PortSwigger
Burp Suite is a comprehensive toolkit for web application security testing, offering a range of products and solutions for identifying vulnerabilities, improving security posture, and enabling DevSecOps. The platform provides a dynamic web vulnerability scanner, manual tools for web security testing, and a web application security scanning solution for CI/CD. Additionally, Burp Suite offers a free online training center, the Web Security Academy, which provides interactive labs and learning materials for web application security. The platform's products include Burp Suite Enterprise Edition, Burp Suite Professional, and Burp Suite Community Edition, each catering to different needs and use cases. The solutions offered by Burp Suite cover application security testing, penetration testing, automated scanning, bug bounty hunting, and compliance, among others. The Web Security Academy provides a flexible learning path with interactive labs and progress-tracking, produced by a world-class team of experts in web application security.
FEATURES
ALTERNATIVES
ESLint plugin to prevent Trojan Source attacks.
A tool for detecting capabilities in executable files, providing insights into a program's behavior and potential malicious activities.
A tool that uses Apache mod_rewrite to redirect invalid URIs to a specified URL
Goof is a vulnerable Node.js demo application that includes a series of vulnerabilities and exploits
A PHP port of Rack::Honeypot, a spam trap that detects and blocks spambots
Utility for comparing control flow graph signatures to Android methods with scanning capabilities for malicious applications.
Backslash Security is an application security platform that uses reachability analysis to enhance SAST and SCA, prioritize vulnerabilities, and provide remediation guidance.
A lightweight web security auditing toolkit that simplifies security tasks and enhances productivity.
PINNED
Fabric Platform by BlackStork
Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.
Mandos Brief Newsletter
Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.