The Largest Collection of Cybersecurity Tools
Explore 2989 curated tools and resources
Search by name, description, or purpose... (⌘+K)
Join Mandos Brief
Get weekly cybersecurity updates, straight in your inbox.
Read by professionals from
PINNED
Promoted • 4 tools
Commercial
Consulting
Commercial
Application Security
Commercial
Cloud Security
Commercial
Application Security
Want your tool featured here?
Get maximum visibility with pinned placement
LATEST ADDITIONS
Templates for incident response run-books tailored for AWS environments based on NIST guidelines.
Templates for incident response run-books tailored for AWS environments based on NIST guidelines.
Python wrapper for Android APK decompilation with various converter and decompiler options.
A set of scripts for collecting forensic data from Windows and Unix systems respecting the order of volatility.
A set of scripts for collecting forensic data from Windows and Unix systems respecting the order of volatility.
An extended traceroute tool for CSIRT operators with advanced features.
An extended traceroute tool for CSIRT operators with advanced features.
A comprehensive mind map diagram summarizing Javascript syntax and concepts in a single picture.
A comprehensive mind map diagram summarizing Javascript syntax and concepts in a single picture.
A script to detect and remove Canary Tokens with simple signature-based detections.
A script to detect and remove Canary Tokens with simple signature-based detections.
Automate the search for Exploits and Vulnerabilities in important databases.
Automate the search for Exploits and Vulnerabilities in important databases.
An open-source web application security scanner framework that identifies vulnerabilities in web applications.
An open-source web application security scanner framework that identifies vulnerabilities in web applications.
Bearded Avenger is a cybersecurity tool with various integrations and deployment instructions available.
Bearded Avenger is a cybersecurity tool with various integrations and deployment instructions available.
A repository containing material for Android greybox fuzzing with AFL++ Frida mode
A repository containing material for Android greybox fuzzing with AFL++ Frida mode
An open-source artifact metadata API for managing metadata about software resources and governing the software supply chain.
An open-source artifact metadata API for managing metadata about software resources and governing the software supply chain.
A collection of publicly available YARA rules for detecting and classifying malware.
A collection of publicly available YARA rules for detecting and classifying malware.
Use FindYara, an IDA python plugin, to scan your binary with yara rules and quickly jump to matches.
Use FindYara, an IDA python plugin, to scan your binary with yara rules and quickly jump to matches.
A script to assist in creating templates for VirtualBox to enhance VM detection evasion.
A script to assist in creating templates for VirtualBox to enhance VM detection evasion.
Passive sniffer tool for analyzing traffic patterns.
AI-powered assistance feature in Windows for enhanced productivity.
AI-powered assistance feature in Windows for enhanced productivity.
A guide to bypassing RFID card reader security mechanisms using specialized hardware
A guide to bypassing RFID card reader security mechanisms using specialized hardware
A tool designed to handle archive file data and augment Yara's capabilities.
A tool designed to handle archive file data and augment Yara's capabilities.
View physical memory as files in a virtual file system for easy memory analysis and artifact access.
View physical memory as files in a virtual file system for easy memory analysis and artifact access.
WALKOFF is an automation framework for integrating capabilities and devices to streamline tasks.
WALKOFF is an automation framework for integrating capabilities and devices to streamline tasks.
A cybersecurity news platform providing updates on threats, vulnerabilities, and breaches.
A cybersecurity news platform providing updates on threats, vulnerabilities, and breaches.
Python tool for remotely or locally dumping RAM of a Linux client for digital forensics analysis.
Python tool for remotely or locally dumping RAM of a Linux client for digital forensics analysis.
DNSDumpster is a domain research tool for discovering and analyzing DNS records to map an organization's attack surface.
DNSDumpster is a domain research tool for discovering and analyzing DNS records to map an organization's attack surface.
OpenSnitch is a GNU/Linux application firewall with interactive outbound connections filtering and system-wide domain blocking capabilities.
OpenSnitch is a GNU/Linux application firewall with interactive outbound connections filtering and system-wide domain blocking capabilities.