Loading...

Popular Free Commercial Categories Tasks Blog

CyberSecTools

Explore the largest curated directory of cybersecurity tools and resources to enhance your security practices. Find the right solution for your domain.

Operated by:

Mandos Cyber • KVK: 97994448

Netherlands • contact@mandos.io

VAT: NL005301434B12

Copyright © 2025 - All rights reserved

LINKS

LEGAL

Terms of services Privacy policy

Security Audit

Explore 73 curated tools and resources

Search by name, description, or purpose... (⌘+K)

Home
Tasks
Security Audit

PINNED

Promoted • 6 tools

Commercial

Data Protection

Commercial

Network Security

Commercial

Consulting

Commercial

Application Security

Commercial

Cloud Security

Commercial

Application Security

Want your tool featured here?

Get maximum visibility with pinned placement

LATEST ADDITIONS

audius Security and Audit Services
A comprehensive cybersecurity consulting service offering security assessments, risk analysis, and implementation of tailored information security management systems for organizations.
0
Commercial
Consulting
Security Audit
Risk Assessment
Security Assessment
Compliance
Isms
Cloud Security
Security Consulting
Security Framework
Security Strategy
Security Posture Assessment
audius Security and Audit Services
A comprehensive cybersecurity consulting service offering security assessments, risk analysis, and implementation of tailored information security management systems for organizations.
0
Commercial
Consulting
Security Audit
Risk Assessment
Security Assessment
+7
weSecretFinder
A Python script that scans file systems to identify hardcoded credentials, API keys, and other sensitive secrets using configurable regex patterns.
0
Free
Offensive Security
Security Scanning
Python
Offensive Security
Security Audit
Security Tools
Penetration Testing
Security Automation
Sensitive Data
Security Assessment
weSecretFinder
A Python script that scans file systems to identify hardcoded credentials, API keys, and other sensitive secrets using configurable regex patterns.
0
Free
Offensive Security
Security Scanning
Python
Offensive Security
+6
CMMC Resources
A compliance management platform that simplifies CMMC Level 1 certification for defense contractors through guided workflows, policy templates, and evidence management tools.
0
Commercial
GRC
Compliance
Security Framework
Policy
Governance
Security Standards
Security Assessment
Risk Management
Security Audit
Documentation
Security Compliance Training
CMMC Resources
A compliance management platform that simplifies CMMC Level 1 certification for defense contractors through guided workflows, policy templates, and evidence management tools.
0
Commercial
GRC
Compliance
Security Framework
Policy
+7
Network Intelligence
Network Intelligence is a cybersecurity services provider offering comprehensive security solutions through their ADVISE framework, including detection and response, compliance, data privacy, and secure digital transformation services across multiple industries.
0
Commercial
Security Operations
Security Operations
Compliance
Security Assessment
Vulnerability Management
Penetration Testing
Security Audit
Cybersecurity
Grc
Ai Security
Security Training
Network Intelligence
Network Intelligence is a cybersecurity services provider offering comprehensive security solutions through their ADVISE framework, including detection and response, compliance, data privacy, and secure digital transformation services across multiple industries.
0
Commercial
Security Operations
Security Operations
Compliance
Security Assessment
+7
NxSAM
A centralized vulnerability lifecycle management platform that tracks security issues from discovery to closure with real-time status updates.
0
Commercial
Vulnerability Management
Vulnerability Management
Security Audit
Compliance
Risk Management
Security Automation
Security Operations
Auditing
Security Monitoring
Reporting
Dashboard
NxSAM
A centralized vulnerability lifecycle management platform that tracks security issues from discovery to closure with real-time status updates.
0
Commercial
Vulnerability Management
Vulnerability Management
Security Audit
Compliance
+7
Securden Unified PAM
A powerful tool that enables organizations to discover, manage, and secure privileged access, helping to reduce the risks associated with privileged accounts and activities.
