Showing 11254 tools • Searched in 3ms
An application security platform that provides runtime threat modeling, vulnerability management, and automated remediation workflows with a focus on identifying exploitable vulnerabilities in production environments.
WordPress security scanner for identifying vulnerabilities in WordPress websites.
Dynamic application security testing tool for identifying and fixing web application vulnerabilities.
A free DNS recursive service that blocks malicious host names and protects user privacy.
An article in Phrack Magazine discussing the creation of shellcode for StrongARM/Linux architecture.
Unofficial Python API for searching, browsing, and downloading Android apps from Google Play.
CapTipper is a python tool to analyze, explore, and revive HTTP malicious traffic.
An ASPM platform that provides software supply chain security through risk assessment, prioritization, and protection mechanisms.
nudge4j is a tool to control Java applications from the browser and experiment with live code.
A web application designed to be 'Xtremely Vulnerable' for security enthusiasts to learn application security.
Windows event log fast forensics timeline generator and threat hunting tool.
A Windows Registry hive extraction library that reads and writes Windows Registry 'hive' binary files.
Tool for analyzing cloud resources against best practices and generating reports.
A collection of computer science courses with video lectures covering a wide range of topics.
A tool that generates Yara rules from training data using logistic regression and random forest classifiers.
A powerful tool for identifying and exploiting Cross-Site Scripting (XSS) vulnerabilities.
A tool to identify potential subdomain takeovers by checking if a CNAME record resolves to the scope address.
PAGO Networks delivers AI-powered managed security services including MDR, integrated EPP/EDR, dark web monitoring, Open XDR, and OT-oriented endpoint protection.
An automated API security testing platform that provides continuous vulnerability assessment, validation, and educational resources for API endpoint security.
A specialized packet sniffer for displaying and logging HTTP traffic, designed to capture, parse, and log traffic for later analysis.
Tool for visualizing correspondences between YARA ruleset and samples
Andrew Case's personal page for research, software projects, and speaking events
