Search the Uleska site

    Sign in

    Open Mobile Menu Close Mobile Menu

    Open Source Security Testing Tools

    Uleska integrates with a number of open source Application security testing tools. Find out which ones we integrate with to help you in your AppSec journey.

    OWASP Zed Attack Proxy (ZAP)

    OWASP® Zed Attack Proxy (ZAP). The world's most widely used web app scanner. Free and open source.

    >> Find out how Uleska integrates with OWASP Zed Attack Proxy (ZAP)

    URL: https://www.zaproxy.org/ 

    OWASP Dependency Tracker

    Dependency-Check is a Software Composition Analysis (SCA) tool that attempts to detect publicly disclosed vulnerabilities contained within a project’s dependencies.

    >> Find out how Uleska integrates with OWASP Dependency Tracker

    URL: https://owasp.org/www-project-dependency-check/ 

    sqlmap

    sqlmap is an open source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking over of database servers

    >> Find out how Uleska integrates with SQLMAP

    URL: https://sqlmap.org/ 

    Nikto

    Nikto is an Open Source (GPL) web server scanner which performs comprehensive tests against web servers for over 8000 issues.

    >> Find out how Uleska integrates with Nikto2

    URL: https://github.com/sullo/nikto 

    Clair

    Clair is an open source project for the static analysis of vulnerabilities in appc and docker containers.

    >> Find out how Uleska integrates with Clair

    URL: https://github.com/quay/clair 

    SSLyze

    SSLyze is a fast and powerful SSL/TLS scanning library to analyze the SSL/TLS configuration of a server by connecting to it, in order to detect various issues.

    >> Find out how Uleska integrates with SSlyze

    URL: https://tools.kali.org/information-gathering/sslyze 

    Bandit

    Bandit is a tool designed to find common security issues in Python code.

    >> Find out how Uleska integrates with Bandit

    URL: https://bandit.readthedocs.io/en/latest/

    nodejsscan

    nodejsscan is a static security code scanner for Node.js applications.

    >> Find out how Uleska integrates with NodeJsScan.

    URL: https://github.com/ajinabraham/NodeJsScan 

    npm audit

    The npm audit command submits a description of the dependencies configured in your package to your default registry and asks for a report of known vulnerabilities.

    >> Find out how Uleska integrates with NPM Audit

    URL: https://docs.npmjs.com/cli/v7/commands/npm-audit 

    PythonFuzz

    PythonFuzz is coverage-guided fuzzer for testing python packages. (requires on-site installation and development integrations)