Free Cybersecurity Tools

PINNED

• 

  PTJunior

  An AI-powered penetration testing platform that autonomously discovers, exploits, and documents vulnerabilities while generating NIST-compliant reports.

  1

  Commercial

  Offensive Security

  Ai

  Penetration Testing

  Automation

  Security Testing

  Exploitation

  Reconnaissance

  Reporting

  Security Assessment

  Offensive Security

  Vulnerability Exploitation

  

  PTJunior

  An AI-powered penetration testing platform that autonomously discovers, exploits, and documents vulnerabilities while generating NIST-compliant reports.

  1

  Commercial

  Offensive Security

  Ai

  Penetration Testing

  Automation

  +7
• 

  CTIChef.com Detection Feeds

  A tiered cyber threat intelligence service providing detection rules from public repositories with varying levels of analysis, processing, and guidance for security teams.

  0

  Commercial

  Threat Management

  Threat Intelligence

  Detection Rules

  Siem

  Security Operations

  Cti

  Threat Detection

  Security Monitoring

  Rule Management

  Threat Hunting

  Security Information And Event Management

  

  CTIChef.com Detection Feeds

  A tiered cyber threat intelligence service providing detection rules from public repositories with varying levels of analysis, processing, and guidance for security teams.

  0

  Commercial

  Threat Management

  Threat Intelligence

  Detection Rules

  Siem

  +7
• 

  ImmuniWeb® Discovery

  ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.

  0

  Commercial

  Attack Surface Management

  Attack Surface Management

  Attack Surface

  Continuous Monitoring

  Dark Web Monitoring

  Cloud Security

  Vulnerability Management

  Compliance

  Third Party Risk

  Threat Intelligence

  Security Monitoring

  

  ImmuniWeb® Discovery

  ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.

  0

  Commercial

  Attack Surface Management

  Attack Surface Management

  Attack Surface

  Continuous Monitoring

  +7
• 

  Checkmarx SCA

  A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

  1

  Commercial

  Application Security

  Application Security

  Dependency Scanning

  Vulnerability Management

  Software Supply Chain

  Open Source

  Sbom

  Security Scanning

  Devsecops

  Vulnerability Detection

  

  Checkmarx SCA

  A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

  1

  Commercial

  Application Security

  Application Security

  Dependency Scanning

  Vulnerability Management

  +6
• 

  Orca Security

  A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

  0

  Commercial

  Cloud Security

  Cloud Security

  Cloud Native

  Vulnerability Management

  Compliance

  Container Security

  Cloud Compliance

  Api Security

  Kubernetes Security

  Security Monitoring

  Security Automation

  

  Orca Security

  A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

  0

  Commercial

  Cloud Security

  Cloud Security

  Cloud Native

  Vulnerability Management

  +7
• 

  DryRun

  A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.

  1

  Commercial

  Application Security

  Application Security

  Github

  Code Security

  Static Analysis

  Security Automation

  Devsecops

  

  DryRun

  A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.

  1

  Commercial

  Application Security

  Application Security

  Github

  Code Security

  +3

LATEST ADDITIONS

• 

  Tracking a stolen code-signing certificate with osquery

  Detect signed malware and track stolen code-signing certificates using osquery.

  0

  Free

  Security Operations

  Appsec

  Binary Security

  Malware Detection

  Osquery

  

  Tracking a stolen code-signing certificate with osquery

  Detect signed malware and track stolen code-signing certificates using osquery.

  0

  Free

  Security Operations

  Appsec

  Binary Security

  Malware Detection

  +1
• 

  ActorTrackr

  Open source web app for storing and searching Actor related data from users and public repositories.

  0

  Free

  Threat Management

  Cybersecurity

  Threat Intelligence

  Threat Hunting

  Incident Response

  

  ActorTrackr

  Open source web app for storing and searching Actor related data from users and public repositories.

  0

  Free

  Threat Management

  Cybersecurity

  Threat Intelligence

  Threat Hunting

  +1
• 

  Revelo - Javascript Deobfuscator

  Revelo is an experimental Javascript deobfuscator tool with features to analyze and deobfuscate Javascript code.

  0

  Free

  Application Security

  Javascript

  Obfuscation

  Deobfuscation

  Malware Analysis

  Browser Security

  

  Revelo - Javascript Deobfuscator

  Revelo is an experimental Javascript deobfuscator tool with features to analyze and deobfuscate Javascript code.

  0

  Free

  Application Security

  Javascript

  Obfuscation

  Deobfuscation

  +2
• 

  GDPatrol

  A Serverless Security Orchestration Automation and Response (SOAR) Framework for AWS GuardDuty with various supported actions.

