appsec.fyi

Sources

111 application security publishers with 5+ resources on appsec.fyi, indexed cross-topic.

Browse by source

Each page collects everything we’ve curated from a given publisher across all 25 active topics. Aggregator platforms (Medium, GitHub, X, Reddit, YouTube) are excluded so the list reflects original-publisher signal.

0xn3va.gitbook.io5 resourcesAuthN, GraphQL, JWT acunetix.com8 resourcesXSS, CSRF, Deser advisories.gitlab.com17 resourcesSSRF, Deser, Secrets aikido.dev9 resourcesXSS, GraphQL, IDOR akamai.com6 resourcesRCE, API Sec, JWT appsec.guide6 resourcesFuzzing, Burp appsecsanta.com5 resourcesMobile, Secrets, Python arcticwolf.com7 resourcesRCE, SSRF, JWT arxiv.org31 resourcesAI, Fuzzing, Deser assetnote.io5 resourcesRecon, GraphQL, SSRF aws.amazon.com5 resourcesAuthZ, Secrets, SSRF betterprogramming.pub5 resourcesgolang blackhat.com5 resourcesTalks, Deser, SSTI bleepingcomputer.com24 resourcesRCE, Supply Chain, SSRF blockchain-council.org7 resourcesAI blog.doyensec.com5 resourcesAPI Sec, AuthN, Deser blog.gitguardian.com14 resourcesSecrets, Supply Chain blog.golang.org5 resourcesgolang blog.logrocket.com5 resourcesgolang, GraphQL blog.trailofbits.com7 resourcesFuzzing, golang, Deser blog.zsec.uk6 resourcesXXE, RCE, API Sec book.hacktricks.xyz12 resourcesSSRF, SSTI, API Sec brutelogic.com.br5 resourcesXSS bugcrowd.com11 resourcesXSS, Bug Bounty, AuthN cheatsheetseries.owasp.org18 resourcesAuthN, AuthZ, SSRF checkmarx.com5 resourcesPython, GraphQL cloud.google.com7 resourcesDeser, RCE, Mobile cobalt.io10 resourcesAPI Sec, AuthN, CSRF corneacristian.medium.com6 resourcesBug Bounty, CSRF, IDOR csoonline.com11 resourcesRCE, SSRF, AI cybernews.com6 resourcesSupply Chain, AI, Python cyberpress.org63 resourcesXSS, RCE, SSRF cybersecuritydive.com5 resourcesRCE, Supply Chain cybersecuritynews.com70 resourcesXSS, RCE, SSRF cyberw1ng.medium.com5 resourcesSSRF, AuthN, Bug Bounty dailycve.com5 resourcesCSRF, AuthN, IDOR danaepp.com9 resourcesBurp, API Sec, AuthN danielmiessler.com6 resourcesBug Bounty, AI, Recon darkreading.com7 resourcesSupply Chain, XSS, API Sec dl.acm.org10 resourcesDeser, Fuzzing, SQLi docs.google.com5 resourcesSSRF, Talks, API Sec escape.tech6 resourcesGraphQL, IDOR esecurityplanet.com11 resourcesSSRF, Supply Chain, XSS exploit-db.com6 resourcesSQLi, SSTI, Deser gbhackers.com71 resourcesXSS, RCE, SSRF geeksforgeeks.org5 resourcesOSINT, SSRF, SSTI genai.owasp.org5 resourcesAI, Talks github.blog6 resourcesSecrets, Supply Chain, AuthN hackerone.com33 resourcesSSRF, JWT, AuthN hackread.com7 resourcesRCE, AI, Recon helpnetsecurity.com13 resourcesSupply Chain, Secrets, RCE hkcert.org6 resourcesRCE imperva.com7 resourcesGraphQL, AuthZ, CSRF infosecurity-magazine.com6 resourcesBurp, RCE, Python infosecwriteups.com50 resourcesSSRF, Bug Bounty, GraphQL intigriti.com27 resourcesRecon, SSRF, Bug Bounty invicti.com16 resourcesJWT, Deser, SSRF kitploit.com8 resourcesBurp, SSRF, XSS labs.detectify.com9 resourcesBug Bounty, SSRF, XSS letsdatascience.com8 resourcesAI, RCE, API Sec levelup.gitconnected.com12 resourcesgolang, API Sec mas.owasp.org7 resourcesMobile microsoft.com8 resourcesAI, RCE, Supply Chain msn.com7 resourcesSQLi, SSRF, AI null-byte.wonderhowto.com5 resourcesSQLi, XSS, Recon onsecurity.io5 resourcesSSTI, AuthN, RCE osintteam.blog5 resourcesBug Bounty, OSINT, Recon owasp.org36 resourcesAuthN, AuthZ, XSS ox.security8 resourcesSupply Chain, AI, Python paloaltonetworks.com5 resourcesAPI Sec, CSRF, SSRF penligent.ai8 resourcesAuthZ, AI, Bug Bounty pentesterlab.com7 resourcesJWT, Deser, SSRF picussecurity.com5 resourcesSQLi, AuthN, RCE portswigger.net95 resourcesBurp, XSS, SSRF projectdiscovery.io6 resourcesRecon, AuthN, SSRF python.plainenglish.io5 resourcesPython, OSINT radar.offseq.com7 resourcesSSRF, CSRF rapid7.com7 resourcesRCE, SSTI, CSRF realpython.com12 resourcesPython, AuthN rescana.com7 resourcesRCE, Supply Chain, SQLi resecurity.com6 resourcesRCE, SSRF, Deser scworld.com33 resourcesRCE, Supply Chain, SSRF security.snyk.io5 resourcesSSRF, SSTI, XSS securityaffairs.com11 resourcesRCE, SSRF, XSS securityboulevard.com41 resourcesSupply Chain, RCE, SSRF securitylab.github.com5 resourcesSupply Chain, Mobile, RCE securitylabs.datadoghq.com5 resourcesSupply Chain, SQLi securityweek.com18 resourcesRCE, Supply Chain, SSRF sentinelone.com35 resourcesPython, SSRF, CSRF slideshare.net7 resourcesXSS, Talks, XXE snyk.io9 resourcesJWT, golang, Python sonatype.com7 resourcesSupply Chain, Python, Deser stackoverflow.com10 resourcesXSS, CSRF, Python techcrunch.com5 resourcesMobile, Supply Chain techzine.eu5 resourcesAI, Supply Chain, Bug Bounty tenable.com5 resourcesSSRF, Secrets, XXE thecyberexpress.com9 resourcesRCE, XSS, Bug Bounty thehackernews.com57 resourcesRCE, Supply Chain, SSRF thehackerwire.com27 resourcesRCE, SSRF, Deser theregister.com9 resourcesSupply Chain, RCE, AI trendmicro.com8 resourcesSupply Chain, API Sec, AI trufflesecurity.com5 resourcesSecrets, AuthN undercodetesting.com6 resourcesXSS, Fuzzing, IDOR unit42.paloaltonetworks.com13 resourcesAI, Secrets, Supply Chain vaadata.com8 resourcesGraphQL, API Sec, AuthN webpronews.com5 resourcesAuthN, SSRF, XSS whiteoaksecurity.com8 resourcesBurp, AuthZ, Bug Bounty wired.com6 resourcesBug Bounty, OSINT, AI wiz.io35 resourcesXSS, Supply Chain, RCE yeswehack.com12 resourcesRecon, Bug Bounty, Burp zeropath.com5 resourcesAuthN, SSRF, Deser