Loading...

Popular Free Commercial Categories Tasks Blog

CyberSecTools

Explore the largest curated directory of cybersecurity tools and resources to enhance your security practices. Find the right solution for your domain.

Operated by:

Mandos Cyber • KVK: 97994448

Netherlands • contact@mandos.io

VAT: NL005301434B12

Copyright © 2025 - All rights reserved

LINKS

LEGAL

Terms of services Privacy policy

The Largest Collection of Cybersecurity Tools

Explore 2989 curated tools and resources

Search by name, description, or purpose... (⌘+K)

Join Mandos Brief

Get weekly roundup of latest cybersecurity articles, straight in your inbox.

Get weekly cybersecurity updates, straight in your inbox.

Read by professionals from

PINNED

Promoted • 4 tools

Commercial

Consulting

Commercial

Application Security

Commercial

Cloud Security

Commercial

Application Security

Want your tool featured here?

Get maximum visibility with pinned placement

LATEST ADDITIONS

Ghost in the Shellcode
An annual jeopardy-style capture-the-flag contest with challenges related to cybersecurity.
0
Free
Resources
Capture The Flag
Ctf
Reverse Engineering
Ghost in the Shellcode
An annual jeopardy-style capture-the-flag contest with challenges related to cybersecurity.
0
Free
Resources
Capture The Flag
Ctf
Reverse Engineering
SpiderFoot
Automate OSINT for threat intelligence and attack surface mapping with SpiderFoot.
0
Free
Vulnerability Management
Osint
Threat Intelligence
Attack Surface Mapping
Security Risks
Open Source Intelligence
SpiderFoot
Automate OSINT for threat intelligence and attack surface mapping with SpiderFoot.
0
Free
Vulnerability Management
Osint
Threat Intelligence
Attack Surface Mapping
+2
Detection Lab
A lab designed for defenders to quickly build a Windows domain pre-loaded with security tooling and best practices in system logging configurations.
0
Free
Miscellaneous
Blue Team
Lab
Vagrant
Windows
Detection Lab
A lab designed for defenders to quickly build a Windows domain pre-loaded with security tooling and best practices in system logging configurations.
0
Free
Miscellaneous
Blue Team
Lab
Vagrant
+1
Shuffle Workflows
Workflows for Shuffle automation tool with structured categories and customization options.
0
Free
Security Operations
Automation
Workflow
Github
Shuffle Workflows
Workflows for Shuffle automation tool with structured categories and customization options.
0
Free
Security Operations
Automation
Workflow
Github
Java Vulnerable
A vulnerable web application for learning about web application vulnerabilities and writing secure code.
0
Free
Resources
Appsec
Web App Security
Vulnerable Apps
Java
Docker
Virtual Machine
Java Vulnerable
A vulnerable web application for learning about web application vulnerabilities and writing secure code.
0
Free
Resources
Appsec
Web App Security
Vulnerable Apps
+3
Haaukins
Haaukins is an automated virtualization platform for cybersecurity education with a focus on capture the flag concept.
0
Free
Resources
Cybersecurity
Capture The Flag
Virtualization
Docker
Golang
Security Education
Haaukins
Haaukins is an automated virtualization platform for cybersecurity education with a focus on capture the flag concept.
0
Free
Resources
Cybersecurity
Capture The Flag
Virtualization
+3
ATT&CK® Navigator
A tool for navigating and annotating ATT&CK matrices with the ability to define custom layers for specific views.
0
Free
Threat Management
Attack Paths
Attack Platform
Attandck
Cybersecurity
Infosec
Threat Intelligence
ATT&CK® Navigator
A tool for navigating and annotating ATT&CK matrices with the ability to define custom layers for specific views.
0
Free
Threat Management
Attack Paths
Attack Platform
Attandck
+3
Stegdetect
Automated tool for detecting steganographic content in images, with F5 detection capabilities.
0
Free
Data Protection
Steganography
Image Analysis
Forensics
Digital Forensics
Image Processing
Stegdetect
Automated tool for detecting steganographic content in images, with F5 detection capabilities.
0
Free
Data Protection
Steganography
Image Analysis
Forensics
+2
AVML (Acquire Volatile Memory for Linux)
A portable volatile memory acquisition tool for Linux.
0
Free
Digital Forensics
Memory Acquisition
Linux
Rust
Binary Security
File Analysis
AVML (Acquire Volatile Memory for Linux)
A portable volatile memory acquisition tool for Linux.
0
Free
Digital Forensics
Memory Acquisition
Linux
Rust
+2
Plaso
A Python-based engine for automatic creation of timelines in digital forensic analysis
0
Free
Digital Forensics
Digital Forensics
Forensic Analysis
Computer Forensics
Plaso
A Python-based engine for automatic creation of timelines in digital forensic analysis
0
Free
Digital Forensics
Digital Forensics
Forensic Analysis
Computer Forensics
InQuest YARA Rules
A collection of YARA rules for research and hunting purposes.