0
Commercial
IAM
Privileged Access Management
Pam
Access Management
Compliance
Security Audit
Securden Unified PAM
A powerful tool that enables organizations to discover, manage, and secure privileged access, helping to reduce the risks associated with privileged accounts and activities.
0
Commercial
IAM
Privileged Access Management
Pam
Access Management
+2
gitGraber
Monitor GitHub for sensitive data
0
Free
Data Protection
Infosec
Security Audit
Data Protection
Sensitive Data
Github
Real Time Monitoring
gitGraber
Monitor GitHub for sensitive data
0
Free
Data Protection
Infosec
Security Audit
Data Protection
+3
liffier
A simple snippet to increment ../ on the URL.
0
Free
Miscellaneous
Vulnerability Detection
Web App Security
Security Audit
Penetration Testing
Vulnerability Assessment
liffier
A simple snippet to increment ../ on the URL.
0
Free
Miscellaneous
Vulnerability Detection
Web App Security
Security Audit
+2
BurpJSLinkFinder
A Burp extension for scanning JavaScript files for endpoint links
0
Free
Application Security
Appsec
Javascript
Security Audit
Vulnerability Detection
BurpJSLinkFinder
A Burp extension for scanning JavaScript files for endpoint links
0
Free
Application Security
Appsec
Javascript
Security Audit
+1
Nosey Parker
A command-line program for finding secrets and sensitive information in textual data and Git history.
0
Free
Malware Analysis
Appsec
Binary Security
File Analysis
Git
Security Audit
Nosey Parker
A command-line program for finding secrets and sensitive information in textual data and Git history.
0
Free
Malware Analysis
Appsec
Binary Security
File Analysis
+2
Secret Bridge
Monitors GitHub for leaked secrets
0
Free
Data Protection
Github
Security Monitoring
Devsecops
Compliance
Security Audit
Secret Bridge
Monitors GitHub for leaked secrets
0
Free
Data Protection
Github
Security Monitoring
Devsecops
+2
XSSwagger
A simple Swagger-ui scanner that detects old versions vulnerable to various XSS attacks
0
Free
Application Security
Xss
Vulnerability Scanning
Security Audit
Devsecops
Security Testing
XSSwagger
A simple Swagger-ui scanner that detects old versions vulnerable to various XSS attacks
0
Free
Application Security
Xss
Vulnerability Scanning
Security Audit
+2
s3_objects_check
A tool to identify publicly accessible S3 objects
0
Free
Cloud Security
Aws
Aws Security
S3
Security Audit
s3_objects_check
A tool to identify publicly accessible S3 objects
0
Free
Cloud Security
Aws
Aws Security
S3
+1
Talisman
Pre-commit hook for validating outgoing changeset
0
Free
Application Security
Security Audit
Code Security
Vulnerability Detection
Talisman
Pre-commit hook for validating outgoing changeset
0
Free
Application Security
Security Audit
Code Security
Vulnerability Detection
Siemens Simatic PCS 7 Hardening Tool Version 1.0
A PowerShell script that assesses security configurations of Siemens SIMATIC PCS 7 industrial control systems by collecting and analyzing data from various Windows and PCS7-specific sources.
0
Free
Specialized Security
Industrial Security
Scada
Ics
Security Assessment
Powershell
Hardening
Industrial Control Systems
Configuration Management
Security Audit
Vulnerability Assessment
Siemens Simatic PCS 7 Hardening Tool Version 1.0
A PowerShell script that assesses security configurations of Siemens SIMATIC PCS 7 industrial control systems by collecting and analyzing data from various Windows and PCS7-specific sources.
0
Free
Specialized Security
Industrial Security
Scada
Ics
+7
Dorothy
Dorothy is a tool to test monitoring and detection capabilities for Okta environments, with modules mapped to MITRE ATT&CK® tactics.
0
Free
Threat Management
Security Audit
Attack Simulation
Mitre Attack
Detection Rules
Dorothy
Dorothy is a tool to test monitoring and detection capabilities for Okta environments, with modules mapped to MITRE ATT&CK® tactics.
0
Free
Threat Management
Security Audit
Attack Simulation
Mitre Attack
+1
Yar
A tool for scanning and identifying potential security risks in GitHub organizations, users, and repositories.
0
Free
Vulnerability Management
Vulnerability Detection
Security Audit
Compliance
Security Scanning
Penetration Testing
Yar
A tool for scanning and identifying potential security risks in GitHub organizations, users, and repositories.
0
Free
