appsec.fyi

Sources

140 application security publishers with 5+ resources on appsec.fyi, indexed cross-topic.

Browse by source

Each page collects everything we’ve curated from a given publisher across all 25 active topics. Aggregator platforms (Medium, GitHub, X, Reddit, YouTube) are excluded so the list reflects original-publisher signal.

0xn3va.gitbook.io5 resourcesAuthN, GraphQL, JWT acunetix.com8 resourcesXSS, CSRF, Deser advisories.gitlab.com17 resourcesSSRF, Deser, Secrets aikido.dev31 resourcesSupply Chain, Secrets, RCE akamai.com6 resourcesRCE, API Sec, JWT appsec.guide6 resourcesFuzzing, Burp appsecsanta.com5 resourcesMobile, Secrets, Python arcticwolf.com8 resourcesRCE, SSRF, JWT arstechnica.com5 resourcesSupply Chain, AI, Python arxiv.org33 resourcesAI, Fuzzing, Deser assetnote.io5 resourcesRecon, GraphQL, SSRF aws.amazon.com6 resourcesAuthZ, Supply Chain, Secrets bankinfosecurity.com10 resourcesSupply Chain, RCE betterprogramming.pub5 resourcesgolang bishopfox.com15 resourcesAI, AuthZ, Bug Bounty blackhat.com5 resourcesTalks, Deser, SSTI bleepingcomputer.com67 resourcesRCE, Supply Chain, SQLi blockchain-council.org10 resourcesAI blog.doyensec.com5 resourcesAPI Sec, AuthN, Deser blog.gitguardian.com26 resourcesSecrets, Supply Chain, AI blog.golang.org5 resourcesgolang blog.logrocket.com5 resourcesgolang, GraphQL blog.talosintelligence.com5 resourcesRCE, AuthN, Supply Chain blog.trailofbits.com13 resourcesFuzzing, AI, Bug Bounty blog.zsec.uk6 resourcesXXE, RCE, API Sec book.hacktricks.xyz12 resourcesSSRF, SSTI, API Sec bugcrowd.com11 resourcesXSS, Bug Bounty, AuthN cheatsheetseries.owasp.org18 resourcesAuthN, AuthZ, SSRF checkmarx.com5 resourcesPython, GraphQL cloud.google.com7 resourcesDeser, RCE, Mobile cloudsek.com5 resourcesSSRF, Supply Chain, OSINT cobalt.io10 resourcesAPI Sec, AuthN, CSRF corneacristian.medium.com6 resourcesBug Bounty, CSRF, IDOR csoonline.com43 resourcesRCE, Supply Chain, API Sec cxodigitalpulse.com15 resourcesSupply Chain, RCE cybernews.com23 resourcesSupply Chain, RCE, API Sec cyberpress.org143 resourcesRCE, XSS, SSRF cyberscoop.com9 resourcesSupply Chain, AI, Bug Bounty cybersecuritydive.com9 resourcesSupply Chain, RCE cybersecuritynews.com199 resourcesRCE, API Sec, XSS cyberw1ng.medium.com5 resourcesSSRF, AuthN, Bug Bounty dailycve.com5 resourcesCSRF, AuthN, IDOR danaepp.com9 resourcesBurp, API Sec, AuthN danielmiessler.com6 resourcesBug Bounty, AI, Recon darkreading.com19 resourcesSupply Chain, RCE, XSS dl.acm.org10 resourcesDeser, Fuzzing, SQLi docs.google.com5 resourcesSSRF, Talks, API Sec escape.tech6 resourcesGraphQL, IDOR esecurityplanet.com20 resourcesSupply Chain, RCE, SSRF exploit-db.com6 resourcesSQLi, SSTI, Deser gbhackers.com159 resourcesRCE, XSS, SSRF geeksforgeeks.org5 resourcesOSINT, SSRF, SSTI genai.owasp.org5 resourcesAI, Talks gigazine.net6 resourcesSupply Chain, RCE, Fuzzing github.blog12 resourcesSupply Chain, Secrets, AI hackerone.com33 resourcesSSRF, JWT, AuthN hackread.com16 resourcesRCE, AI, Supply Chain helpnetsecurity.com30 resourcesRCE, Supply Chain, Secrets hkcert.org26 resourcesRCE, Python imperva.com7 resourcesGraphQL, AuthZ, CSRF infoq.com6 resourcesSupply Chain, Secrets, SSRF infosecurity-magazine.com16 resourcesSupply Chain, RCE, AI infosecwriteups.com102 resourcesBug Bounty, SSRF, XSS infoworld.com7 resourcesSupply Chain, API Sec, RCE intigriti.com32 resourcesBug Bounty, Recon, SSRF invicti.com16 resourcesJWT, Deser, SSRF jfrog.com14 resourcesSupply