0
Free
Threat Management
Yara
Powershell
Malware Analysis
Threat Hunting
Incident Response
InQuest YARA Rules
A collection of YARA rules for research and hunting purposes.
0
Free
Threat Management
Yara
Powershell
Malware Analysis
+2
Digital Forensics Artifact Knowledge Base
Documentation project for Digital Forensics Artifact Repository
0
Free
Digital Forensics
Digital Forensics
Forensic Artifacts
Forensic Analysis
Digital Forensics Artifact Knowledge Base
Documentation project for Digital Forensics Artifact Repository
0
Free
Digital Forensics
Digital Forensics
Forensic Artifacts
Forensic Analysis
Cyber Security Degrees
A one-stop online resource for cybersecurity degree programs in the US, offering information on undergraduate and graduate levels, online programs, and career options.
0
Free
Resources
Cybersecurity
Education
Online Learning
Cyber Security Degrees
A one-stop online resource for cybersecurity degree programs in the US, offering information on undergraduate and graduate levels, online programs, and career options.
0
Free
Resources
Cybersecurity
Education
Online Learning
Repokid
Repokid uses Access Advisor to remove unused service permissions from IAM roles in AWS.
0
Free
IAM
Aws
Aws Config
Aws Security
Iam
Security Audit
Security Automation
Repokid
Repokid uses Access Advisor to remove unused service permissions from IAM roles in AWS.
0
Free
IAM
Aws
Aws Config
Aws Security
+3
Dockerfiles for Testing
Create Docker container images for testing and long-term use.
0
Free
Cloud Security
Docker
Container Security
Devops
Devsecops
Cloud Security
Dockerfiles for Testing
Create Docker container images for testing and long-term use.
0
Free
Cloud Security
Docker
Container Security
Devops
+2
Detection and Hunting Signatures
A set of interrelated detection rules for improving detection and hunting visibility and context
0
Free
Network Security
Snort
Yara
Clamav
Rule Engine
Detection and Hunting Signatures
A set of interrelated detection rules for improving detection and hunting visibility and context
0
Free
Network Security
Snort
Yara
Clamav
+1
Glastopf Analytics
A Python web application honeypot that provides simple statistics for the Glastopf.
0
Free
Honeypots
Appsec
Honeypot
Python
Web Application Security
Analytics
Glastopf Analytics
A Python web application honeypot that provides simple statistics for the Glastopf.
0
Free
Honeypots
Appsec
Honeypot
Python
+2
SMOD
Modular framework for pentesting Modbus protocol with diagnostic and offensive features.
0
Free
Offensive Security
Modbus
Pentesting
Scada
Tcp
Python
Scapy
SMOD
Modular framework for pentesting Modbus protocol with diagnostic and offensive features.
0
Free
Offensive Security
Modbus
Pentesting
Scada
+3
Mailoney
SMTP Honeypot with custom modules for different modes of operation.
0
Free
Honeypots
Smtp
Honeypot
Python
Email Security
Mailoney
SMTP Honeypot with custom modules for different modes of operation.
0
Free
Honeypots
Smtp
Honeypot
Python
+1
Poortego
A cybersecurity tool for managing data points and cyber threat indicators with a focus on neo4j data traversal.
0
Free
Threat Management
Neo4j
Python
Cybersecurity
Poortego
A cybersecurity tool for managing data points and cyber threat indicators with a focus on neo4j data traversal.
0
Free
Threat Management
Neo4j
Python
Cybersecurity
Twisted Honeypots
A Python-based honeypot service for SSH, FTP, and Telnet connections
0
Free
Honeypots
Honeypot
Ssh
Ftp
Telnet
Pentesting
Mysql
Python
Twisted Honeypots
A Python-based honeypot service for SSH, FTP, and Telnet connections
0
Free
Honeypots
Honeypot
Ssh
Ftp
+4
LaBrea
LaBrea is a 'sticky' honeypot and IDS tool that traps malicious actors by creating virtual servers on unused IP addresses.
0
Free
Honeypots
Hacking Tool
Penetration Testing
Security Testing
Network Security
Honeytrap
LaBrea
LaBrea is a 'sticky' honeypot and IDS tool that traps malicious actors by creating virtual servers on unused IP addresses.
0
Free
Honeypots
Hacking Tool
Penetration Testing
Security Testing
+2
Dependency Combobulator
Open-Source framework for detecting and preventing dependency confusion leakage with a holistic approach and wide technology support.
0
Free
Application Security
Appsec
Dependency Management
Security Audit
Pentesting
Security Tool
Vulnerability Detection
Dependency Combobulator
Open-Source framework for detecting and preventing dependency confusion leakage with a holistic approach and wide technology support.
0
Free
Application Security
Appsec
Dependency Management
Security Audit
+3
Gopherus
A tool for exploiting SSRF and gaining RCE in various servers
0
Free
Honeypots
Ssrf
Rce
Exploit
Vulnerability Scanning
Web App Security
Gopherus
A tool for exploiting SSRF and gaining RCE in various servers
0
Free
Honeypots
Ssrf
Rce
Exploit
+2

Previous
50
51
52
53
54
125
Next