Best Tools For Security Testing

Protect your user data and ensure your app is protocted against bad actors with these powerful tools & resources for security testing.

Indetectables Toolkit logo

Indetectables Toolkit

98 apps to perform reverse engineering and binary/malware analysis.

Security Testing
Free
L

Lynis

Security auditing and hardening tool, for UNIX-based systems.

Security Testing
Free
P

Payloads All The Things

A list of useful payloads and bypasses for Web Application Security

Security Testing
Free
Mariana Trench logo

Mariana Trench

Mariana Trench is a security focused static analysis platform targeting Android.

Security Testing
Free
R

RapiDAST

Simple, continuous and fully automated application security testing.

Security Testing
Free
Cherrybomb logo

Cherrybomb

A CLI tool that helps you avoid undefined user behaviour by validating your API specifications.

Security Testing
Free
Burp Suite Logger++ logo

Burp Suite Logger++

Advanced Logging for Burp Suite.

Security Testing
Free
P

Postman Security Test Generator

Execute role based security tests on APIs

Security Testing
Free
Open CRE logo

Open CRE

A platform that interactively links resources together using connecting threats, weaknesses, standards, code samples, and test instructions.

Security Testing
Free
MalwareBazaar logo

MalwareBazaar

The purpose of the project is to collect and share malware samples.

Security Testing
Free
Trufflehog logo

Trufflehog

Sniffing out credentials.

Security Testing
Free
X

XSSHunter

Use Docker and Dockery Compose to test and find blind cross-site scripting vulnerabilities.

Security Testing
Free
GradeJS logo

GradeJS

Analyze webpack production bundle

Security Testing
Free
BITB logo

BITB

Browser templates for Browser In The Browser (BITB) attack.

Security Testing
Free
L

Lockfile Lint

Lint an npm or Yarn lockfile to analyze and detect security issues via predefined security policies.

Security Testing
Free
N

Nogotofail

An on-path blackbox network traffic security testing tool

Security Testing
Free
Wfuzz logo

Wfuzz

Automate web applications security assessments

Security Testing
Free
beef logo

beef

It is a penetration testing tool that focuses on the web browser.

Security Testing
Free
Arachni logo

Arachni

Web Application Security Scanner Framework

Security Testing
Free
W

Wapiti

Web vulnerability scanner written in Python3

Security Testing
Free
Security List logo

Security List

Curated lists of tools, tips and resources for protecting digital security and privacy

Security Testing
Free
Violating GDPR? logo

Violating GDPR?

Enter a URL and this tool will tell you if the website is violating GDPR laws.

Security Testing
Free
S

Static Code Analysis

List of Static Code Analyzers

Security Testing
Free
DenyHosts logo

DenyHosts

DenyHosts is a script intended to be run by Linux system administrators to help thwart SSH server attacks (also known as dictionary based attacks and brute force attacks).

Security Testing
Free
Fail2ban logo

Fail2ban

It scans log files (e.g. /var/log/apache/error_log) and bans IPs that show the malicious signs -- too many password failures, seeking for exploits, etc

Security Testing
Free
Mozilla Observatory logo

Mozilla Observatory

online tool that you can use to check any website’s header status.

Security Testing
Free
PrivacyTests logo

PrivacyTests

open source tests of web browser privacy.

Security Testing
Free
Semgrep logo

Semgrep

Static analysis at ludicrous speed.

Security Testing
Free
Terrascan logo

Terrascan

Static code analyzer for Infrastructure as Code

Security Testing
Free
gitleaks logo

gitleaks

Scan git repos (or files) for secrets using regex and entropy 🔑

Security Testing
Free
Deepfence ThreatMapper logo

Deepfence ThreatMapper

Identify vulnerabilities in running containers, images, hosts and repositories

Security Testing
Free
A

Awesome Penetration Testing

A collection of awesome penetration testing and offensive cybersecurity resources.

Security Testing
Free
SonarLint logo

SonarLint

Clean Code starts in your IDE

Security Testing
Free
N

Nuclei Templates

Community curated list of templates for the nuclei engine to find security vulnerabilities in applications.

Security Testing
Free