The 36 tools that SaaS can use to keep their product and data safe from criminal hackers (manual research)

1. dirsearch

   1 12 12,660 8.8 Python

   Web path scanner

   

   DirSearch

2. CodeRabbit

   coderabbit.ai featured

   CodeRabbit: AI Code Reviews for Developers. Revolutionize your code reviews with AI. CodeRabbit offers PR summaries, code walkthroughs, 1-click suggestions, and AST-based analysis. Boost productivity and code quality across all major languages with each PR.

   

3. ZAP

   2 70 13,288 9.3 Java

   The ZAP by Checkmarx Core project

   

   OWASP ZAP (open source)

4. recollapse

   3 1 967 3.2 Python

   REcollapse is a helper tool for black-box regex fuzzing to bypass validations and discover normalizations in web applications

   REcollapse

5. soapui

   4 22 1,606 6.2 Java

   SoapUI is a free and open source cross-platform functional testing solution for APIs and web services.

   

   SoapUI

6. ffuf

   5 19 13,579 4.8 Go

   Fast web fuzzer written in Go

   

   FFUF

7. nexpose-client

   6 13 150 4.1 Ruby

   DEPRECATED: Rapid7 Nexpose API client library written in Ruby

   

   Rapid7

8. thc-hydra

   7 18 10,168 7.4 C

   hydra

   

   Hydra

9. SaaSHub

   www.saashub.com featured

   SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

   

10. Newman

    8 335 6,977 7.3 JavaScript

    Newman is a command-line collection runner for Postman

    

    Postman

11. Sublist3r

    9 12 10,192 0.0 Python

    Fast subdomains enumeration tool for penetration testers

    

    Sublist3r

12. Metasploit

    10 123 35,032 10.0 Ruby

    Metasploit Framework

    

    Metasploit

13. nuclei

    11 17 22,503 9.7 Go

    Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the internet. It helps you find vulnerabilities in your applications, APIs, networks, DNS, and cloud configurations.

    

    Nuclei

14. swagger-ui

    12 154 27,079 9.3 JavaScript

    Swagger UI is a collection of HTML, JavaScript, and CSS assets that dynamically generate beautiful documentation from a Swagger-compliant API.

    

    Swagger

15. SQLMap

    13 43 33,559 8.7 Python

    Automatic SQL injection and database takeover tool

    

    SQLMap

16. cli

    14 78 5,048 9.7 TypeScript

    Snyk CLI scans and monitors your projects for security vulnerabilities. (by snyk)

    

    Snyk

17. Apache JMeter

    15 48 8,625 7.6 Java

    Apache JMeter open-source load testing tool for analyzing and measuring the performance of a variety of services

    

    JMeter

18. insomnia

    16 246 35,789 9.8 JavaScript

    The open-source, cross-platform API client for GraphQL, REST, WebSockets, SSE and gRPC. With Cloud, Local and Git storage.

    

    Insomnia

19. ESLint

    17 424 25,685 9.8 JavaScript

    Find and fix problems in your JavaScript code.

    

    ESLint (free, open-source option)

20. bandit

    18 22 6,818 8.6 Python

    Bandit is a tool designed to find common security issues in Python code.

    

    Bandit (for Python, open-source and free)

21. SaaSHub

    www.saashub.com featured

    SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

    

Suggest a related project