Vulnerability Management
Vulnerability Detection
Security Audit
Compliance
+2
EarlyBird
A sensitive data detection tool for scanning source code repositories
0
Free
Data Protection
Ci Cd
Security Audit
Vulnerability Detection
EarlyBird
A sensitive data detection tool for scanning source code repositories
0
Free
Data Protection
Ci Cd
Security Audit
Vulnerability Detection
Retraced
A compliant audit log tool that provides a searchable, exportable record of read/write events.
0
Free
SIEM
Compliance
Logging
Security Audit
Retraced
A compliant audit log tool that provides a searchable, exportable record of read/write events.
0
Free
SIEM
Compliance
Logging
Security Audit
Prowler
An open-source security tool for AWS, Azure, Google Cloud, and Kubernetes security assessments and audits.
0
Free
Cloud Security
Aws
Azure
Gcp
Kubernetes
Security Audit
Compliance
Incident Response
Hardening
Forensics
Prowler
An open-source security tool for AWS, Azure, Google Cloud, and Kubernetes security assessments and audits.
0
Free
Cloud Security
Aws
Azure
Gcp
+6
Enumerate IAM Permissions
Identify AWS IAM permissions by brute-forcing API calls.
0
Free
IAM
Aws
Aws Config
Aws Security
Iam
Security Audit
Security Automation
Enumerate IAM Permissions
Identify AWS IAM permissions by brute-forcing API calls.
0
Free
IAM
Aws
Aws Config
Aws Security
+3
Nikto
Web server scanner for identifying security vulnerabilities.
0
Free
Vulnerability Management
Web App Security
Web Server
Scanner
Vulnerability Detection
Security Audit
Nikto
Web server scanner for identifying security vulnerabilities.
0
Free
Vulnerability Management
Web App Security
Web Server
Scanner
+2
npm-scan
An extensible, heuristic-based vulnerability scanning tool for installed npm packages.
0
Free
Vulnerability Management
Npm
Vulnerability Scanning
Security Audit
Nodejs
npm-scan
An extensible, heuristic-based vulnerability scanning tool for installed npm packages.
0
Free
Vulnerability Management
Npm
Vulnerability Scanning
Security Audit
+1
Log Parser Lizard
A dynamic GUI for advanced log analysis, allowing users to execute SQL queries on structured log data.
0
Free
SIEM
Log Analysis
Sql
Gui
Log Parsing
Security Audit
Log Parser Lizard
A dynamic GUI for advanced log analysis, allowing users to execute SQL queries on structured log data.
0
Free
SIEM
Log Analysis
Sql
Gui
+2
CorsMe
A tool to scan for CORS misconfigurations in web applications
0
Free
Application Security
Appsec
Security Audit
Web App Security
Vulnerability Detection
CorsMe
A tool to scan for CORS misconfigurations in web applications
0
Free
Application Security
Appsec
Security Audit
Web App Security
+1
Conmachi Container Scanner
Conmachi is a Golang tool for scanning container environments for security issues.
0
Free
Cloud Security
Container Security
Security Audit
Golang
Conmachi Container Scanner
Conmachi is a Golang tool for scanning container environments for security issues.
0
Free
Cloud Security
Container Security
Security Audit
Golang
Bastille-Linux
Bastille-Linux is a system hardening program that proactively configures the system for increased security and educates users about security settings.
0
Free
Miscellaneous
Appsec
Compliance
Configuration Management
Hardening
Security Audit
Security Hardening
Bastille-Linux
Bastille-Linux is a system hardening program that proactively configures the system for increased security and educates users about security settings.
0
Free
Miscellaneous
Appsec
Compliance
Configuration Management
+3
AWS Scout2
AWS Scout2 is a security tool for AWS administrators to assess their environment's security posture.
0
Free
Cloud Security
Aws
Security Audit
Security Posture
Attack Surface
Cloud Security
Compliance
AWS Scout2
AWS Scout2 is a security tool for AWS administrators to assess their environment's security posture.
0
Free
Cloud Security
Aws
Security Audit
Security Posture
+3
Contribution Guidelines
Guidelines for contributing to a cybersecurity tools and resources list
0
Free
Resources
Access Control
Asset Inventory
Compliance
Cybersecurity
Infrastructure
Security Audit
Security Standards
Contribution Guidelines
Guidelines for contributing to a cybersecurity tools and resources list
0
Free
Resources
Access Control
Asset Inventory
Compliance
+4
AttackSurfaceMapper
