Category

Postman: The leading API platform for building and using APIs. Streamline collaboration and simplify the API lifecycle.

Probely is an automated web application and API vulnerability scanner designed for agile teams to automate security testing in their SDLC.

ProjectDiscovery offers real-time vulnerability detection, asset discovery, and customizable exploit detection for streamlined security workflows.

Qualys SSL Labs provides a free online service to perform deep analysis of the configuration of any SSL web server on the public Internet.

Retire.js: Scans web/Node.js apps for vulnerable JS libraries & generates SBOMs, aiding in identifying & mitigating security risks.

SecLists is a collection of multiple types of lists used during security assessments, collected in one place for easy access.

Snyk is a developer-first security platform that finds and fixes vulnerabilities in code, dependencies, containers, and infrastructure as code.

Tenable's exposure management platform helps organizations find, prioritize, and fix cyber risks across IT, cloud, OT, and identity environments.

OWASP Threat Dragon is a free, open-source threat modeling tool for creating threat model diagrams and listing threats.

Truffle Security provides open-source and enterprise solutions for detecting and remediating leaked keys and credentials across the SDLC.

WAFW00F identifies and fingerprints Web Application Firewall (WAF) products protecting a website using various detection methods.

WPScan is a vulnerability database and security scanner for WordPress, helping users identify and address security risks in their WP sites.