Static Analysis

JWT Debugger

JWT Debugger is a web application to create, encode, decode, and debug JWT (JSON Web Tokens).

Web API Static Analysis

Application Security

Opengrep

Opengrep is a static code analysis engine for finding security issues in code, supporting 30+ languages and customizable rules.

ReportingInfrastructure SecurityPhysical Security

Osintly

Osintly is an OSINT (Open Source Intelligence) platform designed to empower your searches with precision and accuracy. Unlock the world’s information using our advanced OSINT tools and techniques.

OSINT External Report Static Analysis Web+1

Reverse Engineering

PE-bear

PE-bear: A multiplatform reversing tool for PE files, offering a fast and flexible first view for malware analysis.

Application Security

Probely

Probely is an automated web application and API vulnerability scanner designed for agile teams to automate security testing in their SDLC.

Web API External Report Static Analysis

Application Security

Retire.js

Retire.js: Scans web/Node.js apps for vulnerable JS libraries & generates SBOMs, aiding in identifying & mitigating security risks.

Web Static Analysis

API Security

Schemathesis

Schemathesis is a tool that automatically generates API tests from OpenAPI and GraphQL schemas to find bugs.

API Static Analysis

Application Security

Threat Dragon

OWASP Threat Dragon is a free, open-source threat modeling tool for creating threat model diagrams and listing threats.

Reverse Engineering

VirusTotal

VirusTotal is a free online service that analyzes files, URLs, domains, and IPs for malicious content using a vast array of antivirus engines and threat intelligence feeds.