Chain, AI, RCE kaspersky.com5 resourcesSupply Chain, Mobile kitploit.com5 resourcesBurp, Fuzzing, Recon labs.detectify.com10 resourcesBug Bounty, SSRF, XSS labs.watchtowr.com8 resourcesRCE, AuthN, AuthZ letsdatascience.com23 resourcesAPI Sec, RCE, AI levelup.gitconnected.com12 resourcesgolang, API Sec mas.owasp.org7 resourcesMobile microsoft.com19 resourcesSupply Chain, RCE, AI msn.com19 resourcesSupply Chain, AI, Fuzzing null-byte.wonderhowto.com5 resourcesSQLi, XSS, Recon onsecurity.io5 resourcesSSTI, AuthN, RCE opensourceforu.com6 resourcesSupply Chain, RCE, SQLi osintteam.blog5 resourcesBug Bounty, OSINT, Recon owasp.org38 resourcesAuthN, AuthZ, XSS ox.security22 resourcesSupply Chain, AI, API Sec paloaltonetworks.com9 resourcesSupply Chain, API Sec, AI penligent.ai8 resourcesAuthZ, AI, Bug Bounty pentesterlab.com6 resourcesJWT, Deser, SSRF petri.com5 resourcesRCE, Supply Chain, XSS picussecurity.com5 resourcesSQLi, AuthN, RCE portswigger.net99 resourcesBurp, XSS, SSRF projectdiscovery.io6 resourcesRecon, AuthN, SSRF projectzero.google6 resourcesAuthZ, Bug Bounty, Fuzzing python.plainenglish.io5 resourcesPython, OSINT radar.offseq.com7 resourcesSSRF, CSRF rapid7.com20 resourcesRCE, SQLi, SSTI realpython.com12 resourcesPython, AuthN rescana.com46 resourcesSupply Chain, RCE, XSS resecurity.com6 resourcesRCE, SSRF, Deser reversinglabs.com9 resourcesSupply Chain, Secrets, Fuzzing scworld.com81 resourcesRCE, Supply Chain, API Sec secnews.gr5 resourcesXSS, Bug Bounty, Deser security.snyk.io5 resourcesSSRF, SSTI, XSS securityaffairs.com34 resourcesRCE, SSRF, SQLi securityboulevard.com83 resourcesSupply Chain, RCE, API Sec securitylab.github.com5 resourcesSupply Chain, Mobile, RCE securitylabs.datadoghq.com5 resourcesSupply Chain, SQLi securityweek.com77 resourcesRCE, Supply Chain, SQLi sentinelone.com35 resourcesPython, SSRF, CSRF slideshare.net7 resourcesXSS, Talks, XXE snyk.io245 resourcesAI, Supply Chain, API Sec socprime.com7 resourcesSQLi, Supply Chain, Mobile socradar.io6 resourcesMobile, OSINT, Python sonatype.com9 resourcesSupply Chain, Python, Deser sqmagazine.co.uk8 resourcesAPI Sec, RCE, Supply Chain stackoverflow.com10 resourcesXSS, CSRF, Python stepsecurity.io8 resourcesSupply Chain systemtek.co.uk10 resourcesRCE, XSS, Python techcrunch.com11 resourcesSupply Chain, Mobile, AI techradar.com7 resourcesSupply Chain, RCE, API Sec techrepublic.com6 resourcesRCE, AI, API Sec techtimes.com13 resourcesAPI Sec, Python, RCE techzine.eu12 resourcesSupply Chain, AI, API Sec tenable.com5 resourcesSSRF, Secrets, XXE the420.in6 resourcesAPI Sec, AI, Bug Bounty thecyberexpress.com24 resourcesRCE, Supply Chain, XSS thehackernews.com144 resourcesRCE, Supply Chain, SSRF thehackerwire.com26 resourcesRCE, SSRF, Deser therecord.media6 resourcesSupply Chain, AuthN, Bug Bounty theregister.com29 resourcesSupply Chain, RCE, API Sec tipranks.com13 resourcesSupply Chain tldrsec.com10 resourcesAI, Supply Chain, API Sec trendmicro.com10 resourcesSupply Chain, API Sec, AI trufflesecurity.com5 resourcesSecrets, AuthN undercodetesting.com6 resourcesXSS, Fuzzing, IDOR unit42.paloaltonetworks.com26 resourcesSupply Chain, AI, RCE vaadata.com8 resourcesGraphQL, API Sec, AuthN venturebeat.com5 resourcesAI, Fuzzing, SQLi whiteoaksecurity.com8 resourcesBurp, AuthZ, Bug Bounty wired.com9 resourcesBug Bounty, Mobile, OSINT wiz.io235 resourcesAI, Supply Chain, RCE yeswehack.com23 resourcesBug Bounty, Recon, AI zeropath.com5 resourcesAuthN, SSRF, Deser