Free Cybersecurity Tools

PINNED

• 

  CTIChef.com Detection Feeds

  A tiered cyber threat intelligence service providing detection rules from public repositories with varying levels of analysis, processing, and guidance for security teams.

  1

  Commercial

  Threat Management

  Threat Intelligence

  Detection Rules

  Siem

  Security Operations

  Cti

  Threat Detection

  Security Monitoring

  Rule Management

  Threat Hunting

  Security Information And Event Management

  

  CTIChef.com Detection Feeds

  A tiered cyber threat intelligence service providing detection rules from public repositories with varying levels of analysis, processing, and guidance for security teams.

  1

  Commercial

  Threat Management

  Threat Intelligence

  Detection Rules

  Siem

  +7
• 

  OSINTLeak

  OSINTLeak is a tool for discovering and analyzing leaked sensitive information across various online sources to identify potential security risks.

  2

  Commercial

  Digital Forensics

  Osint

  Information Security

  Security Tools

  Data Breach

  Reconnaissance

  Security Research

  Threat Intelligence

  Red Team

  Blue Team

  Vulnerability Assessment

  

  OSINTLeak

  OSINTLeak is a tool for discovering and analyzing leaked sensitive information across various online sources to identify potential security risks.

  2

  Commercial

  Digital Forensics

  Osint

  Information Security

  Security Tools

  +7
• 

  ImmuniWeb® Discovery

  ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.

  0

  Commercial

  Attack Surface Management

  Attack Surface Management

  Attack Surface

  Continuous Monitoring

  Dark Web Monitoring

  Cloud Security

  Vulnerability Management

  Compliance

  Third Party Risk

  Threat Intelligence

  Security Monitoring

  

  ImmuniWeb® Discovery

  ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.

  0

  Commercial

  Attack Surface Management

  Attack Surface Management

  Attack Surface

  Continuous Monitoring

  +7
• 

  Checkmarx SCA

  A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

  1

  Commercial

  Application Security

  Application Security

  Dependency Scanning

  Vulnerability Management

  Software Supply Chain

  Open Source

  Sbom

  Security Scanning

  Devsecops

  Vulnerability Detection

  

  Checkmarx SCA

  A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

  1

  Commercial

  Application Security

  Application Security

  Dependency Scanning

  Vulnerability Management

  +6
• 

  Orca Security

  A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

  0

  Commercial

  Cloud Security

  Cloud Security

  Cloud Native

  Vulnerability Management

  Compliance

  Container Security

  Cloud Compliance

  Api Security

  Kubernetes Security

  Security Monitoring

  Security Automation

  

  Orca Security

  A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

  0

  Commercial

  Cloud Security

  Cloud Security

  Cloud Native

  Vulnerability Management

  +7
• 

  DryRun

  A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.

  1

  Commercial

  Application Security

  Application Security

  Github

  Code Security

  Static Analysis

  Security Automation

  Devsecops

  

  DryRun

  A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.

  1

  Commercial

  Application Security

  Application Security

  Github

  Code Security

  +3

LATEST ADDITIONS

• 

  Feroxbuster

  A fast and simple recursive content discovery tool

  0

  Free

  Network Security

  Web App Security

  Penetration Testing

  Security Research

  Web Server

  

  Feroxbuster

  A fast and simple recursive content discovery tool

  0

  Free

  Network Security

  Web App Security

  Penetration Testing

  Security Research

  +1
• 

  gitGraber

  Monitor GitHub for sensitive data

  0

  Free

  Data Protection

  Infosec

  Security Audit

  Data Protection

  Sensitive Data

  Github

  Real Time Monitoring

  

  gitGraber

  Monitor GitHub for sensitive data

  0

  Free

  Data Protection

  Infosec

  Security Audit

  Data Protection

  +3
• 

  weaponised-XSS-payloads

  A collection of XSS payloads designed to turn alert(1) into P1

  0

  Free

  Malware Analysis

  Xss

  Payload

  Javascript

  Security Testing

  

  weaponised-XSS-payloads

  A collection of XSS payloads designed to turn alert(1) into P1

  0

  Free

  Malware Analysis

  Xss

  Payload

  Javascript

  +1
• 

  Sn1per

  An open-source attack surface management platform for identifying and managing vulnerabilities

  0

  Free

  Vulnerability Management

  Attack Surface

  Vulnerability Scanning

  Asset Discovery

  Security Posture

  

  Sn1per

  An open-source attack surface management platform for identifying and managing vulnerabilities

  0

  Free

  Vulnerability Management

  Attack Surface

  Vulnerability Scanning

  Asset Discovery

  +1
• 

  FDsploit

  A Python-based tool for identifying and exploiting file inclusion and directory traversal vulnerabilities in web applications.

