DryRun
DryRun Security is a GitHub application that performs contextual security analysis of code changes during pull requests. The tool analyzes code changes in real-time within GitHub repositories, focusing on security context for developers. It examines authentication, authorization, sensitive codepaths, functions, authorship, intent, and code brittleness. The analyzer supports multiple programming languages including Python, Java, JavaScript/TypeScript, C++, C#, Golang, Rust, Swift, PHP, Ruby, Kotlin, Scala, and COBOL. It integrates directly into the GitHub workflow, providing security feedback before code merges into the main codebase. The tool utilizes AI-powered analysis to evaluate pull requests and provide security context directly within the GitHub interface.
FEATURES
ALTERNATIVES
A brute-force protection middleware for express routes that rate-limits incoming requests.
Search engine for open-source Git repositories with advanced features like case sensitivity and regular expressions.
JAADAS is a powerful tool for static analysis of Android applications, providing features like API misuse analysis and inter-procedure dataflow analysis.
Utility for comparing control flow graph signatures to Android methods with scanning capabilities for malicious applications.
A Burp extension for scanning JavaScript files for endpoint links
AWS Web Application Firewall (WAF) for protecting web applications from common exploits.
A DAST solution that performs automated security testing of APIs and web applications within development workflows and CI/CD pipelines.
PINNED
InfoSecHired
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.
Mandos Brief Newsletter
A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.
Kriptos
An AI-driven data classification and governance platform that automatically discovers, analyzes, and labels sensitive information while providing risk management and compliance capabilities.
System Two Security
An AI-powered platform that automates threat hunting and analysis by processing cyber threat intelligence and generating customized hunt packages for SOC teams.
Aikido Security
Aikido is an all-in-one security platform that combines multiple security scanning and management functions for cloud-native applications and infrastructure.
Permiso
Permiso is an Identity Threat Detection and Response platform that provides comprehensive visibility and protection for identities across multiple cloud environments.
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.