The Largest Platform to Find Cybersecurity Tools

OSXCollector is a forensic evidence collection & analysis toolkit for OSX.

Mass IP port scanner for Internet-scale scanning with high speed and flexibility.

A command-line tool for managing and analyzing Microsoft Forefront TMG and UAG configurations.

CloudTracker analyzes CloudTrail logs against IAM policies to identify over-privileged AWS users and roles by comparing actual permission usage with granted permissions.

Incident Response Documentation tool for tracking findings and tasks.

Blazingly fast Yara queries for malware analysts with an analyst-friendly web GUI.

A command line tool that automates vulnerability scanning of Ruby gems and Rails stack components by identifying CVE vulnerabilities in detected technology versions.

A simple ransomware protection that intercepts and kills malicious processes attempting to delete shadow copies using vssadmin.exe.

Browse and analyze iPhone/iPad backups with detailed file properties and various viewers.

Detect signed malware and track stolen code-signing certificates using osquery.

ActorTrackr is an open source web application for storing, searching, and linking threat actor intelligence data from public repositories and user contributions.

Revelo is an experimental Javascript deobfuscator tool with features to analyze and deobfuscate Javascript code.

A serverless SOAR framework for AWS GuardDuty that automatically executes configurable response actions based on security findings and threat severity.

DIVA Android is an intentionally vulnerable Android application designed to teach security professionals and developers about mobile application security flaws through hands-on learning.

libevt is a library to access and parse Windows Event Log (EVT) files.

A unified repository for different Metasploit Framework payloads.

Guidance on securing NFS in Red Hat Enterprise Linux 7

Universal hexadecimal editor for computer forensics, data recovery, and IT security.

A three-part educational series documenting techniques for achieving domain administrator privileges in Windows environments, covering attack methods, defenses, and remediation strategies.

Repository of pcap traces for evaluating Network Intrusion Detection Systems in HVAC systems.

ILSpy is the open-source .NET assembly browser and decompiler with various decompiler frontends and features.

A comprehensive guide to mobile application penetration testing, covering various topics and techniques

FingerprintJS is a client-side browser fingerprinting library that provides a unique visitor identifier unaffected by incognito mode.

Extracts resources (bitmaps, icons, cursors, AVI movies, HTML files, and more) from dll files