Security Tools
Explore 23 curated tools and resources
PINNED
InfoSecHired
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.
Commercial
Resources
Mandos Brief Newsletter
A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.
Free
Resources
Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.
Commercial
Application Security
Check Point CloudGuard WAF
A cloud-native web application and API security solution that uses contextual AI to protect against known and zero-day threats without signature-based detection.
Commercial
Application Security
Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.
Commercial
Cloud Security
DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.
Commercial
Application Security
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Commercial
Cloud Security
LATEST ADDITIONS
A vulnerability and exposure management platform that unifies security tool data, automates workflows, and provides risk-based prioritization for enterprise vulnerability management programs.
VirusTotal API v3 is a threat intelligence platform for scanning files, URLs, and IP addresses, and retrieving reports on threat reputation and context.
HoneyDB is a honeypot-based threat intelligence platform that provides real-time insights into attacker behavior and malicious activity on networks.
GCTI's open-source detection signatures for malware and threat detection
A program to extract IOCs from text files using regular expressions
Scumblr is a web application for periodic syncs of data sources and security analysis to streamline proactive security.
A portable Docker container with preinstalled AWS security tools for SecOps on AWS.
Community-driven collection of open source tools being archived with limited support.
Free tools for the CrowdStrike customer community to support their use of the Falcon platform.
Enhances the reading experience of smali code in Emacs.
A multiarch honeypot platform supporting 20+ honeypots and offering visualization options and security tools.
Fast Intercept is a security automation platform that empowers users to maximize their existing security products and automate routine tasks.
Collection of Windows oneliners for executing arbitrary code and downloading remote payloads.
Sigma is a generic and open signature format for SIEM systems and other security tools to detect and respond to threats.
A threat intelligence dissemination layer for open-source security tools with STIX-2 support and plugin-based architecture.
Packet Storm is a global security resource providing around-the-clock information and tools to mitigate personal data and fiscal loss on a global scale.
An Open Source solution for management of Threat Intelligence at scale, integrating multiple analyzers and malware analysis tools.
Encode or encrypt strings to various hashes and formats, including MD5, SHA1, SHA256, URL encoding, Base64, and Base85.
A BloodHoundAD Report Engine for Security Teams to identify Active Directory security vulnerabilities and harden common configuration vulnerabilities and oversights.
A comprehensive guide for system administrators to detect and identify potential security threats on Windows 2000 systems.