Tag

Web

Tools and methodologies for web application security testing, covering injection, authentication, access control, and client/server-side vulnerabilities.

Back to tags

Application Security

Visit Website

Payloads All The Things

Details

A comprehensive collection of payloads and bypasses for web application security testing and exploitation.

Web Bug Bounty API External

AI SecurityApplication SecurityInfrastructure SecurityReconnaissance

Visit Website

PentAGI

Details

Autonomous AI agent system for complex penetration testing, integrating security tools, long-term memory, and smart task delegation in sandboxed Docker.

AI OSINT Web Internal External

Application SecurityAPI Security

Visit Website

Postman

Details

Postman: The leading API platform for building and using APIs. Streamline collaboration and simplify the API lifecycle.

API Web Mobile

Application Security

Visit Website

Probely

Details

Probely is an automated web application and API vulnerability scanner designed for agile teams to automate security testing in their SDLC.

Web API External Report Static Analysis

Application Security

Visit Website

ProxyOrb

Details

ProxyOrb offers a free web proxy and online proxy browser for secure, anonymous access to blocked websites, featuring military-grade encryption.

Web External

Application Security

Visit Website

Qualys SSL Labs

Details

Qualys SSL Labs provides a free online service to perform deep analysis of the configuration of any SSL web server on the public Internet.

Web

Application Security

Visit Website

Retire.js

Details

Retire.js: Scans web/Node.js apps for vulnerable JS libraries & generates SBOMs, aiding in identifying & mitigating security risks.

Web Static Analysis

AI SecurityVulnerability IntelligenceRed Team OperationsApplication SecurityAPI Security

Visit Website

RunSybil

Details

AI-driven pentesting platform automating hacker intuition to find vulnerabilities before exploits, reducing discovery costs.

AI Vulnerability Intelligence Report API Web+4

Cloud SecurityReconnaissanceInfrastructure Security

Visit Website

S3Scanner

Details

S3Scanner finds misconfigured S3 buckets across various cloud providers, enhancing cloud security posture and data leak prevention.

Bug Bounty Web Cloud

AI SecurityCloud SecurityApplication SecurityAPI SecurityWireless SecurityInfrastructure SecurityReporting

Visit Website

SecCheckmate

Details

Offline security checklist & report generator with 200+ tests across web, cloud, WiFi, firmware, and AI security domains.

Report AI Cloud Web API+3

Application SecurityCloud SecurityInfrastructure SecurityRed Team Operations

Visit Website

SecLists

Details

SecLists is a collection of multiple types of lists used during security assessments, collected in one place for easy access.

Bug Bounty Web External Internal

Application Security

Visit Website

See-SURF

Details

See-SURF is an AI-powered security tool designed to find and validate potential Server Side Request Forgery (SSRF) parameters in web applications.

Web