Automate your reconnaissance process with AttackSurfaceMapper, a tool for mapping and analyzing network attack surfaces.
0
Free
Vulnerability Management
Attack Surface
Reconnaissance
Network Discovery
Vulnerability Assessment
Security Audit
AttackSurfaceMapper
Automate your reconnaissance process with AttackSurfaceMapper, a tool for mapping and analyzing network attack surfaces.
0
Free
Vulnerability Management
Attack Surface
Reconnaissance
Network Discovery
+2
snync
Mitigate security concerns of Dependency Confusion supply chain security risks.
0
Free
Application Security
Appsec
Apparmor
Appsec
Dependency Management
Dependency Scanning
Devsecops
Npm
Package Management
Security Audit
snync
Mitigate security concerns of Dependency Confusion supply chain security risks.
0
Free
Application Security
Appsec
Apparmor
Appsec
+6
Dow Jones Hammer
Multi-account cloud security tool for AWS with real-time reporting and auto-remediation capabilities.
0
Free
Cloud Security
Aws
Cloud Security
Security Audit
Dow Jones Hammer
Multi-account cloud security tool for AWS with real-time reporting and auto-remediation capabilities.
0
Free
Cloud Security
Aws
Cloud Security
Security Audit
IAMSpy
A library utilizing Z3 prover to analyze AWS IAM policies.
0
Free
IAM
Aws
Aws Iam
Iam
Security Audit
IAMSpy
A library utilizing Z3 prover to analyze AWS IAM policies.
0
Free
IAM
Aws
Aws Iam
Iam
+1
Hunter
An all-in-one email outreach platform for finding and connecting with professionals, with features for lead discovery, email verification, and cold email campaigns.
0
Free
Threat Management
Appsec
Automation
Cloud
Cloud Security
Compliance
Data Security
Email Security
Infosec
Security Audit
Hunter
An all-in-one email outreach platform for finding and connecting with professionals, with features for lead discovery, email verification, and cold email campaigns.
0
Free
Threat Management
Appsec
Automation
Cloud
+6
CIS Benchmarks Audit
A Python script to check system compliance against CIS Benchmarks with customizable options.
0
Free
Miscellaneous
Cis
Compliance
Security Audit
Python
Script
CIS Benchmarks Audit
A Python script to check system compliance against CIS Benchmarks with customizable options.
0
Free
Miscellaneous
Cis
Compliance
Security Audit
+2
Tracy
A tool for identifying potential security vulnerabilities in web applications
0
Free
Application Security
Web App Security
Vulnerability Detection
Code Analysis
Security Audit
Penetration Testing
Tracy
A tool for identifying potential security vulnerabilities in web applications
0
Free
Application Security
Web App Security
Vulnerability Detection
Code Analysis
+2
bundler-audit
Patch-level verification tool for bundler to check for vulnerable gems and insecure sources.
0
Free
Vulnerability Management
Ruby
Vulnerability Scanning
Security Audit
bundler-audit
Patch-level verification tool for bundler to check for vulnerable gems and insecure sources.
0
Free
Vulnerability Management
Ruby
Vulnerability Scanning
Security Audit
Repokid
Repokid uses Access Advisor to remove unused service permissions from IAM roles in AWS.
0
Free
IAM
Aws
Aws Config
Aws Security
Iam
Security Audit
Security Automation
Repokid
Repokid uses Access Advisor to remove unused service permissions from IAM roles in AWS.
0
Free
IAM
Aws
Aws Config
Aws Security
+3
Dependency Combobulator
Open-Source framework for detecting and preventing dependency confusion leakage with a holistic approach and wide technology support.
0
Free
Application Security
Appsec
Dependency Management
Security Audit
Pentesting
Security Tool
Vulnerability Detection
Dependency Combobulator
Open-Source framework for detecting and preventing dependency confusion leakage with a holistic approach and wide technology support.
0
Free
Application Security
Appsec
Dependency Management
Security Audit
+3
second-order
Second-order subdomain takeover scanner
0
Free
Digital Forensics
Subdomain Takeover
Vulnerability Scanning
Security Audit
Security Scanning
second-order
Second-order subdomain takeover scanner
0
Free
Digital Forensics
Subdomain Takeover
Vulnerability Scanning
Security Audit
+1
npq
A tool that safely installs packages with npm/yarn by auditing them as part of your install process.
0
Free
Application Security
Npm
Yarn
Package Management
Security Audit
Vulnerability Scanning
Package Audit
npq
A tool that safely installs packages with npm/yarn by auditing them as part of your install process.
