Search All Cybersecurity Tools

Metabadger automates the upgrade of AWS EC2 instances to use the more secure Instance Metadata Service v2 (IMDSv2) to prevent SSRF attacks and reduce attack surface.

An open-source framework that inventories and manages AWS resources across multiple accounts by collecting data via Cross Account Assume Roles and storing it in a centralized S3 bucket for analysis.

Prevents you from committing passwords and other sensitive information to a git repository.

Repokid automatically removes unused service permissions from AWS IAM role inline policies using Access Advisor data to implement least privilege access.

A command-line tool that analyzes local CloudTrail files to detect off-instance AWS key usage patterns for security monitoring and forensic analysis.

A distributed AWS security auditing tool that continuously enumerates and scans internet-facing AWS services to identify potentially misconfigured resources.

A command line tool that counts and inventories AWS resources across multiple regions, providing visibility into cloud infrastructure with efficient API querying.

A Python script that inventories and lists main AWS account resources to provide visibility into cloud infrastructure components that may impact billing or security.

A Python command line tool that scans directories for AWS credentials in files, designed for CI/CD integration to prevent credential exposure in builds.

rpCheckup is an AWS resource policy security analysis tool that identifies public, external, intra-organizational, and private resource access patterns across AWS accounts.

StaDynA is a system supporting security app analysis in the presence of dynamic code update features.

FSquaDRA detects repackaged Android applications by computing Jaccard similarity over file digests within APK packages using pre-computed signing digests for improved performance.

A Python-based Docker security audit tool that performs CIS benchmark assessments with customizable profiles and JSON reporting capabilities.

An Event Hub to gather, process, and monitor system events and link them to an inventory.

An endpoint monitoring tool for Linux and macOS that reports file, socket, and process events to Zeek.

A collection of setup scripts for various security research tools with installers for tools like afl, angr, barf, and more.

ZAP is an open-source web application security scanner that helps identify vulnerabilities through automated scanning and manual testing capabilities.

IMAP-Honey is a honeypot tool for IMAP and SMTP protocols with support for logging to console or syslog.

HpfeedsHoneyGraph is a visualization application that creates graphical representations of hpfeeds logs to aid cybersecurity analysis of honeypot data.

Reverts sha1 integrity back to sha512 in lock files for enhanced security.

mac_apt is a versatile DFIR tool for processing Mac and iOS images, offering extensive artifact extraction capabilities and cross-platform support.

Syntax, indent, and filetype detection for YARA rule files with auto-indenting and error display in quickfix window.

A tool for fixing acquired .evt Windows Event Log files in digital forensics.

Incident response and digital forensics tool for transforming data sources and logs into graphs.