OWASP API Security Top 10
APISecurity.io is a community website for all things related to API security. Our daily news and weekly API Security newsletter cover the latest breaches, vulnerabilities, standards, best practices, regulations, and technology. Our developer-friendly tools help you to assess how secure your APIs really are and to remediate all vulnerabilities at design and runtime.
FEATURES
SIMILAR TOOLS
WordPress security scanner for identifying vulnerabilities in WordPress websites.
A tool for detecting and exploiting Android application vulnerabilities
LeakIX is a red-team search engine that indexes mis-configurations and vulnerabilities online.
A tool that finds unprotected secrets in container images or file systems, matching against a database of 140 secret types.
A tool to capture all the git secrets by leveraging multiple open source git searching tools.
Web-application vulnerability scanner with extensive coverage of security testing modules.
A repository of open-source plugins for Rapid7 InsightConnect
A collection of resources for securing AWS environments using the CIS Amazon Web Services Foundations Benchmark 1.1
A BloodHoundAD Report Engine for Security Teams to identify Active Directory security vulnerabilities and harden common configuration vulnerabilities and oversights.
PINNED
Mandos
Fractional CISO service that helps B2B companies implement security leadership to win enterprise deals, achieve compliance, and develop strategic security programs.
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.