EvoMaster
EvoMaster is an AI-driven tool for automatically generating system-level test cases for web and enterprise applications. It focuses on fuzzing Web APIs, including REST, GraphQL, and RPC (e.g., gRPC and Thrift). Key features: 1. Supports both black-box and white-box testing modes 2. Generates test cases in various formats (JUnit, Python, JavaScript) 3. Uses evolutionary algorithms and dynamic program analysis 4. Detects faults and generates regression test suites 5. Handles SQL databases and authentication mechanisms 6. Supports OpenAPI/Swagger schemas for REST APIs EvoMaster can be used for: - Automated API testing - Vulnerability detection - Code coverage improvement - Regression test suite generation The tool is particularly effective for JVM-based applications in white-box mode, offering advanced features like bytecode analysis and testability transformations.
FEATURES
SIMILAR TOOLS
Scan files for viruses and malware with language-agnostic REST API
An API security platform that provides automated security testing, runtime protection, and lifecycle management for APIs through integrated tools and controls.
Embeddable Yara library for Java with support for loading rules and scanning data.
An automated security testing platform that performs AI-driven penetration testing and vulnerability assessment for web applications and APIs with compliance reporting capabilities.
A web application firewall solution that monitors, filters, and protects web applications from malicious traffic and common web-based attacks.
Yaramod is a library for parsing YARA rules into AST and building new YARA rulesets with C++ programming interface.
A SaaS-based web application firewall that combines signature and behavioral-based threat detection to protect applications deployed across cloud, on-premises and edge environments.
SafeLine WAF is an open-source web application firewall that protects web services by filtering malicious HTTP traffic through intelligent semantic analysis and machine learning-based detection.
PINNED
Mandos
Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.