A free and open platform for detecting and preventing email attacks like BEC, malware, and credential phishing. Gain visibility and control, hunt for advanced threats, and collaborate with the community. Sublime uses Message Query Language (MQL), a domain-specific language purpose-built for describing behavior in email. MQL is email provider agnostic, enabling defenders to write, run, and share Detections-as-Code. Open-source detection rules and links to community feeds are maintained in the sublime-rules repository. Learn more about MQL: Introduction to Message Query Language. Setup instructions, Docker Quickstart, other deployment methods, documentation, API, release log, and more are available.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
An industrial control system testing tool that enables security researchers to enumerate SCADA controllers, read register values, and modify register data across different testing modes.
A hardware security validation toolkit for x86 platforms that provides bootable tools for checking platform configuration registers and managing SecureBoot keys.
A comprehensive collection of wordlists for bruteforcing and password cracking, covering various hashing algorithms and sizes.
PLCinject is a tool for injecting and patching blocks on PLCs with a call instruction.
A command line steganography tool that uses LSB technique to hide files within images without visible alteration.
An Active Defense framework for detecting and responding to phishing attacks in Office 365 Message Trace logs.
Extract local data storage of an Android application in one click.
A search engine for the Internet of Things (IoT) that discovers and monitors devices connected to the internet.
Semi-tethered jailbreak for iPhone 5s to iPhone X, running iOS 12.0 and up, using the 'checkm8' bootrom exploit.
PINNED

Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.