Free Cybersecurity Tools

Mandos

Commercial

Consulting

Checkmarx SCA

Commercial

Application Security

Orca Security

Commercial

Cloud Security

DryRun

Commercial

Application Security

LATEST ADDITIONS

• 

  Cloud Sniper

  A detection-as-code platform for streamlining cloud security operations and responding to security incidents.

  0

  Free

  Cloud Security

  Cloud Security

  Incident Response

  Cloud Incident Response

  Cloud Native

  Security Analytics

  Share

  

  Cloud Sniper

  A detection-as-code platform for streamlining cloud security operations and responding to security incidents.

  0

  Free

  Cloud Security

  Cloud Security

  Incident Response

  Cloud Incident Response

  +2
• 

  JS-Scan

  A JavaScript scanner built in PHP for scraping URLs and other information.

  0

  Free

  Vulnerability Management

  Scanner

  Php

  Share

  

  JS-Scan

  A JavaScript scanner built in PHP for scraping URLs and other information.

  0

  Free

  Vulnerability Management

  Scanner

  Php
• 

  Intrusion Detection Honeypots

  A foundational guide for using deception against computer network adversaries using honeypots to detect adversaries before they accomplish their goals.

  0

  Free

  Network Security

  Honeypot

  Packet Analysis

  Network Security

  Incident Response

  Share

  

  Intrusion Detection Honeypots

  A foundational guide for using deception against computer network adversaries using honeypots to detect adversaries before they accomplish their goals.

  0

  Free

  Network Security

  Honeypot

  Packet Analysis

  Network Security

  +1
• 

  CTF Resources

  Archive of information, tools, and references regarding CTF competitions.

  0

  Free

  Resources

  Ctf

  Ctf Challenges

  Hacking

  Reverse Engineering

  Security Competition

  Share

  

  CTF Resources

  Archive of information, tools, and references regarding CTF competitions.

  0

  Free

  Resources

  Ctf

  Ctf Challenges

  Hacking

  +2
• 

  Acunetix Web Vulnerability Scanner Demonstration Site

  A demonstration site for the Acunetix Web Vulnerability Scanner, intentionally vulnerable to various web-based attacks.

  0

  Free

  Vulnerability Management

  Vulnerability Scanning

  Web App Security

  Sql Injection

  Directory Traversal

  Web Security

  Penetration Testing

  Share

  

  Acunetix Web Vulnerability Scanner Demonstration Site

  A demonstration site for the Acunetix Web Vulnerability Scanner, intentionally vulnerable to various web-based attacks.

  0

  Free

  Vulnerability Management

  Vulnerability Scanning

  Web App Security

  Sql Injection

  +3
• 

  SQL Injection Labs

  A project developed for pentesters to practice SQL Injection concepts in a controlled environment.

  1

  Free

  Resources

  Sql Injection

  Pentesting

  Web Security

  Php

  Mysql

  Share

  

  SQL Injection Labs

  A project developed for pentesters to practice SQL Injection concepts in a controlled environment.

  1

  Free

  Resources

  Sql Injection

  Pentesting

  Web Security

  +2
• 

  Stronghold

  Stronghold is the easiest way to securely configure your Mac.

  0

  Free

  Security Operations

  Macos

  Security

  Configuration

  Firewall

  Logging

  Share

  

  Stronghold

  Stronghold is the easiest way to securely configure your Mac.

  0

  Free

  Security Operations

  Macos

  Security

  Configuration

  +2
• 

  Smali Syntax Highlighting for Vim

  Syntax highlighting for Smali (Dalvik) Assembly language in Vim.

  0

  Free

  Miscellaneous

  Smali

  Dalvik

  Assembly

  Syntax Highlighting

  Share

  

  Smali Syntax Highlighting for Vim

  Syntax highlighting for Smali (Dalvik) Assembly language in Vim.

  0

  Free

  Miscellaneous

  Smali

  Dalvik

  Assembly

  +1
• 

  M. E. Kabay Courses

  Collection of industry and community cybersecurity courses and materials by M. E. Kabay.

  0

  Free

  Resources

  Cybersecurity

  Infosec

  Education

  Share

  

  M. E. Kabay Courses

  Collection of industry and community cybersecurity courses and materials by M. E. Kabay.

  0

  Free

  Resources

  Cybersecurity

  Infosec

  Education
• 

  assetfinder

  Find domains and subdomains related to a given domain

  0

  Free

  Honeypots

  Asset Inventory

  Subdomain Scanning

  Reconnaissance

  Recon

  Share

  

  assetfinder

  Find domains and subdomains related to a given domain

  0

  Free

  Honeypots

  Asset Inventory

  Subdomain Scanning

  Reconnaissance

  +1
• 

  r2con-2017

  Collection of slides, materials, demos, crackmes, and writeups from r2con-2017 conference.

  0

  Free

  Malware Analysis

  Reverse Engineering

  Conference

  Share

  

  r2con-2017

  Collection of slides, materials, demos, crackmes, and writeups from r2con-2017 conference.

  0

  Free

  Malware Analysis

  Reverse Engineering

  Conference
• 

  Secure Ruby Development Guide

  A guide to secure Ruby development, providing guidelines and recommendations for secure coding practices.

  0

  Free

  Miscellaneous

  Ruby

  Ruby On Rails

  Software Security

  Security Guidelines

  Share

  

  Secure Ruby Development Guide

  A guide to secure Ruby development, providing guidelines and recommendations for secure coding practices.

