Free Cybersecurity Tools

PINNED

• 

  CTIChef.com Detection Feeds

  A tiered cyber threat intelligence service providing detection rules from public repositories with varying levels of analysis, processing, and guidance for security teams.

  1

  Commercial

  Threat Management

  Threat Intelligence

  Detection Rules

  Siem

  Security Operations

  Cti

  Threat Detection

  Security Monitoring

  Rule Management

  Threat Hunting

  Security Information And Event Management

  

  CTIChef.com Detection Feeds

  A tiered cyber threat intelligence service providing detection rules from public repositories with varying levels of analysis, processing, and guidance for security teams.

  1

  Commercial

  Threat Management

  Threat Intelligence

  Detection Rules

  Siem

  +7
• 

  OSINTLeak

  OSINTLeak is a tool for discovering and analyzing leaked sensitive information across various online sources to identify potential security risks.

  2

  Commercial

  Digital Forensics

  Osint

  Information Security

  Security Tools

  Data Breach

  Reconnaissance

  Security Research

  Threat Intelligence

  Red Team

  Blue Team

  Vulnerability Assessment

  

  OSINTLeak

  OSINTLeak is a tool for discovering and analyzing leaked sensitive information across various online sources to identify potential security risks.

  2

  Commercial

  Digital Forensics

  Osint

  Information Security

  Security Tools

  +7
• 

  ImmuniWeb® Discovery

  ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.

  0

  Commercial

  Attack Surface Management

  Attack Surface Management

  Attack Surface

  Continuous Monitoring

  Dark Web Monitoring

  Cloud Security

  Vulnerability Management

  Compliance

  Third Party Risk

  Threat Intelligence

  Security Monitoring

  

  ImmuniWeb® Discovery

  ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.

  0

  Commercial

  Attack Surface Management

  Attack Surface Management

  Attack Surface

  Continuous Monitoring

  +7
• 

  Checkmarx SCA

  A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

  1

  Commercial

  Application Security

  Application Security

  Dependency Scanning

  Vulnerability Management

  Software Supply Chain

  Open Source

  Sbom

  Security Scanning

  Devsecops

  Vulnerability Detection

  

  Checkmarx SCA

  A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

  1

  Commercial

  Application Security

  Application Security

  Dependency Scanning

  Vulnerability Management

  +6
• 

  Orca Security

  A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

  0

  Commercial

  Cloud Security

  Cloud Security

  Cloud Native

  Vulnerability Management

  Compliance

  Container Security

  Cloud Compliance

  Api Security

  Kubernetes Security

  Security Monitoring

  Security Automation

  

  Orca Security

  A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

  0

  Commercial

  Cloud Security

  Cloud Security

  Cloud Native

  Vulnerability Management

  +7
• 

  DryRun

  A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.

  1

  Commercial

  Application Security

  Application Security

  Github

  Code Security

  Static Analysis

  Security Automation

  Devsecops

  

  DryRun

  A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.

  1

  Commercial

  Application Security

  Application Security

  Github

  Code Security

  +3

LATEST ADDITIONS

• 

  haktrails

  Golang client for querying SecurityTrails API data

  0

  Free

  Cloud Security

  Golang

  Security

  

  haktrails

  Golang client for querying SecurityTrails API data

  0

  Free

  Cloud Security

  Golang

  Security
• 

  XSSCon

  A simple XSS scanner tool for identifying Cross-Site Scripting vulnerabilities

  0

  Free

  Malware Analysis

  Xss

  Xss Scanner

  Web Security

  Penetration Testing

  Security Research

  

  XSSCon

  A simple XSS scanner tool for identifying Cross-Site Scripting vulnerabilities

  0

  Free

  Malware Analysis

  Xss

  Xss Scanner

  Web Security

  +2
• 

  jwt-cracker

  A simple JWT token brute force cracker

  0

  Free

  Malware Analysis

  Jwt

  Jwt Security

  

  jwt-cracker

  A simple JWT token brute force cracker

  0

  Free

  Malware Analysis

  Jwt

  Jwt Security
• 

  crtndstry

  A subdomain finder tool

  0

  Free

  Honeypots

  Subdomain Discovery

  Security Research

  

  crtndstry

  A subdomain finder tool

  0

  Free

  Honeypots

  Subdomain Discovery

  Security Research
• 

  IntruderPayloads

  A collection of payloads and methodologies for web pentesting.

