Search All Cybersecurity Tools

Principal Mapper is a Python tool that models AWS IAM configurations as directed graphs to identify privilege escalation risks and alternative attack paths in AWS environments.

A Golang-based container security scanner that identifies potential vulnerabilities and misconfigurations in container environments by checking namespacing, capabilities, security profiles, and host device mounts.

NAXSI is a third-party nginx module that prevents XSS and SQL injection attacks by filtering HTTP traffic based on predefined security rules.

A Microsoft Word template library for implementing industrial information security management systems with documentation for policy, risk management, business continuity, and incident handling.

A simple honeypot that opens a listening socket and waits for connection attempts, with configurable reply and event handling

SSLyze is a fast and powerful SSL/TLS scanning tool and Python library with a focus on speed, reliability, and ease of integration.

A powerful tool for hiding the true location of your Teamserver, evading detection from Incident Response, redirecting users, blocking specific IP addresses, and managing Malleable C2 traffic in Red Team engagements.

A Python 2.x tool for memory analysis on Mac OS X systems with support for various OS versions and memory image export capabilities.

6Guard is an IPv6 attack detector sponsored by Google Summer of Code 2012 and supported by The Honeynet Project organization.

A Linux privilege escalation auditing tool that identifies potential kernel vulnerabilities and suggests applicable exploits based on system analysis.

ElasticSearch honeypot to capture attempts to exploit CVE-2014-3120, with logging and daemon options.

Drltrace is a dynamic API calls tracer for Windows and Linux applications.

Needle is a discontinued open source modular framework for iOS application security assessments that was compatible with iOS 9 and iOS 10 before being replaced by Objection.

drozer is an open source Android security testing framework that identifies vulnerabilities in mobile apps and devices through Android Runtime and IPC endpoint interaction.

Doorman is an osquery fleet manager that allows administrators to remotely manage the osquery configurations retrieved by nodes.

Threat hunting tool leveraging Windows events for identifying outliers and suspicious behavior.

A Docker-based utility that monitors TLS certificate expiration dates and exposes the data as Prometheus metrics with support for Kubernetes ingress discovery and configurable domain filtering.

Hoarder is a tool to collect and parse windows artifacts.

A web application honeypot sensor attracting malicious traffic from the Internet

A honeypot designed to detect and analyze malicious activities in instant messaging platforms.

Tool for setting up Glutton, a cybersecurity tool for monitoring SSH traffic.

Python web application honeypot with vulnerability type emulation and modular design.

Converts Sigma and Yara rules to CRYPTTECH's SIEM query language.

A spam prevention technique using hidden fields to detect and deter spam bots in Laravel applications.