Find the right software and services.
Turn websites into desktop apps with WebCatalog Desktop, and access a wealth of exclusive apps for Mac, Windows. Use spaces to organize apps, switch between multiple accounts with ease, and boost your productivity like never before.
Dynamic Application Security Testing (DAST) tools automate security assessments to detect a wide range of real-world vulnerabilities in web applications. These tools typically focus on testing HTTP and HTML interfaces, simulating attacks from an external perspective. As a black-box testing method, DAST is performed without access to the application's internal code or architecture, mirroring how an attacker would attempt to exploit vulnerabilities from the outside. DAST tools help organizations identify security weaknesses that could be exploited by external threats, providing a valuable layer of defense. Unlike other security solutions that focus on internal testing or code analysis, DAST evaluates the application from an outsider's point of view, offering insights into potential risks that could be easily exploited by external hackers. While similar to other application security and vulnerability management tools, DAST is unique in its emphasis on external-facing vulnerabilities, ensuring a comprehensive security posture against external threats.
Submit New App
GitLab
about.gitlab.com
GitLab is a web-based tool for managing code repositories, issue tracking, and CI/CD pipelines, supporting collaboration throughout the software development lifecycle.
Codacy
codacy.com
Codacy is a code review tool that automates code quality analysis, helping teams identify issues early and improve code health across multiple programming languages.
Synack
synack.com
Synack is a platform that provides on-demand penetration testing services to enhance security by identifying vulnerabilities through automated and human testing.
Pentest Tools
pentest-tools.com
Pentest Tools is a cloud-based app for security testing that identifies vulnerabilities in systems and web applications through automated and manual testing.
Semgrep
semgrep.dev
Semgrep is a customizable security platform that scans code for vulnerabilities, integrates with development workflows, and provides actionable results for developers.
Astra
getastra.com
Astra app offers penetration testing with an automated scanner and manual assessment to detect vulnerabilities in applications, ensuring compliance with security standards.
HostedScan
hostedscan.com
HostedScan offers 24/7 vulnerability scanning and alerts, integrating open-source tools for security assessments of IT assets, with management features for collaborative risk tracking.
Intruder
intruder.io
Intruder is a vulnerability management platform that helps organizations identify and fix security weaknesses through continuous scanning and automated remediation.
Detectify
detectify.com
Detectify is an attack surface monitoring tool that scans web applications for vulnerabilities, offers remediation guidance, and integrates with collaboration tools.
Veracode
veracode.com
Veracode is an application security platform that identifies and mitigates software vulnerabilities throughout the development lifecycle, supporting various testing methods.
Beagle Security
beaglesecurity.com
Beagle Security identifies vulnerabilities in web applications and APIs, offering actionable insights and automated penetration testing integrated into CI/CD pipelines.
prooV
proov.io
prooV Red Cloud allows users to simulate cybersecurity attacks on software, assessing technology responses before implementation.
Probely
probely.com
Probely is a web vulnerability scanner that tests the security of web applications and APIs, identifying real vulnerabilities and providing remediation guidance.
Akto
akto.io
Akto is an API security platform that helps organizations discover, test, and manage API security across their development and deployment pipelines.
Webscale
webscale.com
Webscale is a cloud platform that enables scalable and efficient management of web infrastructure for ecommerce businesses, ensuring high performance and reliability.
Secure Blink
secureblink.com
Secure Blink is an AI-driven AppSec management platform that helps developers and security teams identify and address vulnerabilities in applications and APIs.
Phidata
phidata.com
Phidata is an open-source platform for building and monitoring AI systems, enabling task automation and data analysis with customizable assistants and various tool integrations.
Contrast Security
contrastsecurity.com
Contrast Security provides real-time application security by integrating code analysis and attack prevention directly into software development, enhancing security monitoring and vulnerability detection.
Cobalt
cobalt.io
Cobalt offers an end-to-end offensive security solution, providing pentests and security services for AppSec and InfoSec teams to identify and remediate security risks.
Aikido Security
aikido.dev
Aikido Security is a platform for code scanning and cloud vulnerability assessments, integrating various security tools for comprehensive protection throughout the software development lifecycle.
SOOS
soos.io
SOOS is an Application Security Posture Management platform that identifies vulnerabilities in web applications and APIs, offering scanning and integration tools for security management.
Escape
escape.tech
Escape is an application security tool for detecting and fixing GraphQL vulnerabilities, automating API tests and documentation, and enhancing security in web applications.
Trickest
trickest.com
Trickest is a cybersecurity platform that automates offensive security operations, automates vulnerability discovery, and allows for customization and scalability.
Strobes
strobes.co
Strobes app provides visibility and control over application security, prioritizing threats and streamlining remediation for security and development teams.
CyCognito
cycognito.com
CyCognito is a cybersecurity platform that scans digital assets to identify vulnerabilities, assess risks, and provide guidance for remediation.
ResilientX
resilientx.com
ResilientX is a cybersecurity platform that helps organizations manage and mitigate cyber risks, ensuring the security and compliance of digital assets.
DerSecur
derscanner.com
DerSecur is an application security testing platform that analyzes code vulnerabilities, manages dependencies, and integrates with CI/CD pipelines for secure software development.
Jit
jit.io
Jit is a security platform for developers that integrates tools for scanning application and cloud vulnerabilities, offering real-time feedback and easy workflow integration.
Conviso
convisoappsec.com
Conviso enhances application and cloud security through continuous monitoring and protection, integrating security measures to reduce vulnerabilities and maintain compliance.
Data Theorem
datatheorem.com
Data Theorem offers integrated solutions for closing, escrow accounting, imaging, transaction management, e-signing, and digital marketplaces in both on-premise and hosted formats.
Bright Security
brightsec.com
Bright Security offers a DAST platform for developers and AppSec professionals, providing security testing for web apps, APIs, and GenAI applications with minimal false positives.
© 2025 WebCatalog, Inc.