

Resources
PTJunior Logo

PTJunior

An AI-powered penetration testing platform that autonomously discovers, exploits, and documents vulnerabilities while generating NIST-compliant reports.

Offensive Security
CTIChef.com Detection Feeds Logo

CTIChef.com Detection Feeds

A tiered cyber threat intelligence service providing detection rules from public repositories with varying levels of analysis, processing, and guidance for security teams.

Threat Management
ImmuniWeb® Discovery Logo

ImmuniWeb® Discovery

ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.

Attack Surface Management
Checkmarx SCA Logo

Checkmarx SCA

A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Application Security
Orca Security Logo

Orca Security

A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

Cloud Security
DryRun Logo

DryRun

A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.

Application Security