Free Cybersecurity Tools

Zenduty's platform provides real-time operational health monitoring and incident response orchestration to improve incident response times and build a solid on-call culture.

Pupy is an open-source, cross-platform C2 framework that provides remote access and control capabilities for compromised systems across Windows, Linux, OSX, and Android platforms.

Enhances Windows OS security through system modifications and settings adjustments.

A database of Tor exit nodes with their corresponding IP addresses and timestamps.

A low interaction Python honeypot designed to mimic various services and ports to attract attackers and log access attempts.

Guidelines and best practices for securely storing passwords.

OpenCanary is a multi-protocol network honeypot with low resource requirements and alerting capabilities.

A tool to remove malicious artifacts from Microsoft Office documents, preventing malware infections and data breaches.

All-in-one vulnerability intelligence platform for prioritizing remediation efforts and driving security strategies.

Cloudmarker is a configurable cloud monitoring tool and framework that audits Azure and GCP environments by retrieving, analyzing, and alerting on cloud security data.

A minimalistic Java library for representing threat model data in a normalized way and automating threat intelligence extraction.

A collection of setup scripts for various security research tools with installers for tools like afl, angr, barf, and more.

A forensic tool to find hidden processes and TCP/UDP ports by rootkits or other hidden techniques.

Romana automates cloud-native network isolation and distributed firewall policies for Kubernetes and OpenStack environments using topology-aware IPAM without overlays.

AWS Network Firewall provides fine-grained control over network traffic and enables easy deployment of firewall security.

A Python script that converts shellcode into a PE32 or PE32+ file.

Discover and protect sensitive data at scale with automated data discovery and security assessment.

A Python wrapper for the Libemu library that enables shellcode analysis and malicious code examination through programmatic interfaces.

FIR is a Python-based cybersecurity incident management platform designed for CSIRTs, CERTs, and SOCs to create, track, and report security incidents.

Online Telegram bot for collecting information on individuals from various websites.

Shuffle Automation is an accessible automation platform that provides workflow automation capabilities for security operations with both self-hosted and cloud deployment options.

Open source Python library for NTFS analysis

A collection of CTF write-ups demonstrating the use of pwntools for solving binary exploitation challenges across various cybersecurity competitions.

Hale is a modular botnet command and control monitoring tool that tracks C&C server communications across multiple protocols with web-based analysis interface and collaborative research capabilities.