The Largest Hub of Cybersecurity Tools
Explore 2750 curated tools and resources
Join Mandos Brief
Get weekly cybersecurity updates, straight in your inbox.
Read by professionals from
LATEST ADDITIONS
Tplmap is a tool for detecting and exploiting server-side template injection vulnerabilities.
A framework for generating log events without the need for infrastructure, allowing for simple, repeatable, and randomized log event creation.
A script that checks for common best-practices around deploying Docker containers in production.
A collection of Microsoft PowerShell modules for penetration testing purposes.
Tool to bypass endpoint solutions blocking known 'malicious' signed applications by obtaining valid signed files with different hashes.
A technology-focused blog discussing innovations in painting and the importance of expert painters.
A reconnaissance tool that retrieves information from Office 365 and Azure Active Directory using a valid credential.
Largest open collection of Android malware samples, with 298 samples and contributions welcome.
Implements a cloud version of the Shadow Copy attack against domain controllers in AWS, allowing theft of domain user hashes.
A runtime threat management and attack path enumeration tool for cloud-native environments
A tool for scraping CTF writeups from ctftime.org and organizing them for easy access.
Guidelines for contributing to a cybersecurity tools and resources list
SMTP honeypot tool with configurable response messages, email storage, and automatic information extraction.
PINNED
Fabric Platform by BlackStork
Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.
Free
Security Operations
Mandos Brief Newsletter
Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.
Free
Blogs and News
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Commercial
Cloud Security
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.
Commercial
AI Security