appsec.fyi

Sources

115 application security publishers with 5+ resources on appsec.fyi, indexed cross-topic.

Browse by source

Each page collects everything we’ve curated from a given publisher across all 25 active topics. Aggregator platforms (Medium, GitHub, X, Reddit, YouTube) are excluded so the list reflects original-publisher signal.

0xn3va.gitbook.io5 resourcesAuthN, GraphQL, JWT acunetix.com8 resourcesXSS, CSRF, Deser advisories.gitlab.com17 resourcesSSRF, Deser, Secrets aikido.dev11 resourcesSupply Chain, XSS, Bug Bounty akamai.com6 resourcesRCE, API Sec, JWT appsec.guide6 resourcesFuzzing, Burp appsecsanta.com5 resourcesMobile, Secrets, Python arcticwolf.com7 resourcesRCE, SSRF, JWT arxiv.org31 resourcesAI, Fuzzing, Deser assetnote.io5 resourcesRecon, GraphQL, SSRF aws.amazon.com5 resourcesAuthZ, Secrets, SSRF betterprogramming.pub5 resourcesgolang blackhat.com5 resourcesTalks, Deser, SSTI bleepingcomputer.com38 resourcesRCE, Supply Chain, SSRF blockchain-council.org5 resourcesAI blog.doyensec.com5 resourcesAPI Sec, AuthN, Deser blog.gitguardian.com15 resourcesSecrets, Supply Chain, AI blog.golang.org5 resourcesgolang blog.logrocket.com5 resourcesgolang, GraphQL blog.trailofbits.com7 resourcesFuzzing, golang, Deser blog.zsec.uk6 resourcesXXE, RCE, API Sec book.hacktricks.xyz12 resourcesSSRF, SSTI, API Sec bugcrowd.com11 resourcesXSS, Bug Bounty, AuthN cheatsheetseries.owasp.org18 resourcesAuthN, AuthZ, SSRF checkmarx.com5 resourcesPython, GraphQL cloud.google.com7 resourcesDeser, RCE, Mobile cobalt.io10 resourcesAPI Sec, AuthN, CSRF corneacristian.medium.com6 resourcesBug Bounty, CSRF, IDOR csoonline.com26 resourcesRCE, Supply Chain, AI cxodigitalpulse.com11 resourcesSupply Chain, RCE cybernews.com15 resourcesSupply Chain, RCE, API Sec cyberpress.org113 resourcesRCE, XSS, SSRF cyberscoop.com5 resourcesSupply Chain, AI, XSS cybersecuritydive.com5 resourcesRCE, Supply Chain cybersecuritynews.com118 resourcesRCE, XSS, SSRF cyberw1ng.medium.com5 resourcesSSRF, AuthN, Bug Bounty dailycve.com5 resourcesCSRF, AuthN, IDOR danaepp.com9 resourcesBurp, API Sec, AuthN danielmiessler.com6 resourcesBug Bounty, AI, Recon darkreading.com12 resourcesSupply Chain, RCE, XSS dl.acm.org10 resourcesDeser, Fuzzing, SQLi docs.google.com5 resourcesSSRF, Talks, API Sec escape.tech6 resourcesGraphQL, IDOR esecurityplanet.com16 resourcesSupply Chain, RCE, SSRF exploit-db.com6 resourcesSQLi, SSTI, Deser gbhackers.com105 resourcesRCE, XSS, SSRF geeksforgeeks.org5 resourcesOSINT, SSRF, SSTI genai.owasp.org5 resourcesAI, Talks github.blog7 resourcesSupply Chain, Secrets, AuthN hackerone.com33 resourcesSSRF, JWT, AuthN hackread.com10 resourcesRCE, AI, OSINT helpnetsecurity.com22 resourcesSupply Chain, RCE, Secrets hkcert.org13 resourcesRCE, Python imperva.com7 resourcesGraphQL, AuthZ, CSRF infosecurity-magazine.com11 