Explore the largest curated directory of cybersecurity tools and resources to enhance your security practices. Find the right solution for your domain.

LINKS

Blog Contact

LEGAL

Terms of services Privacy policy

CyberSecTools

CyberSecTools

Explore the largest curated directory of cybersecurity tools and resources to enhance your security practices. Find the right solution for your domain.

LINKS

Blog Contact

LEGAL

Terms of services Privacy policy

Malware Analysis

Tools and techniques for analyzing, reverse-engineering, and understanding malicious software.Explore 259 curated tools and resources

Search tools and resources by name, description, or purpose... (⌘+K)

All

Free

Commercial

Task

Home
Categories
Malware Analysis

PINNED

CTIChef.com Detection Feeds
A tiered cyber threat intelligence service providing detection rules from public repositories with varying levels of analysis, processing, and guidance for security teams.
1
Commercial
Threat Management
Threat Intelligence
Detection Rules
Siem
Security Operations
Cti
Threat Detection
Security Monitoring
Rule Management
Threat Hunting
Security Information And Event Management
CTIChef.com Detection Feeds
A tiered cyber threat intelligence service providing detection rules from public repositories with varying levels of analysis, processing, and guidance for security teams.
1
Commercial
Threat Management
Threat Intelligence
Detection Rules
Siem
+7
OSINTLeak
OSINTLeak is a tool for discovering and analyzing leaked sensitive information across various online sources to identify potential security risks.
2
Commercial
Digital Forensics
Osint
Information Security
Security Tools
Data Breach
Reconnaissance
Security Research
Threat Intelligence
Red Team
Blue Team
Vulnerability Assessment
OSINTLeak
OSINTLeak is a tool for discovering and analyzing leaked sensitive information across various online sources to identify potential security risks.
2
Commercial
Digital Forensics
Osint
Information Security
Security Tools
+7
ImmuniWeb® Discovery
ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.
0
Commercial
Attack Surface Management
Attack Surface Management
Attack Surface
Continuous Monitoring
Dark Web Monitoring
Cloud Security
Vulnerability Management
Compliance
Third Party Risk
Threat Intelligence
Security Monitoring
ImmuniWeb® Discovery
ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.
0
Commercial
Attack Surface Management
Attack Surface Management
Attack Surface
Continuous Monitoring
+7
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
1
Commercial
Application Security
Application Security
Dependency Scanning
Vulnerability Management
Software Supply Chain
Open Source
Sbom
Security Scanning
Devsecops
Vulnerability Detection
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
1
Commercial
Application Security
Application Security
Dependency Scanning
Vulnerability Management
+6
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
0
Commercial
Cloud Security
Cloud Security
Cloud Native
Vulnerability Management
Compliance
Container Security
Cloud Compliance
Api Security
Kubernetes Security
Security Monitoring
Security Automation
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
0
Commercial
Cloud Security
Cloud Security
Cloud Native
Vulnerability Management
+7
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.
1
Commercial
Application Security
Application Security
Github
Code Security
Static Analysis
Security Automation
Devsecops
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.
1
Commercial
Application Security
Application Security
Github
Code Security
+3

