appsec.fyi

Sources

117 application security publishers with 5+ resources on appsec.fyi, indexed cross-topic.

Browse by source

Each page collects everything we’ve curated from a given publisher across all 25 active topics. Aggregator platforms (Medium, GitHub, X, Reddit, YouTube) are excluded so the list reflects original-publisher signal.

0xn3va.gitbook.io5 resourcesAuthN, GraphQL, JWT acunetix.com8 resourcesXSS, CSRF, Deser advisories.gitlab.com17 resourcesSSRF, Deser, Secrets aikido.dev12 resourcesPython, Supply Chain, XSS akamai.com6 resourcesRCE, API Sec, JWT appsec.guide6 resourcesFuzzing, Burp appsecsanta.com5 resourcesMobile, Secrets, Python arcticwolf.com7 resourcesRCE, SSRF, JWT arxiv.org31 resourcesAI, Fuzzing, Deser assetnote.io5 resourcesRecon, GraphQL, SSRF aws.amazon.com5 resourcesAuthZ, Secrets, SSRF betterprogramming.pub5 resourcesgolang blackhat.com5 resourcesTalks, Deser, SSTI bleepingcomputer.com39 resourcesRCE, Supply Chain, SSRF blockchain-council.org5 resourcesAI blog.doyensec.com5 resourcesAPI Sec, AuthN, Deser blog.gitguardian.com16 resourcesSecrets, Supply Chain, AI blog.golang.org5 resourcesgolang blog.logrocket.com5 resourcesgolang, GraphQL blog.talosintelligence.com5 resourcesRCE, AuthN, Supply Chain blog.trailofbits.com7 resourcesFuzzing, golang, Deser blog.zsec.uk6 resourcesXXE, RCE, API Sec book.hacktricks.xyz12 resourcesSSRF, SSTI, API Sec bugcrowd.com11 resourcesXSS, Bug Bounty, AuthN cheatsheetseries.owasp.org18 resourcesAuthN, AuthZ, SSRF checkmarx.com5 resourcesPython, GraphQL cloud.google.com7 resourcesDeser, RCE, Mobile cobalt.io10 resourcesAPI Sec, AuthN, CSRF corneacristian.medium.com6 resourcesBug Bounty, CSRF, IDOR csoonline.com26 resourcesRCE, Supply Chain, AI cxodigitalpulse.com12 resourcesSupply Chain, RCE cybernews.com17 resourcesSupply Chain, RCE, API Sec cyberpress.org121 resourcesRCE, XSS, Supply Chain cyberscoop.com5 resourcesSupply Chain, AI, XSS cybersecuritydive.com5 resourcesRCE, Supply Chain cybersecuritynews.com128 resourcesRCE, XSS, SSRF cyberw1ng.medium.com5 resourcesSSRF, AuthN, Bug Bounty dailycve.com5 resourcesCSRF, AuthN, IDOR danaepp.com9 resourcesBurp, API Sec, AuthN danielmiessler.com6 resourcesBug Bounty, AI, Recon darkreading.com13 resourcesSupply Chain, XSS, RCE dl.acm.org10 resourcesDeser, Fuzzing, SQLi docs.google.com5 resourcesSSRF, Talks, API Sec escape.tech6 resourcesGraphQL, IDOR esecurityplanet.com16 resourcesSupply Chain, RCE, SSRF exploit-db.com6 resourcesSQLi, SSTI, Deser gbhackers.com114 resourcesRCE, XSS, SSRF geeksforgeeks.org5 resourcesOSINT, SSRF, SSTI genai.owasp.org5 resourcesAI, Talks github.blog7 resourcesSupply Chain, Secrets, AuthN hackerone.com33 resourcesSSRF, JWT, AuthN hackread.com12 resourcesRCE, AI, OSINT helpnetsecurity.com23 resourcesRCE, Supply Chain, Secrets hkcert.org14 resourcesRCE, Python imperva.com7 resourcesGraphQL, AuthZ, CSRF infosecurity-magazine.com12 