Most Popular Cybersecurity Tools
Discover the highest-rated tools and resources on CyberSecTools.Explore 83 curated tools and resources
Search tools and resources by name, description, or purpose... (⌘+K)
HIGHEST RATED
An IP address intelligence API that provides geolocation data and threat detection capabilities for IPv4 and IPv6 addresses.
BunkerWeb is a next-generation and open-source Web Application Firewall (WAF) with seamless integration and user-friendly customization options.
The best security training environment for Developers and AppSec Professionals.
Community project for developing common guidelines and best practices for secure configurations.
StepSecurity is a platform that enhances GitHub Actions security by providing network egress control, risk discovery, action replacement, and security best practices orchestration.
Okta Customer Identity Cloud is a CIAM solution that provides secure, customizable identity management for consumer and SaaS applications.
A platform offering hacking missions to test and enhance skills.
Okta Workforce Identity Cloud is an identity and access management platform that provides secure, streamlined access for an organization's workforce across various applications and resources.
Connect and learn from experts and peers in the Microsoft Community Hub.
An automated web application security scanner that evaluates JavaScript library vulnerabilities and HTTP security headers to assess website security posture.
A web application security testing platform that combines manual and automated testing tools for conducting comprehensive security assessments and penetration testing.
Interactive malware hunting service with live access to the heart of an incident.
A non-profit organization providing live-fire cyber warfare ranges for training and up-skilling cybersecurity professionals.
HTB Academy offers guided cybersecurity training with industry certifications to help you become a market-ready professional.
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
INE Security offers a range of cybersecurity certifications, including penetration testing, mobile and web application security, and incident response.
Comprehensive security training platform for web developers, offering hands-on experience with real, vulnerable applications and concrete advice for securing code.
A comprehensive cybersecurity resource for learning and education
Live and on-demand cybersecurity training programs for all levels.
PINNED
Mandos Brief Newsletter
A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.
Resources
PTJunior
An AI-powered penetration testing platform that autonomously discovers, exploits, and documents vulnerabilities while generating NIST-compliant reports.
Offensive Security
CTIChef.com Detection Feeds
A tiered cyber threat intelligence service providing detection rules from public repositories with varying levels of analysis, processing, and guidance for security teams.
Threat Management
ImmuniWeb® Discovery
ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.
Attack Surface Management
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
Application Security
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
Cloud Security
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.
Application Security