Loading...

Popular Free Commercial Categories Tasks Blog

CyberSecTools

Explore the largest curated directory of cybersecurity tools and resources to enhance your security practices. Find the right solution for your domain.

Operated by:

Mandos Cyber • KVK: 97994448

Netherlands • contact@mandos.io

VAT: NL005301434B12

Copyright © 2025 - All rights reserved

LINKS

LEGAL

Terms of services Privacy policy

The Largest Collection of Cybersecurity Tools

Explore 2989 curated tools and resources

Search by name, description, or purpose... (⌘+K)

Join Mandos Brief

Get weekly roundup of latest cybersecurity articles, straight in your inbox.

Get weekly cybersecurity updates, straight in your inbox.

Read by professionals from

PINNED

Promoted • 4 tools

Commercial

Consulting

Commercial

Application Security

Commercial

Cloud Security

Commercial

Application Security

Want your tool featured here?

Get maximum visibility with pinned placement

LATEST ADDITIONS

Justniffer
A network protocol analyzer for capturing and analyzing network traffic with a focus on TCP/IP flow reconstruction and response time tracking.
0
Free
Network Security
Network Discovery
Protocol Analysis
Traffic Analysis
Web Server
Justniffer
A network protocol analyzer for capturing and analyzing network traffic with a focus on TCP/IP flow reconstruction and response time tracking.
0
Free
Network Security
Network Discovery
Protocol Analysis
Traffic Analysis
+1
ExternalC2
A library for integrating communication channels with the Cobalt Strike External C2 server.
0
Free
Network Security
Cobalt Strike
Websocket
ExternalC2
A library for integrating communication channels with the Cobalt Strike External C2 server.
0
Free
Network Security
Cobalt Strike
Websocket
YaraGen Plugin for x64dbg
Generate Yara rules from function basic blocks in x64dbg.
0
Free
Malware Analysis
Malware Analysis
Yara
Binary Analysis
Rule Generation
YaraGen Plugin for x64dbg
Generate Yara rules from function basic blocks in x64dbg.
0
Free
Malware Analysis
Malware Analysis
Yara
Binary Analysis
+1
TerraGoat
A learning and training project demonstrating common configuration errors in cloud environments.
0
Free
Application Security
Terraform
Devsecops
Misconfiguration
Cloud Security
TerraGoat
A learning and training project demonstrating common configuration errors in cloud environments.
0
Free
Application Security
Terraform
Devsecops
Misconfiguration
+1
wireshark
A free, open-source network protocol analyzer for capturing and displaying packet-level data.
0
Free
Network Security
Network Discovery
Network Security Monitoring
Packet Capture
Protocol Analysis
wireshark
A free, open-source network protocol analyzer for capturing and displaying packet-level data.
0
Free
Network Security
Network Discovery
Network Security Monitoring
Packet Capture
+1
ThreatHunting
A Splunk app mapped to MITRE ATT&CK to guide threat hunts.
0
Free
Threat Management
Splunk
Sysmon
Mitre Attack
Incident Response
Threat Hunting
ThreatHunting
A Splunk app mapped to MITRE ATT&CK to guide threat hunts.
0
Free
Threat Management
Splunk
Sysmon
Mitre Attack
+2
Dow Jones Hammer
Multi-account cloud security tool for AWS with real-time reporting and auto-remediation capabilities.
0
Free
Cloud Security
Aws
Cloud Security
Security Audit
Dow Jones Hammer
Multi-account cloud security tool for AWS with real-time reporting and auto-remediation capabilities.
0
Free
Cloud Security
Aws
Cloud Security
Security Audit
IAM Zero
IAM Zero detects IAM issues and suggests least-privilege policies for AWS and other cloud platforms.
0
Free
IAM
Iam
Least Privilege
Cloud Security
Aws
Gcp
Azure
Kubernetes
IAM Zero
IAM Zero detects IAM issues and suggests least-privilege policies for AWS and other cloud platforms.
0
Free
IAM
Iam
Least Privilege
Cloud Security
+4
OWASP AppSec Europe '16
The OWASP AppSec Europe '16 Conference is a leading gathering in web application security, featuring keynote speakers and in-depth trainings in application security topics.
0
Free
Miscellaneous
Appsec
Conference
Owasp
Security Conference
Web Application Security
OWASP AppSec Europe '16
The OWASP AppSec Europe '16 Conference is a leading gathering in web application security, featuring keynote speakers and in-depth trainings in application security topics.
0
Free
Miscellaneous
Appsec
Conference
Owasp
+2
Flan
A vulnerability scanner that helps you identify and fix vulnerabilities in your code
0
Free
Vulnerability Management
Vulnerability Scanning
Vulnerability Detection
Security Testing
Penetration Testing
Vulnerability Assessment
Flan
A vulnerability scanner that helps you identify and fix vulnerabilities in your code
0
Free
Vulnerability Management
Vulnerability Scanning
Vulnerability Detection
Security Testing
+2
Android App Security Checklist
A comprehensive checklist for securing Android apps
0
Free
Specialized Security
Appsec
Mobile Security
Owasp