0
Free
Application Security
Npm
Yarn
Package Management
+3
sdc-check
Tool to inform about potential risks in project dependencies list.
0
Free
Application Security
Dependency Management
Package Security
Vulnerability Detection
Security Audit
Package Audit
sdc-check
Tool to inform about potential risks in project dependencies list.
0
Free
Application Security
Dependency Management
Package Security
Vulnerability Detection
+2
aws-summarize-account-activity
Analyzes CloudTrail data of a given AWS account and generates a summary of recently active IAM principals, API calls they made, as well as regions, IP addresses and user agents they used.
0
Free
Cloud Security
Aws
Cloudtrail
Iam
Security Audit
Cloud Security
aws-summarize-account-activity
Analyzes CloudTrail data of a given AWS account and generates a summary of recently active IAM principals, API calls they made, as well as regions, IP addresses and user agents they used.
0
Free
Cloud Security
Aws
Cloudtrail
Iam
+2
Nexus Repository Manager Dependency/Namespace Confusion Checker
Script to check for artifacts with the same name between repositories to prevent Dependency Confusion Attacks.
0
Free
Miscellaneous
Dependency Management
Dependency Scanning
Python
Security Audit
Vulnerability Detection
Nexus Repository Manager Dependency/Namespace Confusion Checker
Script to check for artifacts with the same name between repositories to prevent Dependency Confusion Attacks.
0
Free
Miscellaneous
Dependency Management
Dependency Scanning
Python
+2
CFRipper
CFRipper is a Library and CLI security analyzer for AWS CloudFormation templates.
0
Free
Application Security
Aws
Cloud Security
Compliance
Security Audit
CFRipper
CFRipper is a Library and CLI security analyzer for AWS CloudFormation templates.
0
Free
Application Security
Aws
Cloud Security
Compliance
+1
check-my-headers
Fast and simple way to check any HTTP Headers
0
Free
Miscellaneous
Api Metadata
Appsec
Http Headers
Security Audit
Web Security
check-my-headers
Fast and simple way to check any HTTP Headers
0
Free
Miscellaneous
Api Metadata
Appsec
Http Headers
+2
drydock
Docker security audit tool with custom audit profiles and JSON report generation based on CIS Docker 1.6 Benchmark.
0
Free
Cloud Security
Docker
Security Audit
Python
Cis
Benchmark
drydock
Docker security audit tool with custom audit profiles and JSON report generation based on CIS Docker 1.6 Benchmark.
0
Free
Cloud Security
Docker
Security Audit
Python
+2
CRT sh
Crt.sh is a website that allows users to search for SSL/TLS certificates of a targeted domain, providing transparency into certificate logs.
0
Free
Vulnerability Management
Ssl
Tls
Certificate
Cryptography
Security Audit
CRT sh
Crt.sh is a website that allows users to search for SSL/TLS certificates of a targeted domain, providing transparency into certificate logs.
0
Free
Vulnerability Management
Ssl
Tls
Certificate
+2
Websecurify
Websecurify provides efficient ways to protect organizations with sophisticated technology and expert consultancy.
0
Free
Application Security
Appsec
Security Audit
Websecurify
Websecurify provides efficient ways to protect organizations with sophisticated technology and expert consultancy.
0
Free
Application Security
Appsec
Security Audit
httpry
A specialized packet sniffer for displaying and logging HTTP traffic, designed to capture, parse, and log traffic for later analysis.
0
Free
Network Security
Network Security
Log Analysis
Network Monitoring
Security Audit
httpry
A specialized packet sniffer for displaying and logging HTTP traffic, designed to capture, parse, and log traffic for later analysis.
0
Free
Network Security
Network Security
Log Analysis
Network Monitoring
+1
LUNAR Lockdown UNix Auditing and Reporting
A tool for auditing and reporting Unix host security with the ability to perform a lockdown.
0
Free
Miscellaneous
Cis
Compliance
Security Audit
Shell Script
LUNAR Lockdown UNix Auditing and Reporting
A tool for auditing and reporting Unix host security with the ability to perform a lockdown.
0
Free
Miscellaneous
Cis
Compliance
Security Audit
+1
Seatbelt
Comprehensive host-survey tool for security checks in C#.
0
Free
Offensive Security
Csharp
Security Audit
Offensive Security
Seatbelt
Comprehensive host-survey tool for security checks in C#.
0
Free
