Explore the largest curated directory of cybersecurity tools and resources to enhance your security practices. Find the right solution for your domain.

LINKS

Blog Contact

LEGAL

Terms of services Privacy policy

CyberSecTools

CyberSecTools

Explore the largest curated directory of cybersecurity tools and resources to enhance your security practices. Find the right solution for your domain.

LINKS

Blog Contact

LEGAL

Terms of services Privacy policy

Free Cybersecurity Tools

Find the right solution for your security needs without any cost.
Explore 2624 curated tools and resources

All

Free

Commercial

Task

Home
Free Tools

PINNED

InfoSecHired

An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.

Commercial

Resources

Checkmarx SCA

A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Commercial

Application Security

Check Point CloudGuard WAF

A cloud-native web application and API security solution that uses contextual AI to protect against known and zero-day threats without signature-based detection.

Commercial

Application Security

Orca Security

A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

Commercial

Cloud Security

DryRun

A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.

Commercial

Application Security

Wiz

Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.

Commercial

Cloud Security

LATEST ADDITIONS

detect-secrets
A tool for detecting and preventing secrets in code
0
Free
Vulnerability Management
S3BucketList
Lists Amazon S3 Buckets while browsing
0
Free
Cloud Security
aws
aws-security
+3
getJS
A tool to quickly get all JavaScript sources/files
0
Free
Miscellaneous
javascript
file-search
sandmap
A simple CLI tool that extends the functionality of Nmap
0
Free
Network Security
nmap
cli
+4
Turbo Intruder
A Burp Suite extension for sending large numbers of HTTP requests and analyzing the results.
0
Free
Offensive Security
burp-suite
vulnerability-scanning
+3
Knock
A subdomain scan tool that helps you find subdomains of a given domain.
0
Free
Network Security
subdomain-discovery
reconnaissance
+1
xxexploiter
A tool to help exploit XXE vulnerabilities by sending a crafted XML file to the server and parsing it to extract the data.
0
Free
Malware Analysis
xxe
exploit
+4
Fuzzilli
Fuzzilli is a JavaScript engine fuzzer that helps identify vulnerabilities in JavaScript engines.
0
Free
Malware Analysis
fuzzer
javascript
+2
parameth
A tool for brute-forcing GET and POST parameters to discover potential vulnerabilities in web applications.
0
Free
Application Security
appsec
app-security
+4
Arjun
HTTP parameter discovery suite
0
Free
Vulnerability Management
http
vulnerability-scanning
+2
off-by-slash
A Burp extension to detect alias traversal via NGINX misconfiguration at scale.
0
Free
Network Security
appsec
apparmor
+3
Filebuster
A fast and flexible web fuzzer for identifying vulnerabilities in web applications
0
Free
Network Security
web-app-security
fuzzing
+2
crawley
A simple web crawler written in Go
0
Free
Network Security
crawler
web-crawler
+3
Android Security Awesome
A collection of Android security related resources
0
Free
Application Security
security
resources

Free Cybersecurity Tools

PINNED

InfoSecHired

Checkmarx SCA

Check Point CloudGuard WAF

Orca Security

DryRun

Wiz

LATEST ADDITIONS

detect-secrets

S3BucketList

getJS

sandmap

Turbo Intruder

Knock

xxexploiter

Fuzzilli

parameth

Arjun

off-by-slash

Filebuster

crawley

Android Security Awesome