PMD – Extensible Multilanguage Static Code Analyzer

PMD is a source code analyzer. It finds common programming flaws like unused variables, empty catch blocks, unnecessary object creation, and so forth.

Find Security Bugs – SpotBugs plugin for Java

Find Security Bugs is a well-known plugin for security audits of Java web applications. the tool have a large list of rules to identify security

Faraday – Collaborative Penetration Test Platform

Faraday introduces a new concept – IPE (Integrated Penetration-Test Environment) a multiuser Penetration test IDE. Designed for distributing, indexing

Permission Manager – Kubernetes RBAC Framework

Permission Manager is an application developed by SIGHUP that enables a super-easy and user-friendly RBAC management for Kubernetes.

AuthMatrix – Burp Extension to Test Web Authorization

AuthMatrix is an extension to Burp Suite that provides a simple way to test authorization in web applications and web services. With this burp extension

PwnFox – Firefox/Burp Extension with Security Audit Tools

PwnFox is a Firefox/Burp extension that provide useful tools for your security audit. Some of the features with this tool are

Astra – Automated Security Testing For REST API’s

REST API penetration testing is complex due to continuous changes in existing APIs and newly added APIs. Astra can be used by security engineers