Best Tools For Security Testing

Protect your user data and ensure your app is protocted against bad actors with these powerful tools & resources for security testing.

Indetectables Toolkit logo

Indetectables Toolkit

Security Testing

98 apps to perform reverse engineering and binary/malware analysis.

Free
L

Lynis

Security Testing

Security auditing and hardening tool, for UNIX-based systems.

Free
P

Payloads All The Things

Security Testing

A list of useful payloads and bypasses for Web Application Security

Free
Mariana Trench logo

Mariana Trench

Security Testing

Mariana Trench is a security focused static analysis platform targeting Android.

Free
R

RapiDAST

Security Testing

Simple, continuous and fully automated application security testing.

Free
Cherrybomb logo

Cherrybomb

Security Testing

A CLI tool that helps you avoid undefined user behaviour by validating your API specifications.

Free
Burp Suite Logger++ logo

Burp Suite Logger++

Security Testing

Advanced Logging for Burp Suite.

Free
P

Postman Security Test Generator

Security Testing

Execute role based security tests on APIs

Free
Open CRE logo

Open CRE

Security Testing

A platform that interactively links resources together using connecting threats, weaknesses, standards, code samples, and test instructions.

Free
MalwareBazaar logo

MalwareBazaar

Security Testing

The purpose of the project is to collect and share malware samples.

Free
Trufflehog logo

Trufflehog

Security Testing

Sniffing out credentials.

Free
X

XSSHunter

Security Testing

Use Docker and Dockery Compose to test and find blind cross-site scripting vulnerabilities.

Free
GradeJS logo

GradeJS

Security Testing

Analyze webpack production bundle

Free
BITB logo

BITB

Security Testing

Browser templates for Browser In The Browser (BITB) attack.

Free
L

Lockfile Lint

Security Testing

Lint an npm or Yarn lockfile to analyze and detect security issues via predefined security policies.

Free
N

Nogotofail

Security Testing

An on-path blackbox network traffic security testing tool

Free
Wfuzz logo

Wfuzz

Security Testing

Automate web applications security assessments

Free
beef logo

beef

Security Testing

It is a penetration testing tool that focuses on the web browser.

Free
Arachni logo

Arachni

Security Testing

Web Application Security Scanner Framework

Free
W

Wapiti

Security Testing

Web vulnerability scanner written in Python3

Free
Security List logo

Security List

Security Testing

Curated lists of tools, tips and resources for protecting digital security and privacy

Free
Violating GDPR? logo

Violating GDPR?

Security Testing

Enter a URL and this tool will tell you if the website is violating GDPR laws.

Free
S

Static Code Analysis

Security Testing

List of Static Code Analyzers

Free
DenyHosts logo

DenyHosts

Security Testing

DenyHosts is a script intended to be run by Linux system administrators to help thwart SSH server attacks (also known as dictionary based attacks and brute force attacks).

Free
Fail2ban logo

Fail2ban

Security Testing

It scans log files (e.g. /var/log/apache/error_log) and bans IPs that show the malicious signs -- too many password failures, seeking for exploits, etc

Free
Mozilla Observatory logo

Mozilla Observatory

Security Testing

online tool that you can use to check any website’s header status.

Free
PrivacyTests logo

PrivacyTests

Security Testing

open source tests of web browser privacy.

Free
Semgrep logo

Semgrep

Security Testing

Static analysis at ludicrous speed.

Free
Terrascan logo

Terrascan

Security Testing

Static code analyzer for Infrastructure as Code

Free
gitleaks logo

gitleaks

Security Testing

Scan git repos (or files) for secrets using regex and entropy 🔑

Free
Deepfence ThreatMapper logo

Deepfence ThreatMapper

Security Testing

Identify vulnerabilities in running containers, images, hosts and repositories

Free
A

Awesome Penetration Testing

Security Testing

A collection of awesome penetration testing and offensive cybersecurity resources.

Free
SonarLint logo

SonarLint

Security Testing

Clean Code starts in your IDE

Free
N

Nuclei Templates

Security Testing

Community curated list of templates for the nuclei engine to find security vulnerabilities in applications.

Free