Free Cybersecurity Tools

angr is a Python-based binary analysis framework that provides disassembly, symbolic execution, and program analysis capabilities for cross-platform binary examination.

Ophcrack is a free Windows password cracker based on rainbow tables with various features for password recovery.

A free book providing design and implementation guidelines for writing secure programs in various languages.

A blog post discussing INF-SCT fetch and execute techniques for bypass, evasion, and persistence

A list of most queried domains based on passive DNS usage across the Umbrella global network.

A StalkPhish Project YARA repository for Phishing Kits zip files.

Automatic authorization enforcement detection extension for Burp Suite

A post-exploitation framework for attacking AWS infrastructure, enabling attacks on EC2 instances without SSH keypairs and extraction of AWS secrets and parameters.

A shellcode generator that creates position-independent code for loading and executing .NET Assemblies, PE files, and Windows payloads from memory.

A threat hunting capability that leverages Sysmon and MITRE ATT&CK on Azure Sentinel

A deep dive into the Ledger connect-kit compromise decryption process.

A Yara ruleset designed to detect PHP shells and other webserver malware for malware analysis and threat detection.

Powerful debugging tool with extensive features and extensions for memory dump analysis and crash dump analysis.

QIRA is a competitor to strace and gdb with MIT license, supporting Ubuntu and Docker for wider compatibility.

A tool for managing multiple reverse shell sessions/clients via terminal with a RESTful API.

Bastille-Linux is a system hardening program that proactively configures the system for increased security and educates users about security settings.

Fridump is an open source memory dumping tool that uses the Frida framework to extract accessible memory addresses from iOS, Android, and Windows applications for security testing and analysis.

Facilitating exchange of information and knowledge to collectively protect against cyberattacks.

A customizable offensive security reporting solution for pentesters and red teamers to generate detailed reports of their findings and vulnerabilities.

A Python-based tool for subdomain enumeration and analysis

A PowerShell-based DFIR automation tool that streamlines artifact and evidence collection from Windows machines for digital forensic investigations.

AFE Android Framework for Exploitation is a framework that provides tools and techniques for exploiting vulnerabilities in Android devices and applications.

The best security training environment for Developers and AppSec Professionals.

A security dataset and CTF platform available in full (16.4GB) and attack-only (3.2GB) versions, pre-indexed for Splunk to help security professionals practice analysis skills.