LATEST ADDITIONS

XSStrike
A powerful tool for identifying and exploiting Cross-Site Scripting (XSS) vulnerabilities.
0
Free
Malware Analysis
Xss
Xss Scanner
Fuzzing
Payload Generation
XSStrike
A powerful tool for identifying and exploiting Cross-Site Scripting (XSS) vulnerabilities.
0
Free
Malware Analysis
Xss
Xss Scanner
Fuzzing
+1
Blinder
A Python library for automating time-based blind SQL injection attacks
0
Free
Malware Analysis
Sql Injection
Penetration Testing
Security Research
Blinder
A Python library for automating time-based blind SQL injection attacks
0
Free
Malware Analysis
Sql Injection
Penetration Testing
Security Research
Andor
A blind SQL injection tool written in Golang
0
Free
Malware Analysis
Sql Injection
Golang
Andor
A blind SQL injection tool written in Golang
0
Free
Malware Analysis
Sql Injection
Golang
fuzz.txt
A GitHub repository for fuzzing and testing file formats
0
Free
Malware Analysis
Malware
File Analysis
Fuzzing
fuzz.txt
A GitHub repository for fuzzing and testing file formats
0
Free
Malware Analysis
Malware
File Analysis
Fuzzing
DOMdig
DOM XSS scanner for Single Page Applications
0
Free
Malware Analysis
Appsec
Appsec Tool
Xss
Xss Scanner
DOMdig
DOM XSS scanner for Single Page Applications
0
Free
Malware Analysis
Appsec
Appsec Tool
Xss
+1
Nosey Parker
A command-line program for finding secrets and sensitive information in textual data and Git history.
0
Free
Malware Analysis
Appsec
Binary Security
File Analysis
Git
Security Audit
Nosey Parker
A command-line program for finding secrets and sensitive information in textual data and Git history.
0
Free
Malware Analysis
Appsec
Binary Security
File Analysis
+2
ysoserial
A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
0
Free
Malware Analysis
Java
Deserialization
Vulnerability
Exploit
Payload
Security Research
ysoserial
A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
0
Free
Malware Analysis
Java
Deserialization
Vulnerability
+3
Femida
Automated blind-xss search for Burp Suite
0
Free
Malware Analysis
Appsec
Burp Suite
Blind Xss
Xss
Security Research
Penetration Testing
Python
Femida
Automated blind-xss search for Burp Suite
0
Free
Malware Analysis
Appsec
Burp Suite
Blind Xss
+4
docem
A tool to embed XXE and XSS payloads in various file formats
0
Free
Malware Analysis
Xxe
Xss
docem
A tool to embed XXE and XSS payloads in various file formats
0
Free
Malware Analysis
Xxe
Xss
LinkFinder
A Python script that finds endpoints in JavaScript files to identify potential security vulnerabilities.
0
Free
Malware Analysis
Javascript
Security
Vulnerability
Endpoint
LinkFinder
A Python script that finds endpoints in JavaScript files to identify potential security vulnerabilities.
0
Free
Malware Analysis
Javascript
Security
Vulnerability
+1
xssValidator
A Burp intruder extender for automating and validating XSS vulnerabilities
0
Free
Malware Analysis
Appsec
Xss
Automation
Vulnerability Scanning
xssValidator
A Burp intruder extender for automating and validating XSS vulnerabilities
0
Free
Malware Analysis
Appsec
Xss
Automation
+1
Depix
A tool that recovers passwords from pixelized screenshots
0
Free
Malware Analysis
Password Recovery
Machine Learning
Security Research
Penetration Testing
Depix
A tool that recovers passwords from pixelized screenshots
0
Free
Malware Analysis
Password Recovery
Machine Learning
Security Research
+1
NoSql Injection CLI tool
A command-line tool for identifying NoSQL injection vulnerabilities in MongoDB databases
0
Free
Malware Analysis
Mongodb
Vulnerability Scanning
Security Testing
Cli Tool
Database Security
NoSql Injection CLI tool
A command-line tool for identifying NoSQL injection vulnerabilities in MongoDB databases
0
Free
Malware Analysis
Mongodb
Vulnerability Scanning
Security Testing
+2
extended-xss-search
A better version of my xssfinder tool that scans for different types of XSS on a list of URLs.
0
Free
Malware Analysis
Xss
Xss Scanner
Web Security
Vulnerability Scanning
extended-xss-search
A better version of my xssfinder tool that scans for different types of XSS on a list of URLs.
0
Free
Malware Analysis
Xss
Xss Scanner
Web Security
+1

Malware Analysis

RELATED TASKS

PINNED

CTIChef.com Detection Feeds

CTIChef.com Detection Feeds

OSINTLeak

OSINTLeak

ImmuniWeb® Discovery

ImmuniWeb® Discovery

Checkmarx SCA

Checkmarx SCA

Orca Security

Orca Security

DryRun

DryRun

LATEST ADDITIONS

XSStrike

XSStrike

Blinder

Blinder

Andor

Andor

fuzz.txt

fuzz.txt

DOMdig

DOMdig

Nosey Parker

Nosey Parker

ysoserial

ysoserial

Femida

Femida

docem

docem

LinkFinder

LinkFinder

xssValidator

xssValidator

Depix

Depix

NoSql Injection CLI tool

NoSql Injection CLI tool

extended-xss-search

extended-xss-search