Cyclops
Cyclops is a browser with XSS detection capabilities that generates SourceSink.txt file in the running directory when suspicious XSS is detected, currently available for Win 10 with Linux and Mac versions coming soon. Note: Still in development, use --no-sandbox parameter when accessing target websites.
FEATURES
ALTERNATIVES
A tool for brute-forcing GET and POST parameters to discover potential vulnerabilities in web applications.
API Security is a comprehensive solution that provides continuous discovery, vulnerability assessment, threat detection, compliance monitoring, dynamic testing, and remediation capabilities to protect APIs against various threats and vulnerabilities.
Argus-SAF is a static analysis framework for security vetting Android applications.
Arnica is an application security platform that offers real-time scanning, risk mitigation, and management across various aspects of the software development lifecycle.
A popular free security tool for automatically finding security vulnerabilities in web applications
A comprehensive web application security testing solution that offers built-in vulnerability assessment and management, as well as integration options with popular software development tools.
A brute-force protection middleware for express routes that rate-limits incoming requests.
Cross-site scripting labs for web application security enthusiasts
PINNED
Fabric Platform by BlackStork
Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.
Mandos Brief Newsletter
Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.