  0

  Free

  Offensive Security

  Burp Suite

  Payloads

  Fuzzing

  Pentesting

  Security Testing

  

  IntruderPayloads

  A collection of payloads and methodologies for web pentesting.

  0

  Free

  Offensive Security

  Burp Suite

  Payloads

  Fuzzing

  +2
• 

  urlgrab

  A golang utility to spider through a website searching for additional links.

  0

  Free

  Miscellaneous

  Web Security

  Web Scraping

  Malware Detection

  Golang

  

  urlgrab

  A golang utility to spider through a website searching for additional links.

  0

  Free

  Miscellaneous

  Web Security

  Web Scraping

  Malware Detection

  +1
• 

  XXEinjector

  Automate the exploitation of XXE vulnerabilities

  0

  Free

  Malware Analysis

  Xxe

  Vulnerability Exploitation

  Penetration Testing

  Security Research

  

  XXEinjector

  Automate the exploitation of XXE vulnerabilities

  0

  Free

  Malware Analysis

  Xxe

  Vulnerability Exploitation

  Penetration Testing

  +1
• 

  s3viewer

  A publicly open storage viewer for various storage services.

  0

  Free

  Cloud Security

  S3

  Azure

  Ftp

  Http

  

  s3viewer

  A publicly open storage viewer for various storage services.

  0

  Free

  Cloud Security

  S3

  Azure

  Ftp

  +1
• 

  Webanalyze

  Automate mass scanning of technologies used on websites

  0

  Free

  Network Security

  Web Scraping

  Mass Scanning

  Automation

  

  Webanalyze

  Automate mass scanning of technologies used on websites

  0

  Free

  Network Security

  Web Scraping

  Mass Scanning

  Automation
• 

  Recursebuster

  A tool for recursively querying webservers

  0

  Free

  Offensive Security

  Pentesting

  Web Scanning

  

  Recursebuster

  A tool for recursively querying webservers

  0

  Free

  Offensive Security

  Pentesting

  Web Scanning
• 

  as3nt

  A tool for enumerating subdomains of a given domain

  0

  Free

  Network Security

  Subdomain Enumeration

  Domain Enumeration

  Security Research

  Penetration Testing

  Infosec

  

  as3nt

  A tool for enumerating subdomains of a given domain

  0

  Free

  Network Security

  Subdomain Enumeration

  Domain Enumeration

  Security Research

  +2
• 

  SQLi-Hunter

  A tool for finding and exploiting SQL injection vulnerabilities in web applications

  0

  Free

  Malware Analysis

  Appsec

  Appsec Tool

  Sql Injection

  Vulnerability Scanning

  Web App Security

  

  SQLi-Hunter

  A tool for finding and exploiting SQL injection vulnerabilities in web applications

  0

  Free

  Malware Analysis

  Appsec

  Appsec Tool

  Sql Injection

  +2
• 

  Katana

  A next-generation crawling and spidering framework for extracting data from websites

  0

  Free

  Digital Forensics

  Crawling

  Web Scraping

  Web Application Security

  Data Extraction

  

  Katana

  A next-generation crawling and spidering framework for extracting data from websites

  0

  Free

  Digital Forensics

  Crawling

  Web Scraping

  Web Application Security

  +1
• 

  WPRecon

  WPRecon is a tool for recognizing vulnerabilities and blackbox information for WordPress.

  0

  Free

  Application Security

  Wordpress

  Vulnerability Scanning

  

  WPRecon

  WPRecon is a tool for recognizing vulnerabilities and blackbox information for WordPress.

  0

  Free

  Application Security

  Wordpress

  Vulnerability Scanning