Security Testing
Android App Security Checklist
A comprehensive checklist for securing Android apps
0
Free
Specialized Security
Appsec
Mobile Security
Owasp
+1
Hooker
An open-source project for dynamic analysis of Android applications using the Android Substrate framework.
0
Free
Specialized Security
Appsec
Dynamic Analysis
Mobile Security
Hooker
An open-source project for dynamic analysis of Android applications using the Android Substrate framework.
0
Free
Specialized Security
Appsec
Dynamic Analysis
Mobile Security
Evilginx2
A standalone man-in-the-middle attack framework used for phishing login credentials and bypassing 2-factor authentication.
0
Free
Offensive Security
Phishing
Penetration Testing
Security Research
Attack Vector
Evilginx2
A standalone man-in-the-middle attack framework used for phishing login credentials and bypassing 2-factor authentication.
0
Free
Offensive Security
Phishing
Penetration Testing
Security Research
+1
Fail2ban
Fail2ban is a daemon that automatically bans IP addresses showing malicious behavior by monitoring log files and updating firewall rules to prevent brute-force attacks.
0
Free
Network Security
Network Security
Intrusion Detection
Firewall
Brute Force
Log Analysis
Automation
Linux
Iptables
Bruteforcing
Fail2ban
Fail2ban is a daemon that automatically bans IP addresses showing malicious behavior by monitoring log files and updating firewall rules to prevent brute-force attacks.
0
Free
Network Security
Network Security
Intrusion Detection
Firewall
+6
Netlas
Threat intelligence and digital risk protection platform
0
Free
Vulnerability Management
Threat Intelligence
Threat Hunting
Vulnerability Management
Incident Response
Cyber Security
Netlas
Threat intelligence and digital risk protection platform
0
Free
Vulnerability Management
Threat Intelligence
Threat Hunting
Vulnerability Management
+2
TANNER
TANNER is a remote data analysis service that evaluates HTTP requests and generates responses for SNARE honeypots while emulating application vulnerabilities.
0
Free
Honeypots
Honeypot
Http
Data Analysis
Python
Redis
Docker
Php
Attack Detection
Deception
TANNER
TANNER is a remote data analysis service that evaluates HTTP requests and generates responses for SNARE honeypots while emulating application vulnerabilities.
0
Free
Honeypots
Honeypot
Http
Data Analysis
+6
yaml2yara
A tool for creating custom detection rules from YAML input
0
Free
Threat Management
Yara
Rule Engine
Rule Generation
yaml2yara
A tool for creating custom detection rules from YAML input
0
Free
Threat Management
Yara
Rule Engine
Rule Generation
Binwalk
Binwalk is a tool for analyzing, reverse engineering, and extracting firmware images with security and Python 2.7 deprecation notices.
0
Free
Malware Analysis
Binary Security
Firmware Analysis
File Analysis
Reverse Engineering
Directory Traversal
Binwalk
Binwalk is a tool for analyzing, reverse engineering, and extracting firmware images with security and Python 2.7 deprecation notices.
0
Free
Malware Analysis
Binary Security
Firmware Analysis
File Analysis
+2
usbrip
A forensics tool for tracking USB device artifacts on Linux machines.
0
Free
Digital Forensics
Forensics
Usb
Linux
Log Analysis
Command Line Tool
File Analysis
usbrip
A forensics tool for tracking USB device artifacts on Linux machines.
0
Free
Digital Forensics
Forensics
Usb
Linux
+3
Grafana SSRF
Authenticated SSRF in Grafana
0
Free
Network Security
Ssrf
Security Testing
Penetration Testing
Grafana SSRF
Authenticated SSRF in Grafana
0
Free
Network Security
Ssrf
Security Testing
Penetration Testing
Abusing the COM Registry Structure: CLSID, LocalServer32, & InprocServer32
Abusing the COM Registry Structure: CLSID, LocalServer32, & InprocServer32
0
Free
Malware Analysis
Lateral Movement
Evasion
Persistence
Abusing the COM Registry Structure: CLSID, LocalServer32, & InprocServer32
Abusing the COM Registry Structure: CLSID, LocalServer32, & InprocServer32
0
Free
Malware Analysis
Lateral Movement
Evasion
Persistence
libregf
A library to access and parse Windows NT Registry File (REGF) format.
0
Free
Digital Forensics
Windows
Registry
File Analysis
Binary Security
libregf
A library to access and parse Windows NT Registry File (REGF) format.
0
Free
Digital Forensics
Windows
Registry
File Analysis
+1
hived
Hived is a honeypot tool for deceiving attackers and gathering information.
0
Free
Honeypots
Honeypot
Attack Detection
Mit License
hived
Hived is a honeypot tool for deceiving attackers and gathering information.
0
Free
Honeypots
Honeypot
Attack Detection
Mit License
Detection Content Repository
Repository for detection content with various types of rules and payloads.
0
Free
Threat Management
Yara
Sigma
Threat Intel
Rule Engine
Detection Content Repository
Repository for detection content with various types of rules and payloads.
0
Free
Threat Management
Yara
Sigma
Threat Intel
+1

Previous
43
44
45
46
47
125
Next