Offensive Security
Csharp
Security Audit
Offensive Security
AWS Key Usage Detector
Detect off-instance key usage in AWS by analyzing CloudTrail files locally.
0
Free
Cloud Security
Aws
Cloudtrail
Cloud Security
Security Audit
Compliance
AWS Key Usage Detector
Detect off-instance key usage in AWS by analyzing CloudTrail files locally.
0
Free
Cloud Security
Aws
Cloudtrail
Cloud Security
+2
CloudMapper
A tool to analyze and audit AWS environments for security issues and misconfigurations.
0
Free
Cloud Security
Aws
Aws Security
Cloud Security
Compliance
Security Audit
Security Configuration
CloudMapper
A tool to analyze and audit AWS environments for security issues and misconfigurations.
0
Free
Cloud Security
Aws
Aws Security
Cloud Security
+3
Dockerscan
A Docker analysis tool for identifying potential security vulnerabilities and weaknesses in Docker environments
0
Free
Vulnerability Management
Docker
Docker Security
Container Security
Network Security
Vulnerability Scanning
Security Audit
Dockerscan
A Docker analysis tool for identifying potential security vulnerabilities and weaknesses in Docker environments
0
Free
Vulnerability Management
Docker
Docker Security
Container Security
+3
Active Directory Security
A comprehensive resource for securing Active Directory, including attack methods and effective defenses.
0
Free
IAM
Appsec
Attack Paths
Blue Team
Powershell
Security Audit
Active Directory Security
A comprehensive resource for securing Active Directory, including attack methods and effective defenses.
0
Free
IAM
Appsec
Attack Paths
Blue Team
+2
git-all-secrets
A tool to capture all the git secrets by leveraging multiple open source git searching tools.
0
Free
Vulnerability Management
Git
Security Audit
Compliance
git-all-secrets
A tool to capture all the git secrets by leveraging multiple open source git searching tools.
0
Free
Vulnerability Management
Git
Security Audit
Compliance
Sherlock PowerShell Script
Powerful PowerShell script for identifying missing software patches for local privilege escalation vulnerabilities.
0
Free
Vulnerability Management
Patch Management
Vulnerability Scanning
Powershell
Security Audit
Sherlock PowerShell Script
Powerful PowerShell script for identifying missing software patches for local privilege escalation vulnerabilities.
0
Free
Vulnerability Management
Patch Management
Vulnerability Scanning
Powershell
+1
Confused
A tool for identifying potential security vulnerabilities in dependency configurations by checking for lingering free namespaces for private package names.
0
Free
Application Security
Dependency Management
Dependency Scanning
Package Management
Security Audit
Vulnerability Detection
Confused
A tool for identifying potential security vulnerabilities in dependency configurations by checking for lingering free namespaces for private package names.
0
Free
Application Security
Dependency Management
Dependency Scanning
Package Management
+2
Otseca
Open source security auditing tool to search and dump system configuration.
0
Free
Vulnerability Management
Penetration Testing
Security Audit
System Administration
Security Research
Otseca
Open source security auditing tool to search and dump system configuration.
0
Free
Vulnerability Management
Penetration Testing
Security Audit
System Administration
+1
Altoro Mutual Online Banking
Altoro Mutual offers online banking, real estate financing, business credit cards, retirement solutions, and prioritizes privacy and security.
0
Free
Specialized Security
Compliance
Data Protection
Security
Security Audit
Altoro Mutual Online Banking
Altoro Mutual offers online banking, real estate financing, business credit cards, retirement solutions, and prioritizes privacy and security.
0
Free
Specialized Security
Compliance
Data Protection
Security
+1
CloudFrunt
Identifies misconfigured CloudFront domains vulnerable to hijacking
0
Free
Application Security
Cloud Security
Security Audit
Configuration Management
Vulnerability Detection
CloudFrunt
Identifies misconfigured CloudFront domains vulnerable to hijacking
0
Free
Application Security
Cloud Security
Security Audit
Configuration Management
+1
DueDLLigence
DueDLLigence is an open-source tool for identifying and analyzing DLL hijacking vulnerabilities in Windows applications, providing automated analysis and remediation guidance.
