Free Cybersecurity Tools

A browser with XSS detection capabilities

FTP Honeypot tool with FTP + SSL-FTP features, used for catching credentials and malware files, distributing honeytoken files, and generating SSL certificates.

A yara module for searching strings inside zip files

Bindings for the Yara library from VirusTotal with support for Yara v4.2 and various features like rule compilation and scanning.

A multi-threading tool for sniffing HTTP header records with support for offline and live sniffing, TCP flow statistics, and JSON output.

A comprehensive cheat sheet providing SQLite-specific SQL injection techniques, payloads, and enumeration methods for security testing and penetration testing activities.

SHIVA: Spam Honeypot with Intelligent Virtual Analyzer for capturing and analyzing spam data.

A forensics toolkit for collecting digital evidence from Google Cloud Platform, Microsoft Azure, and Amazon Web Services during incident response investigations.

Ultimate Internet of Things/Industrial Control Systems reconnaissance tool powered by Shodan.

A tool that automatically audits website security by crawling an entire website and identifying vulnerabilities

A low-interaction honeypot for detecting and analyzing potential attacks on Android devices via ADB over TCP/IP

A centralized tool for security monitoring and analysis that integrates various open source big data technologies.

Project hosting scripts for implementing Pass the Hash mitigations with PtHTools module commands.

Mobile Audit is a Docker-based SAST and malware analysis tool that performs comprehensive security analysis of Android APK files, including vulnerability detection, certificate verification, and Virus Total integration.

ThreatNote is a threat intelligence platform that provides real-time updates on emerging cybersecurity threats, vulnerabilities, and attack vectors to help organizations enhance their security posture.

CyBot is a free and open source threat intelligence chat bot with a community-driven plugin framework.

Exploiting simple stack overflow vulnerabilities using return oriented programming (ROP) to defeat data execution prevention - DEP.

YARA is a tool for identifying and classifying malware samples based on textual or binary patterns.

Frontpage of the IO wargame with various versions and connection details.

Machinae is a tool for collecting intelligence from public sites/feeds about various security-related pieces of data.

Sigma is a generic and open signature format for SIEM systems and other security tools to detect and respond to threats.

Docker-based honeypot setup with detailed installation and configuration instructions.

Unified repository for Microsoft Sentinel and Microsoft 365 Defender containing security content, detections, queries, playbooks, and resources to secure environments and hunt for threats.

EvilClippy is a cross-platform tool that creates malicious MS Office documents with hidden VBA macros and evasion techniques for penetration testing and red team operations.