  0

  Free

  Security Operations

  Aws

  Aws Config

  Aws Security

  Cloudwatch

  Lambda

  

  GDPatrol

  A Serverless Security Orchestration Automation and Response (SOAR) Framework for AWS GuardDuty with various supported actions.

  0

  Free

  Security Operations

  Aws

  Aws Config

  Aws Security

  +2
• 

  DIVA Android

  An intentionally insecure Android app designed to teach developers and security professionals about common app vulnerabilities.

  0

  Free

  Resources

  Appsec

  Penetration Testing

  Security Education

  Vulnerability Analysis

  

  DIVA Android

  An intentionally insecure Android app designed to teach developers and security professionals about common app vulnerabilities.

  0

  Free

  Resources

  Appsec

  Penetration Testing

  Security Education

  +1
• 

  libevt

  libevt is a library to access and parse Windows Event Log (EVT) files.

  0

  Free

  Digital Forensics

  Windows

  Event Log

  Library

  Open Source

  Security

  

  libevt

  libevt is a library to access and parse Windows Event Log (EVT) files.

  0

  Free

  Digital Forensics

  Windows

  Event Log

  Library

  +2
• 

  Metasploit Payloads

  A unified repository for different Metasploit Framework payloads.

  0

  Free

  Offensive Security

  Metasploit

  Payloads

  

  Metasploit Payloads

  A unified repository for different Metasploit Framework payloads.

  0

  Free

  Offensive Security

  Metasploit

  Payloads
• 

  Securing NFS Red Hat Enterprise Linux 7

  Guidance on securing NFS in Red Hat Enterprise Linux 7

  0

  Free

  Miscellaneous

  Linux

  Security

  Configuration

  

  Securing NFS Red Hat Enterprise Linux 7

  Guidance on securing NFS in Red Hat Enterprise Linux 7

  0

  Free

  Miscellaneous

  Linux

  Security

  Configuration
• 

  WinHex

  Universal hexadecimal editor for computer forensics, data recovery, and IT security.

  0

  Free

  Digital Forensics

  Binary Security

  File Analysis

  Hex Dump

  Binary Conversion

  File Patching

  

  WinHex

  Universal hexadecimal editor for computer forensics, data recovery, and IT security.

  0

  Free

  Digital Forensics

  Binary Security

  File Analysis

  Hex Dump

  +2
• 

  Paving The Way to DA - Complete Post (Pt 1,2 & 3)

  A comprehensive guide on obtaining domain admin in a Windows estate through various techniques and defenses.

  0

  Free

  Blogs and News

  

  Paving The Way to DA - Complete Post (Pt 1,2 & 3)

  A comprehensive guide on obtaining domain admin in a Windows estate through various techniques and defenses.

  0

  Free

  Blogs and News
• 

  HVAC Traces

  Repository of pcap traces for evaluating Network Intrusion Detection Systems in HVAC systems.

  0

  Free

  Network Security

  Pcap

  Network Traffic

  

  HVAC Traces

  Repository of pcap traces for evaluating Network Intrusion Detection Systems in HVAC systems.

  0

  Free

  Network Security

  Pcap

  Network Traffic
• 

  ILSpy

  ILSpy is the open-source .NET assembly browser and decompiler with various decompiler frontends and features.

  0

  Free

  Malware Analysis

  Decompiler

  Dotnet

  Csharp

  

  ILSpy

  ILSpy is the open-source .NET assembly browser and decompiler with various decompiler frontends and features.

  0

  Free

  Malware Analysis

  Decompiler

  Dotnet

  Csharp
• 

  Mobile Application Penetration Testing Cheat Sheet

  A comprehensive guide to mobile application penetration testing, covering various topics and techniques

  0

  Free

  Resources

  Mobile Security

  Reverse Engineering

  Static Analysis

  Dynamic Analysis

  Network Analysis

  

  Mobile Application Penetration Testing Cheat Sheet

  A comprehensive guide to mobile application penetration testing, covering various topics and techniques

  0

  Free

  Resources

  Mobile Security

  Reverse Engineering

  Static Analysis

  +2
• 

  FingerprintJS

  FingerprintJS is a client-side browser fingerprinting library that provides a unique visitor identifier unaffected by incognito mode.

  0

  Free

  Application Security

  Javascript

  

  FingerprintJS

  FingerprintJS is a client-side browser fingerprinting library that provides a unique visitor identifier unaffected by incognito mode.

  0

  Free

  Application Security

  Javascript