  0

  Free

  Offensive Security

  Appsec

  Apparmor

  Appsec Tool

  Directory Traversal

  File Inclusion

  Fuzzing

  Penetration Testing

  

  FDsploit

  A Python-based tool for identifying and exploiting file inclusion and directory traversal vulnerabilities in web applications.

  0

  Free

  Offensive Security

  Appsec

  Apparmor

  Appsec Tool

  +4
• 

  Vaya-Ciego-Nen

  A tool to detect, manage and exploit Blind Cross-site scripting (XSS) vulnerabilities.

  0

  Free

  Malware Analysis

  Xss

  Blind Xss

  Vulnerability Detection

  Vulnerability Exploitation

  Security Testing

  Web Security

  

  Vaya-Ciego-Nen

  A tool to detect, manage and exploit Blind Cross-site scripting (XSS) vulnerabilities.

  0

  Free

  Malware Analysis

  Xss

  Blind Xss

  Vulnerability Detection

  +3
• 

  JSShell

  An interactive multi-user web JS shell

  0

  Free

  Offensive Security

  Interactive

  Web

  Javascript

  Shell

  

  JSShell

  An interactive multi-user web JS shell

  0

  Free

  Offensive Security

  Interactive

  Web

  Javascript

  +1
• 

  cors-scanner

  A multi-threaded scanner for identifying CORS flaws and misconfigurations

  0

  Free

  Network Security

  Cors

  Scanner

  Web Security

  Vulnerability Scanning

  Multi Threaded

  Web App Security

  

  cors-scanner

  A multi-threaded scanner for identifying CORS flaws and misconfigurations

  0

  Free

  Network Security

  Cors

  Scanner

  Web Security

  +3
• 

  xssor2

  A tool for testing and exploiting Cross-Site Scripting (XSS) vulnerabilities.

  0

  Free

  Malware Analysis

  Xss

  Javascript

  Security Testing

  Vulnerability Exploitation

  Web App Security

  

  xssor2

  A tool for testing and exploiting Cross-Site Scripting (XSS) vulnerabilities.

  0

  Free

  Malware Analysis

  Xss

  Javascript

  Security Testing

  +2
• 

  findom-xss

  A fast and simple DOM based XSS vulnerability scanner

  0

  Free

  Malware Analysis

  Xss

  Scanner

  Vulnerability

  Proof Of Concept

  

  findom-xss

  A fast and simple DOM based XSS vulnerability scanner

  0

  Free

  Malware Analysis

  Xss

  Scanner

  Vulnerability

  +1
• 

  GraphQLmap

  A scripting engine for interacting with GraphQL endpoints for pentesting purposes.

  0

  Free

  Offensive Security

  Graphql

  Pentesting

  Scripting

  Endpoint

  Security Testing

  Api Security

  

  GraphQLmap

  A scripting engine for interacting with GraphQL endpoints for pentesting purposes.

  0

  Free

  Offensive Security

  Graphql

  Pentesting

  Scripting

  +3
• 

  liffier

  A simple snippet to increment ../ on the URL.

  0

  Free

  Miscellaneous

  Vulnerability Detection

  Web App Security

  Security Audit

  Penetration Testing

  Vulnerability Assessment

  

  liffier

  A simple snippet to increment ../ on the URL.

  0

  Free

  Miscellaneous

  Vulnerability Detection

  Web App Security

  Security Audit

  +2
• 

  Liffy

  A local file inclusion exploitation tool

  0

  Free

  Honeypots

  Exploit

  Local File Inclusion

  Web Application Security

  Vulnerability Exploitation

  

  Liffy

  A local file inclusion exploitation tool

  0

  Free

  Honeypots

  Exploit

  Local File Inclusion

  Web Application Security

  +1
• 

  dom-red

  A small script to check a list of domains against open redirect vulnerability

  0

  Free

  Vulnerability Management

  Open Redirect

  Vulnerability Scanning

  Domain Check

  Command Line Tool

  Security Testing

  Vulnerability Detection

  

  dom-red

  A small script to check a list of domains against open redirect vulnerability

  0

  Free

  Vulnerability Management

  Open Redirect

  Vulnerability Scanning

  Domain Check

  +3