The Largest Collection of Cybersecurity Tools

A Scriptable Android Debugger for reverse engineers and developers.

A project sharing malicious URLs used for malware distribution to help protect networks.

A repository of officially managed detection rules for the Falco runtime security monitoring system that identifies threats, abnormal behaviors, and compliance violations through syscall and container event analysis.

Prowler is an open source multi-cloud security assessment tool that performs audits, compliance checks, and security evaluations across AWS, Azure, GCP, and Kubernetes environments.

A tool for enumerating and attacking GitHub Actions pipelines

Hapi is a Node.js web application framework that provides built-in functionality for building scalable server-side applications and APIs with security features and plugin architecture.

A fuzzer for detecting open redirect vulnerabilities

PCMag's Security Watch offers timely insights and reviews on security software and technologies.

StaCoAn is a cross-platform tool for static code analysis on mobile applications, emphasizing the identification of security vulnerabilities.

Collection of cybersecurity conference videos recorded by Cooper (@Ministraitor)

An open-source, drag-and-drop security workflow builder with integrated case management for automating security workflows and tackling alert fatigue.

Track postMessage usage with this Chrome Extension

YaraHunter scans container images, running Docker containers, and filesystems using YARA rules to detect malware indicators and signs of compromise.

YLS Language Server for YARA Language with comprehensive features and Python 3.8 support.

SecLists is a comprehensive repository of security testing lists including usernames, passwords, URLs, fuzzing payloads, and web shells used during penetration testing and security assessments.

Needle is a discontinued open source modular framework for iOS application security assessments that was compatible with iOS 9 and iOS 10 before being replaced by Objection.

A threat intelligence domain/IP/hash threat feeds checker that checks IPVoid, URLVoid, Virustotal, and Cymon.

A Splunk application that processes honeypot data from hpfeeds channels to generate clustered meta-events and visualizations for security analysis.

A project providing honeypots for embedded device vulnerabilities with support for AWS integration and JSON output.

A database protection suite that provides field-level encryption, access control, and intrusion detection for distributed applications storing sensitive data.

A PHP port of Rack::Honeypot, a spam trap that detects and blocks spambots

Open-source Java application for creating proxies for traffic analysis & modification.

A security assessment tool that identifies AWS IAM permissions by systematically testing API calls to determine the actual scope of access granted to specific credentials.

Cyber Intelligence Management Platform with threat tracking, forensic artifacts, and YARA rule storage.