Application Security Tools
Curated list of free/open source application security tools
SAST
-
Security Code Review
-
Software Composition Analysis(SCA)
-
Secrets Scanning
DAST
- OWASP ZAP
- Burp Suite Community Edition
- ugly-duckling
- Arachni
- Nikto2
- Nuclei
- Vega
- w3af
- Commix
- sqlmap
- Astra
Misc
Further References
- Application Security Knowledgebase
- OWASP Source Code Analysis Tools
- OWASP Component Analysis
- OWASP Vulnerability Scanning Tools
- Top 9 Git Secret Scanning Tools for DevSecOps
- Web Application Security Scanner List
- AppSec Map
- Security Tools!
- Free for Open Source Application Security Tools
- Static Analysis Tools