Open Source Security Testing Tools

Uleska integrates with a number of open source Application security testing tools. Find out which ones we integrate with to help you in your AppSec journey.

OWASP Zed Attack Proxy (ZAP)

OWASP® Zed Attack Proxy (ZAP). The world's most widely used web app scanner. Free and open source.

>> Find out how Uleska integrates with OWASP Zed Attack Proxy (ZAP)

URL: https://www.zaproxy.org/ 

OWASP Dependency Tracker

Dependency-Check is a Software Composition Analysis (SCA) tool that attempts to detect publicly disclosed vulnerabilities contained within a project’s dependencies.

>> Find out how Uleska integrates with OWASP Dependency Tracker

URL: https://owasp.org/www-project-dependency-check/ 

sqlmap

sqlmap is an open source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking over of database servers

>> Find out how Uleska integrates with SQLMAP

URL: https://sqlmap.org/ 

Nikto

Nikto is an Open Source (GPL) web server scanner which performs comprehensive tests against web servers for over 8000 issues.

>> Find out how Uleska integrates with Nikto2

URL: https://github.com/sullo/nikto 

Clair

Clair is an open source project for the static analysis of vulnerabilities in appc and docker containers.

>> Find out how Uleska integrates with Clair

URL: https://github.com/quay/clair 

SSLyze

SSLyze is a fast and powerful SSL/TLS scanning library to analyze the SSL/TLS configuration of a server by connecting to it, in order to detect various issues.

>> Find out how Uleska integrates with SSlyze

URL: https://tools.kali.org/information-gathering/sslyze 

Bandit

Bandit is a tool designed to find common security issues in Python code.

>> Find out how Uleska integrates with Bandit

URL: https://bandit.readthedocs.io/en/latest/

nodejsscan

nodejsscan is a static security code scanner for Node.js applications.

>> Find out how Uleska integrates with NodeJsScan.

URL: https://github.com/ajinabraham/NodeJsScan 

npm audit

The npm audit command submits a description of the dependencies configured in your package to your default registry and asks for a report of known vulnerabilities.

>> Find out how Uleska integrates with NPM Audit

URL: https://docs.npmjs.com/cli/v7/commands/npm-audit 

PythonFuzz

PythonFuzz is coverage-guided fuzzer for testing python packages. (requires on-site installation and development integrations)