The Largest Platform to Find Cybersecurity Tools

A curated list documenting open-source projects that incorporate political protests in their software, ranging from messages to conditional malware.

A tool for extracting files from network traffic based on file signatures with support for various file formats and scalable search algorithm.

A free endpoint security tool for host investigative capabilities to find signs of malicious activity through memory and file analysis.

CIFv3 is the next version of the Cyber Intelligence Framework, developed against Ubuntu16, encouraging users to transition from CIFv2.

ASH is an automated security scanning tool that integrates multiple open-source security scanners to perform preliminary security checks on code, infrastructure, and IAM configurations during development.

Stixview is a JS library for embeddable interactive STIX2 graphs, aiming to bridge the gap between CTI stories and structured CTI snapshots.

Valkyrie is a sophisticated file verdict system that enhances malware detection through behavioral analysis and extensive file feature examination.

An easy-to-use and lightweight API wrapper for Censys APIs with support for Python 3.8+.

A multi-cloud asset enumeration tool that helps blue teams centralize and inventory assets across multiple cloud providers with minimal configuration.

A community-led project focused on standardizing security event logs.

A suite for man in the middle attacks, featuring sniffing of live connections, content filtering, and protocol dissection.

Rspamd is an advanced spam filtering system and email processing framework that evaluates messages using multiple analysis methods and integrates with MTAs for high-volume email processing.

Migrated Splunk SOAR Connectors to new GitHub organization for better organization and management.

Exploiting a vulnerability in HID iClass system to retrieve master authentication key for cloning cards and changing reader settings.

An open source DDoS protection system that uses distributed algorithms to defend against multi-vector attacks and scale to handle varying bandwidth requirements for network operators and service providers.

Track user activity and API usage on AWS and in hybrid and multicloud environments.

A vulnerability assessment and management tool that uses patented technology to accurately identify vulnerabilities and prioritize them by risk.

Threat intelligence platform providing real-time threat data and insights.

A list of disposable email domains to detect or block disposable accounts

ZoomEye is an advanced cyberspace search engine that provides detailed information on cyberspace assets, including server software and version information, for cybersecurity experts, researchers, and enterprises.

A backend agnostic debugger frontend for debugging binaries without source code access.

A simple honeypot that opens a listening socket and waits for connection attempts, with configurable reply and event handling

A security framework for process isolation and sandboxing based on capability-based security principles.

PFQ v6.2 is a functional framework for Linux optimized for efficient packet capture/transmission and in-kernel processing.