resourcesSupply Chain, AI, Burp infosecwriteups.com50 resourcesSSRF, Bug Bounty, GraphQL intigriti.com27 resourcesRecon, SSRF, Bug Bounty invicti.com16 resourcesJWT, Deser, SSRF kitploit.com8 resourcesBurp, SSRF, XSS labs.detectify.com9 resourcesBug Bounty, SSRF, XSS letsdatascience.com18 resourcesAPI Sec, RCE, AI levelup.gitconnected.com12 resourcesgolang, API Sec mas.owasp.org7 resourcesMobile microsoft.com11 resourcesRCE, AI, Supply Chain msn.com17 resourcesAI, Supply Chain, Fuzzing null-byte.wonderhowto.com5 resourcesSQLi, XSS, Recon onsecurity.io5 resourcesSSTI, AuthN, RCE osintteam.blog5 resourcesBug Bounty, OSINT, Recon owasp.org36 resourcesAuthN, AuthZ, XSS ox.security13 resourcesSupply Chain, AI, API Sec paloaltonetworks.com6 resourcesAPI Sec, Supply Chain, CSRF penligent.ai8 resourcesAuthZ, AI, Bug Bounty pentesterlab.com6 resourcesJWT, Deser, SSRF picussecurity.com5 resourcesSQLi, AuthN, RCE portswigger.net97 resourcesBurp, XSS, SSRF projectdiscovery.io6 resourcesRecon, AuthN, SSRF python.plainenglish.io5 resourcesPython, OSINT radar.offseq.com7 resourcesSSRF, CSRF rapid7.com7 resourcesRCE, SSTI, CSRF realpython.com12 resourcesPython, AuthN rescana.com16 resourcesSupply Chain, RCE, SQLi resecurity.com6 resourcesRCE, SSRF, Deser reversinglabs.com9 resourcesSupply Chain, Secrets, Fuzzing scworld.com57 resourcesRCE, Supply Chain, Secrets secnews.gr5 resourcesXSS, Bug Bounty, Deser security.snyk.io5 resourcesSSRF, SSTI, XSS securityaffairs.com22 resourcesRCE, SSRF, SQLi securityboulevard.com56 resourcesSupply Chain, RCE, API Sec securitylab.github.com5 resourcesSupply Chain, Mobile, RCE securitylabs.datadoghq.com5 resourcesSupply Chain, SQLi securityweek.com46 resourcesSupply Chain, RCE, Mobile sentinelone.com35 resourcesPython, SSRF, CSRF slideshare.net7 resourcesXSS, Talks, XXE snyk.io11 resourcesJWT, golang, Python socradar.io5 resourcesMobile, OSINT, Python sonatype.com7 resourcesSupply Chain, Python, Deser sqmagazine.co.uk5 resourcesAPI Sec, RCE, AI stackoverflow.com10 resourcesXSS, CSRF, Python techcrunch.com8 resourcesMobile, Supply Chain techzine.eu9 resourcesSupply Chain, AI, Bug Bounty tenable.com5 resourcesSSRF, Secrets, XXE thecyberexpress.com16 resourcesRCE, Supply Chain, XSS thehackernews.com95 resourcesRCE, Supply Chain, SSRF thehackerwire.com27 resourcesRCE, SSRF, Deser theregister.com21 resourcesSupply Chain, RCE, API Sec tipranks.com12 resourcesSupply Chain trendmicro.com10 resourcesSupply Chain, API Sec, AI trufflesecurity.com5 resourcesSecrets, AuthN undercodetesting.com6 resourcesXSS, Fuzzing, IDOR unit42.paloaltonetworks.com15 resourcesAI, Supply Chain, RCE vaadata.com8 resourcesGraphQL, API Sec, AuthN whiteoaksecurity.com8 resourcesBurp, AuthZ, Bug Bounty wired.com6 resourcesBug Bounty, OSINT, AI wiz.io41 resourcesXSS, Supply Chain, RCE yeswehack.com12 resourcesRecon, Bug Bounty, Burp zeropath.com5 resourcesAuthN, SSRF, Deser