  0

  Free

  Miscellaneous

  Ruby

  Ruby On Rails

  Software Security

  +1
• 

  Security Week

  A general cybersecurity news site providing discussions and news on various cybersecurity topics.

  0

  Free

  Blogs and News

  Cybersecurity

  News

  Data Protection

  Risk Management

  Security Operations

  Share

  

  Security Week

  A general cybersecurity news site providing discussions and news on various cybersecurity topics.

  0

  Free

  Blogs and News

  Cybersecurity

  News

  Data Protection

  +2
• 

  CloudBrute

  A tool for discovering company infrastructure and apps on major cloud providers, beneficial for bug bounty hunters and penetration testers.

  0

  Free

  Cloud Security

  Cloud Security

  Bug Bounty

  Red Team

  Penetration Testing

  Share

  

  CloudBrute

  A tool for discovering company infrastructure and apps on major cloud providers, beneficial for bug bounty hunters and penetration testers.

  0

  Free

  Cloud Security

  Cloud Security

  Bug Bounty

  Red Team

  +1
• 

  Assembly Beginner's Guide

  A collection of resources for beginners to learn assembly language.

  0

  Free

  Malware Analysis

  Assembly

  Binary Security

  Disassembly

  Share

  

  Assembly Beginner's Guide

  A collection of resources for beginners to learn assembly language.

  0

  Free

  Malware Analysis

  Assembly

  Binary Security

  Disassembly
• 

  Preflight

  Verify scripts and executables to mitigate chain of supply attacks.

  0

  Free

  Specialized Security

  Binary Security

  File Analysis

  Binary Conversion

  File Patching

  Share

  

  Preflight

  Verify scripts and executables to mitigate chain of supply attacks.

  0

  Free

  Specialized Security

  Binary Security

  File Analysis

  Binary Conversion

  +1
• 

  Cyber Threat Hunting

  A collection of tools and resources for threat hunters.

  0

  Free

  Threat Management

  Threat Hunting

  Open Source

  Osquery

  Sysmon

  Ai

  Share

  

  Cyber Threat Hunting

  A collection of tools and resources for threat hunters.

  0

  Free

  Threat Management

  Threat Hunting

  Open Source

  Osquery

  +2
• 

  usbkill

  An anti-forensic kill-switch tool for USB ports to shut down the computer immediately in case of unauthorized access.

  0

  Free

  Digital Forensics

  Anti Forensic

  Usb Security

  Security Tool

  Share

  

  usbkill

  An anti-forensic kill-switch tool for USB ports to shut down the computer immediately in case of unauthorized access.

  0

  Free

  Digital Forensics

  Anti Forensic

  Usb Security

  Security Tool
• 

  Contagio Mobile

  A collection of Android Fakebank and Tizi samples for analyzing spyware on Android devices.

  0

  Free

  Malware Analysis

  Appsec

  Apparmor

  Binary Security

  Mobile Security

  Social Engineering

  Share

  

  Contagio Mobile

  A collection of Android Fakebank and Tizi samples for analyzing spyware on Android devices.

  0

  Free

  Malware Analysis

  Appsec

  Apparmor

  Binary Security

  +2
• 

  macOS-Fortress

  Firewall, Blackhole, and Privatizing Proxy for macOS with comprehensive security features.

  0

  Free

  Network Security

  Firewall

  Proxy

  Share

  

  macOS-Fortress

  Firewall, Blackhole, and Privatizing Proxy for macOS with comprehensive security features.

  0

  Free

  Network Security

  Firewall

  Proxy
• 

  AndroFuzz

  A simple file format fuzzer for Android that can fuzz multiple readers at once

  0

  Free

  Offensive Security

  Fuzzing

  File Format

  Security Testing

  Share

  

  AndroFuzz

  A simple file format fuzzer for Android that can fuzz multiple readers at once

  0

  Free

  Offensive Security

  Fuzzing

  File Format

  Security Testing
• 

  YARA Silly Silly

  A semi-automatic tool to generate YARA rules from virus samples.

  0

  Free

  Malware Analysis

  Malware Analysis

  Yara

  Virus Total

  Python

  Share

  

  YARA Silly Silly

  A semi-automatic tool to generate YARA rules from virus samples.

  0

  Free

  Malware Analysis

  Malware Analysis

  Yara

  Virus Total

  +1
• 

  MITRE Cyber Analytics Repository

  A knowledge base of analytics developed by MITRE based on the MITRE ATT&CK adversary model.

  1

  Free

  Resources

  Attandck

  Mitre

  Threat Intelligence

  Security Analytics

  Share

  

  MITRE Cyber Analytics Repository

  A knowledge base of analytics developed by MITRE based on the MITRE ATT&CK adversary model.

  1

  Free

  Resources

  Attandck

  Mitre

  Threat Intelligence

  +1
• 

  LFI-Labs

  A set of PHP scripts for practicing LFI, RFI, and CMD injection vulnerabilities.

  0

  Free

  Resources

  Lfi

  Vulnerability Testing

  Exploitation

  Php

  Apache

  Share

  

  LFI-Labs

  A set of PHP scripts for practicing LFI, RFI, and CMD injection vulnerabilities.

  0

  Free

  Resources

  Lfi

  Vulnerability Testing

  Exploitation

  +2