Akto
Akto is an API security platform that provides functionality for API discovery, security testing, and monitoring. The platform includes capabilities for: API Discovery and Inventory: - Discovers APIs across internal, public, and third-party applications - Identifies sensitive data exposure and PII in API traffic - Monitors API changes and new endpoints Security Testing: - Performs authentication and authorization testing - Tests for OWASP API Top 10 vulnerabilities - Enables API security testing in CI/CD pipelines - Includes test cases for JWT vulnerabilities, IDOR, access control issues Monitoring and Management: - Provides continuous API security posture monitoring - Supports multiple API protocols including REST, SOAP, GraphQL, gRPC - Integrates with various traffic sources through connectors - Offers deployment options for cloud and on-premises environments
FEATURES
SIMILAR TOOLS
Dynamic instrumentation toolkit for developers, reverse-engineers, and security researchers.
An API security platform that discovers, documents, and tests APIs throughout the development lifecycle while maintaining a centralized catalog of all API assets.
Emulates browser functionality to detect exploits targeting browser vulnerabilities.
An ASPM platform that provides software supply chain security through risk assessment, prioritization, and protection mechanisms.
ImmuniWeb MobileSuite is a mobile application penetration testing platform that combines AI-powered automation with manual security testing to assess mobile apps and their backend infrastructure for security vulnerabilities and compliance requirements.
An application security platform that provides runtime threat modeling, vulnerability management, and automated remediation workflows with a focus on identifying exploitable vulnerabilities in production environments.
OWASP Damn Vulnerable Web Sockets (DVWS) is a vulnerable web application for client-server communication with numerous vulnerabilities.
PINNED
Mandos
Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.