The Largest Platform to Find Cybersecurity Tools

High interaction honeypot solution for Linux systems with data control and integrity features.

ARM TrustZone provides a secure execution environment for applications on ARM processors.

A dependency security scanner that identifies potential supply chain vulnerabilities by checking for available package namespace registrations across Python, JavaScript, PHP, and Maven repositories.

A practical guide to enhancing digital investigations with cutting-edge memory forensics techniques, covering fundamental concepts, tools, and techniques for memory forensics.

SILENTTRINITY is a Python-based, asynchronous C2 framework that uses .NET scripting languages for post-exploitation activities without relying on PowerShell.

Sysdig is a universal system visibility tool that provides deep monitoring and analysis capabilities for traditional systems and containerized environments through system call tracing and network activity monitoring.

Kippo is a medium interaction SSH honeypot with fake filesystem and session logging capabilities.

A multi-cloud DNS security tool that detects dangling DNS records and potential subdomain takeover vulnerabilities by scanning cloud infrastructure and DNS zones.

A command-line tool that fetches known URLs from various sources to identify potential security threats and vulnerabilities.

Companion repository for deploying osquery in a production environment with tailored query packs.

CyLR is a Live Response Collection tool for quickly and securely collecting forensic artifacts from hosts with NTFS file systems.

Remote Acquisition Tool

A cloud-native, event-driven data pipeline toolkit for security teams that processes and routes data across AWS services with custom formatting and API enrichment capabilities.

A guide on using Apache mod_rewrite to strengthen phishing attacks and bypass mobile device restrictions

Find books at your favorite store and stay updated on new features with Universal Book Links.

PhoneyC is a client-side honeypot that emulates vulnerable web browsers to detect and analyze malicious web content and browser-based exploits.

A command-line tool that allows SQL queries to be executed directly on PCAP files for network traffic analysis with support for multiple output formats.

A VMware image for penetration testing purposes

Level 400 training to become a Microsoft Sentinel Ninja.

A tool for translating Dalvik bytecode to Java bytecode for analyzing Android applications.

A full python tool for analyzing Android files with various functionalities.

A method for log volume reduction without losing analytical capability.

A free and open-source deliberately insecure web application for security enthusiasts, developers, and students to discover and prevent web vulnerabilities.

A Go-based tool for discovering and inventorying internet-facing AWS assets across single or multiple accounts to help maintain comprehensive cloud attack surface visibility.