Explore the largest curated directory of cybersecurity tools and resources to enhance your security practices. Find the right solution for your domain.

LINKS

Blog

LEGAL

Terms of services Privacy policy

CyberSecTools

CyberSecTools

Explore the largest curated directory of cybersecurity tools and resources to enhance your security practices. Find the right solution for your domain.

LINKS

Blog

LEGAL

Terms of services Privacy policy

Free Cybersecurity Tools

Find the right solution for your security needs without any cost.
Explore 2615 curated tools and resources

All

Free

Commercial

Task

Home
Free Tools

LATEST ADDITIONS

Smogcloud
Find exposed AWS cloud assets that you did not know you had.
0
Free
Cloud Security
aws
asset-inventory
+2
HellPot
HellPot is an endless honeypot that sends unruly HTTP bots to hell with grave consequences.
0
Free
Honeypots
blue-team
honeypot
+1
mbtget
Simple perl script for making Modbus transactions from the command line.
0
Free
Network Security
modbus
plc
+1
The Practice of Network Security Monitoring
A comprehensive guide to network security monitoring, teaching readers how to detect and respond to intrusions using open source software and vendor-neutral tools.
0
Free
Resources
network-security
packet-analysis
+3
AfterGlow
Visualize and analyze network relationships with AfterGlow
0
Free
Network Security
incident-response
network-security
+3
Penetration Testing Practice Lab - Vulnerable Apps/Systems
Collection of URLs for vulnerable web applications and systems for cybersecurity practice.
0
Free
Offensive Security
penetration-testing
vulnerable-applications
+1
Hayabusa
Windows event log fast forensics timeline generator and threat hunting tool.
0
Free
Digital Forensics
forensics
threat-hunting
+2
SharpShooter
A payload creation framework for the retrieval and execution of arbitrary CSharp source code.
0
Free
Malware Analysis
appsec
csharp
+4
vim-yara
Syntax, indent, and filetype detection for YARA rule files with auto-indenting and error display in quickfix window.
0
Free
Miscellaneous
yara
plugin
DataCop
DataCop is a custom AWS framework for mitigating S3 bucket attack vectors based on customer configuration.
0
Free
Cloud Security
aws
aws-cdk
+1
ModSecurity
ModSecurity is an open-source web application firewall that provides a flexible and scalable way to monitor and control HTTP traffic.
0
Free
Application Security
web-app-security
waf
+2
LockUp
An Android-based self-defense application against forensic imaging tools like Cellebrite UFED.
0
Free
Specialized Security
mobile-security
forensic-analysis
+2
Pasithea
A honeypot system that allows you to set up a decoy API to detect and analyze potential security threats.
0
Free
Honeypots
honeypot
java
+2
Lab of a Penetration Tester: Abusing DNSAdmins privilege for escalation in Active Directory
Abusing DNSAdmins privilege for escalation in Active Directory
0
Free
IAM
privilege-escalation
dll-injection

PINNED

Fabric Platform by BlackStork

Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.

Free

Security Operations

Mandos Brief Newsletter

Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.

Free

Blogs and News

Wiz

Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.

Commercial

Cloud Security

Adversa AI

Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.

Commercial

AI Security

Free Cybersecurity Tools

LATEST ADDITIONS

Smogcloud

HellPot

mbtget

The Practice of Network Security Monitoring

AfterGlow

Penetration Testing Practice Lab - Vulnerable Apps/Systems

Hayabusa

SharpShooter

vim-yara

DataCop

ModSecurity

LockUp

Pasithea

Lab of a Penetration Tester: Abusing DNSAdmins privilege for escalation in Active Directory

PINNED

Fabric Platform by BlackStork

Mandos Brief Newsletter

Wiz

Adversa AI