Arnica
Arnica is an application security platform that provides comprehensive protection across the software development lifecycle. It offers real-time scanning and risk mitigation for various aspects of application security, including: 1. Code Security: Performs Static Application Security Testing (SAST), Software Composition Analysis (SCA), and Infrastructure as Code (IaC) scanning to identify vulnerabilities in source code and third-party dependencies. 2. Secret Detection and Mitigation: Identifies and helps mitigate hardcoded secrets in real-time. 3. Software Bill of Materials (SBOM): Generates a catalog of all open-source libraries used across an organization. 4. Automated Developer Access Management: Implements least privilege access control for developers. 5. Anomalous Developer Behavior Detection: Monitors and alerts on unusual developer activities to protect against potential insider threats. 6. Security Reporting and Audit: Provides logging and reporting capabilities to support compliance efforts. 7. Application Security Posture Management (ASPM): Helps identify and prioritize risks in products and source code. Arnica integrates with various development tools and platforms, aiming to provide security coverage without impacting development velocity.
FEATURES
ALTERNATIVES
Hack with JavaScript XSS'OR tool for encoding/decoding and various XSS related functionalities.
Curiefense is an application security platform that protects against various threats and offers community involvement.
Static security code scanner (SAST) for Node.js applications with Docker support and integrations with Slack.
A fake Django admin login screen to detect and notify admins of attempted unauthorized access
Hackazon is a free, vulnerable test site with an online storefront to train and test IT security professionals on various vulnerabilities like SQL Injection and cross-site scripting.
API security platform that combines discovery, testing, and monitoring capabilities to identify and protect against API vulnerabilities throughout the development lifecycle.
Cutting-edge technology for developing security applications within the Linux kernel.
PINNED
Fabric Platform by BlackStork
Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.
Mandos Brief Newsletter
Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.