Free Cybersecurity Tools

PINNED

• 

  CTIChef.com Detection Feeds

  A tiered cyber threat intelligence service providing detection rules from public repositories with varying levels of analysis, processing, and guidance for security teams.

  0

  Commercial

  Threat Management

  Threat Intelligence

  Detection Rules

  Siem

  Security Operations

  Cti

  Threat Detection

  Security Monitoring

  Rule Management

  Threat Hunting

  Security Information And Event Management

  

  CTIChef.com Detection Feeds

  A tiered cyber threat intelligence service providing detection rules from public repositories with varying levels of analysis, processing, and guidance for security teams.

  0

  Commercial

  Threat Management

  Threat Intelligence

  Detection Rules

  Siem

  +7
• 

  OSINTLeak

  OSINTLeak is a tool for discovering and analyzing leaked sensitive information across various online sources to identify potential security risks.

  2

  Commercial

  Digital Forensics

  Osint

  Information Security

  Security Tools

  Data Breach

  Reconnaissance

  Security Research

  Threat Intelligence

  Red Team

  Blue Team

  Vulnerability Assessment

  

  OSINTLeak

  OSINTLeak is a tool for discovering and analyzing leaked sensitive information across various online sources to identify potential security risks.

  2

  Commercial

  Digital Forensics

  Osint

  Information Security

  Security Tools

  +7
• 

  ImmuniWeb® Discovery

  ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.

  0

  Commercial

  Attack Surface Management

  Attack Surface Management

  Attack Surface

  Continuous Monitoring

  Dark Web Monitoring

  Cloud Security

  Vulnerability Management

  Compliance

  Third Party Risk

  Threat Intelligence

  Security Monitoring

  

  ImmuniWeb® Discovery

  ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.

  0

  Commercial

  Attack Surface Management

  Attack Surface Management

  Attack Surface

  Continuous Monitoring

  +7
• 

  Checkmarx SCA

  A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

  1

  Commercial

  Application Security

  Application Security

  Dependency Scanning

  Vulnerability Management

  Software Supply Chain

  Open Source

  Sbom

  Security Scanning

  Devsecops

  Vulnerability Detection

  

  Checkmarx SCA

  A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

  1

  Commercial

  Application Security

  Application Security

  Dependency Scanning

  Vulnerability Management

  +6
• 

  Orca Security

  A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

  0

  Commercial

  Cloud Security

  Cloud Security

  Cloud Native

  Vulnerability Management

  Compliance

  Container Security

  Cloud Compliance

  Api Security

  Kubernetes Security

  Security Monitoring

  Security Automation

  

  Orca Security

  A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

  0

  Commercial

  Cloud Security

  Cloud Security

  Cloud Native

  Vulnerability Management

  +7
• 

  DryRun

  A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.

  1

  Commercial

  Application Security

  Application Security

  Github

  Code Security

  Static Analysis

  Security Automation

  Devsecops

  

  DryRun

  A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.

  1

  Commercial

  Application Security

  Application Security

  Github

  Code Security

  +3

LATEST ADDITIONS

• 

  Allstar

  A GitHub App that monitors GitHub organizations or repositories for adherence to security best practices and detects policy violations.

  0

  Free

  Vulnerability Management

  Github

  Security Policies

  Compliance

  Security Monitoring

  Devsecops

  

  Allstar

  A GitHub App that monitors GitHub organizations or repositories for adherence to security best practices and detects policy violations.

  0

  Free

  Vulnerability Management

  Github

  Security Policies

  Compliance

  +2
• 

  DFTimewolf

  A framework for orchestrating forensic collection, processing, and data export.

  0

  Free

  Digital Forensics

  Digital Forensics

  Forensic Analysis

  Orchestration

  

  DFTimewolf

  A framework for orchestrating forensic collection, processing, and data export.

  0

  Free

  Digital Forensics

  Digital Forensics

  Forensic Analysis

  Orchestration
• 

  honeydet

  A signature-based, multi-step, high interaction honeypot detection tool with support for various detection methods and protocols.

  1

  Free

  Honeypots

  Honeypot

  Multi Threaded

  Golang

  Web Server

  Command Line Tool

  

  honeydet

  A signature-based, multi-step, high interaction honeypot detection tool with support for various detection methods and protocols.

  1

  Free

  Honeypots

  Honeypot

  Multi Threaded

  Golang

  +2
• 

  ssm-acquire

  A python module for orchestrating content acquisitions and analysis via Amazon SSM.

