Sonatype Repository Firewall
Automate your software supply chain security by blocking malicious open source at the door. Sonatype Repository Firewall is a tool that helps you to block malicious open source components in your software supply chain. It integrates with your existing development workflow and provides real-time visibility into your open source components. It also helps you to enforce policy at scale and manage vulnerability risks. It is a part of the Sonatype platform that provides a comprehensive solution for software supply chain security. It is designed to work with a wide range of tools, languages, and packages. It is a must-have tool for any organization that wants to ensure the security of its software supply chain.
FEATURES
ALTERNATIVES
A tool that showcases the attack surface of a given Android device, highlighting potential vulnerabilities and security risks.
testssl.sh is a free command line tool for checking server's TLS/SSL configurations with clear and machine-readable output.
iOS application for testing iOS penetration testing skills in a legal environment.
A vulnerability scanner that helps you identify and fix vulnerabilities in your code
A virtual machine with numerous security vulnerabilities for testing exploits with Metasploit.
OpenVAS is an open-source vulnerability scanner that provides extensive testing capabilities for identifying security weaknesses in networks and systems.
tfsec is being replaced by Trivy, a more comprehensive open-source security solution
A tool for scanning and identifying potential security risks in GitHub organizations, users, and repositories.
PINNED
InfoSecHired
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.
Fabric Platform by BlackStork
Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.
Mandos Brief Newsletter
Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
RoboShadow
A cybersecurity platform that offers vulnerability scanning, Windows Defender and 3rd party AV management, and MFA compliance reporting, among other features.
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.