0
Free
Offensive Security
Appsec
Apparmor
Binary Security
Dll
Security Audit
Security Testing
Windows
DueDLLigence
DueDLLigence is an open-source tool for identifying and analyzing DLL hijacking vulnerabilities in Windows applications, providing automated analysis and remediation guidance.
0
Free
Offensive Security
Appsec
Apparmor
Binary Security
+4
SkyWrapper
Open-source tool for analyzing AWS temporary tokens to detect malicious activity.
0
Free
Cloud Security
Aws
Aws Security
Iam
Security Audit
Compliance
SkyWrapper
Open-source tool for analyzing AWS temporary tokens to detect malicious activity.
0
Free
Cloud Security
Aws
Aws Security
Iam
+2
IntelligenceX
Nessus efficiently scans for system vulnerabilities, misconfigurations, and compliance issues.
0
Free
Threat Management
Vulnerability Assessment
Vulnerability Scanning
Compliance
Security Audit
Vulnerability Detection
IntelligenceX
Nessus efficiently scans for system vulnerabilities, misconfigurations, and compliance issues.
0
Free
Threat Management
Vulnerability Assessment
Vulnerability Scanning
Compliance
+2
AWS CloudTrail
Track user activity and API usage on AWS and in hybrid and multicloud environments.
0
Free
SIEM
Aws
Cloud Security
Cloudtrail
Cloudwatch
Compliance
Logging
Security Audit
AWS CloudTrail
Track user activity and API usage on AWS and in hybrid and multicloud environments.
0
Free
SIEM
Aws
Cloud Security
Cloudtrail
+4
CSP Auditor
A plugin for viewing, detecting weak configurations, and generating Content Security Policy headers.
0
Free
Application Security
Csp
Content Security Policy
Security Audit
CSP Auditor
A plugin for viewing, detecting weak configurations, and generating Content Security Policy headers.
0
Free
Application Security
Csp
Content Security Policy
Security Audit
Principal Mapper
A script and library for identifying risks in AWS IAM configuration
0
Free
Cloud Security
Aws
Aws Iam
Iam
Security Audit
Security Configuration
Security Automation
Principal Mapper
A script and library for identifying risks in AWS IAM configuration
0
Free
Cloud Security
Aws
Aws Iam
Iam
+3
Alert(1) to Win
A free online tool that scans and fixes common security issues in WordPress websites.
0
Free
Application Security
Wordpress
Security Audit
Vulnerability Scanning
Web App Security
Security Testing
Compliance
Alert(1) to Win
A free online tool that scans and fixes common security issues in WordPress websites.
0
Free
Application Security
Wordpress
Security Audit
Vulnerability Scanning
+3
PlumHound
A BloodHoundAD Report Engine for Security Teams to identify Active Directory security vulnerabilities and harden common configuration vulnerabilities and oversights.
0
Free
Vulnerability Management
Blue Team
Cybersecurity
Pentest
Security Audit
Security Tools
PlumHound
A BloodHoundAD Report Engine for Security Teams to identify Active Directory security vulnerabilities and harden common configuration vulnerabilities and oversights.
0
Free
Vulnerability Management
Blue Team
Cybersecurity
Pentest
+2
Spoofcheck
Simple script to check a domain's email protections and identify vulnerabilities.
0
Free
Vulnerability Management
Email Security
Vulnerability Scanning
Security Testing
Penetration Testing
Security Audit
Spoofcheck
Simple script to check a domain's email protections and identify vulnerabilities.
0
Free
Vulnerability Management
Email Security
Vulnerability Scanning
Security Testing
+2
Factual Rules Generator
Open source tool for generating YARA rules about installed software from a running OS.
0
Free
Digital Forensics
Appsec
Binary Security
File Analysis
Forensics
Rule Engine
Security Audit
Factual Rules Generator
Open source tool for generating YARA rules about installed software from a running OS.
0
Free
Digital Forensics
Appsec
Binary Security
File Analysis
+3
Checkov
Static code analysis tool for infrastructure as code (IaC) and software composition analysis (SCA) with over 1000 built-in policies for AWS, Azure, and Google Cloud.
0
Free
Application Security
Cloud Security
Compliance
Infrastructure As Code
Security Audit
Checkov
Static code analysis tool for infrastructure as code (IaC) and software composition analysis (SCA) with over 1000 built-in policies for AWS, Azure, and Google Cloud.
0
Free
Application Security
Cloud Security
Compliance
Infrastructure As Code
+1

1
2
3
4
Next