  0

  Free

  Digital Forensics

  Aws

  Ssm

  Memory Analysis

  Docker

  Osquery

  

  ssm-acquire

  A python module for orchestrating content acquisitions and analysis via Amazon SSM.

  0

  Free

  Digital Forensics

  Aws

  Ssm

  Memory Analysis

  +2
• 

  ConventionEngine

  A collection of Yara rules for identifying malicious PEs with unique or suspicious PDB paths.

  0

  Free

  Malware Analysis

  Yara

  Malware

  File Analysis

  Binary Security

  

  ConventionEngine

  A collection of Yara rules for identifying malicious PEs with unique or suspicious PDB paths.

  0

  Free

  Malware Analysis

  Yara

  Malware

  File Analysis

  +1
• 

  Yara-Java

  Embeddable Yara library for Java with support for loading rules and scanning data.

  0

  Free

  Application Security

  Yara

  Java

  Rule Engine

  Binary Analysis

  File Analysis

  

  Yara-Java

  Embeddable Yara library for Java with support for loading rules and scanning data.

  0

  Free

  Application Security

  Yara

  Java

  Rule Engine

  +2
• 

  VT Code Similarity Yara Generator

  Yara rule generator using VirusTotal code similarity feature code-similar-to.

  0

  Free

  Threat Management

  Apt

  Code Analysis

  File Analysis

  Malware Detection

  Pe File

  Virus Total

  

  VT Code Similarity Yara Generator

  Yara rule generator using VirusTotal code similarity feature code-similar-to.

  0

  Free

  Threat Management

  Apt

  Code Analysis

  File Analysis

  +3
• 

  dcfldd

  A modified version of GNU dd with added features like hashing and fast disk wiping.

  0

  Free

  Digital Forensics

  Digital Forensics

  Forensics

  File Analysis

  Hashing

  

  dcfldd

  A modified version of GNU dd with added features like hashing and fast disk wiping.

  0

  Free

  Digital Forensics

  Digital Forensics

  Forensics

  File Analysis

  +1
• 

  Skyhook

  Skyhook facilitates obfuscated HTTP file transfers to bypass IDS detections, enhancing secure data exchange.

  0

  Free

  Offensive Security

  Appsec

  Obfuscation

  

  Skyhook

  Skyhook facilitates obfuscated HTTP file transfers to bypass IDS detections, enhancing secure data exchange.

  0

  Free

  Offensive Security

  Appsec

  Obfuscation
• 

  Stratus Red Team

  Emulate offensive attack techniques in the cloud with a self-contained Go binary.

  0

  Free

  Offensive Security

  Cloud

  Red Team

  Mitre Attack

  Go

  Docker

  

  Stratus Red Team

  Emulate offensive attack techniques in the cloud with a self-contained Go binary.

  0

  Free

  Offensive Security

  Cloud

  Red Team

  Mitre Attack

  +2
• 

  Vshadow

  A command line utility for managing volume shadow copies with capabilities for evasion, persistence, and file extraction.

  0

  Free

  Digital Forensics

  Windows

  Persistence

  File Extraction

  Command Execution

  

  Vshadow

  A command line utility for managing volume shadow copies with capabilities for evasion, persistence, and file extraction.

  0

  Free

  Digital Forensics

  Windows

  Persistence

  File Extraction

  +1
• 

  Tugarecon

  A subdomain enumeration tool for penetration testers and security researchers.

  0

  Free

  Offensive Security

  Subdomain Enumeration

  Penetration Testing

  Security Research

  Search Engine

  Database

  Enumeration

  

  Tugarecon

  A subdomain enumeration tool for penetration testers and security researchers.

  0

  Free

  Offensive Security

  Subdomain Enumeration

  Penetration Testing

  Security Research

  +3
• 

  IronBee

  IronBee is an open source project building a universal web application security sensor.

  0

  Free

  Application Security

  Appsec

  Web App Security

  Python

  Flask

  Security Framework

  Vulnerability Detection

  

  IronBee

  IronBee is an open source project building a universal web application security sensor.

  0

  Free

  Application Security

  Appsec

  Web App Security

  Python

  +3
• 

  HoneyFS

  An LLM-based honeypot file system creator that generates realistic file systems and configurations to lure attackers and improve analyst engagement.

  0

  Free

  Honeypots

  Blue Team

  Honeypot

  File System

  Natural Language Processing

  Proof Of Concept

  

  HoneyFS

  An LLM-based honeypot file system creator that generates realistic file systems and configurations to lure attackers and improve analyst engagement.

  0

  Free

  Honeypots

  Blue Team

  Honeypot

  File System

  +2