resourcesAI, Supply Chain, Burp infosecwriteups.com50 resourcesSSRF, Bug Bounty, GraphQL intigriti.com27 resourcesRecon, SSRF, Bug Bounty invicti.com16 resourcesJWT, Deser, SSRF kitploit.com8 resourcesBurp, SSRF, XSS labs.detectify.com9 resourcesBug Bounty, SSRF, XSS letsdatascience.com18 resourcesAPI Sec, RCE, AI levelup.gitconnected.com12 resourcesgolang, API Sec mas.owasp.org7 resourcesMobile microsoft.com11 resourcesRCE, AI, Supply Chain msn.com16 resourcesAI, Supply Chain, Fuzzing null-byte.wonderhowto.com5 resourcesSQLi, XSS, Recon onsecurity.io5 resourcesSSTI, AuthN, RCE osintteam.blog5 resourcesBug Bounty, OSINT, Recon owasp.org36 resourcesAuthN, AuthZ, XSS ox.security12 resourcesSupply Chain, AI, API Sec paloaltonetworks.com6 resourcesAPI Sec, Supply Chain, CSRF penligent.ai8 resourcesAuthZ, AI, Bug Bounty pentesterlab.com6 resourcesJWT, Deser, SSRF picussecurity.com5 resourcesSQLi, AuthN, RCE portswigger.net97 resourcesBurp, XSS, SSRF projectdiscovery.io6 resourcesRecon, AuthN, SSRF python.plainenglish.io5 resourcesPython, OSINT radar.offseq.com7 resourcesSSRF, CSRF rapid7.com7 resourcesRCE, SSTI, CSRF realpython.com12 resourcesPython, AuthN rescana.com14 resourcesRCE, Supply Chain, SQLi resecurity.com6 resourcesRCE, SSRF, Deser reversinglabs.com9 resourcesSupply Chain, Secrets, Fuzzing scworld.com57 resourcesRCE, Supply Chain, Secrets secnews.gr5 resourcesXSS, Bug Bounty, Deser security.snyk.io5 resourcesSSRF, SSTI, XSS securityaffairs.com21 resourcesRCE, SSRF, SQLi securityboulevard.com56 resourcesSupply Chain, RCE, API Sec securitylab.github.com5 resourcesSupply Chain, Mobile, RCE securitylabs.datadoghq.com5 resourcesSupply Chain, SQLi securityweek.com41 resourcesSupply Chain, RCE, Mobile sentinelone.com35 resourcesPython, SSRF, CSRF slideshare.net7 resourcesXSS, Talks, XXE snyk.io10 resourcesJWT, golang, Python socradar.io5 resourcesMobile, OSINT, Python sonatype.com7 resourcesSupply Chain, Python, Deser stackoverflow.com10 resourcesXSS, CSRF, Python techcrunch.com7 resourcesMobile, Supply Chain techzine.eu8 resourcesSupply Chain, AI, Bug Bounty tenable.com5 resourcesSSRF, Secrets, XXE thecyberexpress.com14 resourcesRCE, Supply Chain, XSS thehackernews.com88 resourcesRCE, Supply Chain, SSRF thehackerwire.com27 resourcesRCE, SSRF, Deser theregister.com18 resourcesSupply Chain, RCE, XXE tipranks.com8 resourcesSupply Chain trendmicro.com10 resourcesSupply Chain, API Sec, AI trufflesecurity.com5 resourcesSecrets, AuthN undercodetesting.com6 resourcesXSS, Fuzzing, IDOR unit42.paloaltonetworks.com15 resourcesAI, Supply Chain, RCE vaadata.com8 resourcesGraphQL, API Sec, AuthN whiteoaksecurity.com8 resourcesBurp, AuthZ, Bug Bounty wired.com6 resourcesBug Bounty, OSINT, AI wiz.io39 resourcesXSS, Supply Chain, RCE yeswehack.com12 resourcesRecon, Bug Bounty, Burp zeropath.com5 resourcesAuthN, SSRF, Deser