https://stream.echo6.co/videos/watch/1081ad3c-3b70-4e1e-a43c-9bcd756a2fac We just launched the FREE tier of courses in the TCM Security. These courses include Practical Help Desk, Linux 100: Fundamentals, Programming 100: Fundamentals, and Soft Skills for the Job Market. Sign up today! https://www.tcm.rocks/freetier-y Sponsor a Video: https://www.tcm.rocks/Sponsors Pentests & Security Consulting: https://tcm-sec.com Get Trained: https://academy.tcm-sec.com Get Certified: https://certifications.tcm-sec.com Merch: https://merch.tcm-sec.com Looking to step up your web app pentesting and bug bounty skills? In this video, Alex from TCM Security walks you through some of the best FREE tools and resources to help you sharpen your AppSec knowledge and techniques. Whether you're just starting out or looking to boost your skill set, these tools are must-haves! He covers: Caido, Burp Suite, FFUF/Dirsearch, CyberChef for web app pentesting, Must-have browser plugins and dev tools, Resources like PortSwigger Academy and Jason Haddix's Bug Hunter - Methodology, Hands-on learning with FreeCodeCamp and The Odin Project, What's your go-to free web app pentesting tool? Let us know in the comments! #webapp #pentesting #thecybermentor #freetools #hacking #infosec 📱Social Media📱 X: https://x.com/TCMSecurity Twitch: https://www.twitch.tv/thecybermentor Instagram: https://www.instagram.com/tcmsecurity/ LinkedIn: https://www.linkedin.com/company/tcm-security-inc/ TikTok: https://www.tiktok.com/@tcmsecurity Discord: https://discord.gg/tcm Facebook: https://www.facebook.com/tcmsecure Timestamps: 00:00 Free Pentesting tools 00:40 Pentesting and BugBounty Tools 06:54 Free resources for WebApp Pentesting 09:25 Start Pentesting and BugBounty from Zero 💸Donate💸 Like the channel? Please consider supporting me on Patreon: https://www.patreon.com/thecybermentor Support the stream (one-time): https://streamlabs.com/thecybermentor Hacker Books: Penetration Testing: A Hands-On Introduction to Hacking: https://amzn.to/31GN7iX The Hacker Playbook 3: https://amzn.to/34XkIY2 Hacking: The Art of Exploitation: https://amzn.to/2VchDyL The Web Application Hacker's Handbook: https://amzn.to/30Fj21S Real-World Bug Hunting: A Field Guide to Web Hacking: https://amzn.to/2V9srOe Social Engineering: The Science of Human Hacking: https://amzn.to/31HAmVx Linux Basics for Hackers: https://amzn.to/34WvcXP Python Crash Course, 2nd Edition: https://amzn.to/30gINu0 Violent Python: https://amzn.to/2QoGoJn Black Hat Python: https://amzn.to/2V9GpQk My Build: lg 32gk850g-b 32" Gaming Monitor:https://amzn.to/30C0qzV darkFlash Phantom Black ATX Mid-Tower Case: https://amzn.to/30d1UW1 EVGA 2080TI: https://amzn.to/30d2lj7 MSI Z390 MotherBoard: https://amzn.to/30eu5TL Intel 9700K: https://amzn.to/2M7hM2p G.SKILL 32GB DDR4 RAM: https://amzn.to/2M638Zb Razer Nommo Chroma Speakers: https://amzn.to/30bWjiK Razer BlackWidow Chroma Keyboard: https://amzn.to/2V7A0or CORSAIR Pro RBG Gaming Mouse: https://amzn.to/30hvg4P Sennheiser RS 175 RF Wireless Headphones: https://amzn.to/31MOgpu My Recording Equipment: Panasonic G85 4K Camera: https://amzn.to/2Mk9vsf Logitech C922x Pro Webcam: https://amzn.to/2LIRxAp Aston Origin Microphone: https://amzn.to/2LFtNNE Rode VideoMicro: https://amzn.to/309yLKH Mackie PROFX8V2 Mixer: https://amzn.to/31HKOMB Elgato Cam Link 4K: https://amzn.to/2QlicYx Elgate Stream Deck: https://amzn.to/2OlchA5 *We are a participant in the Amazon Services LLC Associates Program, an affiliate advertising program designed to provide a means for us to earn fees by linking to Amazon.com and affiliated sites. 📙Free Related Resources📙 Caido: https://caido.io/ Burp Suite: https://portswigger.net/burp dirsearch: https://github.com/maurosoria/dirsearch FFUF: https://github.com/ffuf/ffuf Wappalyzer: https://addons.mozilla.org/en-US/firefox/addon/wappalyzer/ Firefox Multi-Account Containers: https://addons.mozilla.org/en-US/firefox/addon/multi-account-containers/ PortSwigger Academy: https://portswigger.net/web-security The Bug Hunter's Methodology Full 2-hour Training by Jason Haddix: https://www.youtube.com/watch?v=uKWu6yhnhbQ The Odin Project: https://www.theodinproject.com/ Free Code Camp: https://www.freecodecamp.org/ Fri, 17 Apr 2026 08:57:08 GMT https://validator.w3.org/feed/docs/rss2.html PeerTube - https://stream.echo6.co https://stream.echo6.co/client/assets/images/icons/icon-512x512.png https://stream.echo6.co/videos/watch/1081ad3c-3b70-4e1e-a43c-9bcd756a2fac All rights reserved, unless otherwise specified in the terms specified at https://stream.echo6.co/about and potential licenses granted by each content's rightholder.