FullHunt is a next-generation attack surface security platform that enables companies to discover all their external attack surfaces, monitor them for exposure, and continuously scan them for security vulnerabilities. It provides a complete platform to solve Attack Surface Management at scale, with features such as assets discovery, real-time notification, scanners integration, continuous vulnerability scanning, and more. With FullHunt, companies can gain visibility into their external attack surface, identify vulnerabilities, and take proactive measures to prevent breaches. The platform is scalable, automated, and provides programmable APIs for easy integration with custom tools.
FEATURES
SIMILAR TOOLS
Audits JavaScript projects for known vulnerabilities and outdated package versions using OSS Index v3 REST API.
Amass by OWASP performs comprehensive attack surface mapping and asset discovery.
A comprehensive online resource for application security knowledge
OpenVAS is an open-source vulnerability scanner that provides extensive testing capabilities for identifying security weaknesses in networks and systems.
A community website for API security news, vulnerabilities, and best practices
Script to find exploits for vulnerable software packages on Linux systems using an exploit database.
Fuzzapi is a Rails application with a user-friendly UI for API_Fuzzer gem and Docker setup.
A runtime threat management and attack path enumeration tool for cloud-native environments
An open source project for static analysis of vulnerabilities in application containers
PINNED

Mandos
Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.

Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.