Search All Cybersecurity Tools

AuditJS is a command-line tool that scans JavaScript projects for known vulnerabilities and outdated packages in npm dependencies using the OSS Index API or Nexus IQ Server.

A framework/scripting tool to standardize and simplify the process of scripting favorite Live Acquisition utilities for Incident Responders.

Use FindYara, an IDA python plugin, to scan your binary with yara rules and quickly jump to matches.

Management portal for LoKi scanner with centralized database for scanning activities.

A comprehensive Android application analysis tool that provides device management, logcat analysis, file examination, and integration with security frameworks like MobSF and JD-GUI.

A Go library for manipulating YARA rulesets with the ability to programatically change metadata, rule names, and more.

Fridump is an open source memory dumping tool that uses the Frida framework to extract accessible memory addresses from iOS, Android, and Windows applications for security testing and analysis.

APT Simulator is a tool for simulating a compromised system on Windows.

AutoYara is a Java tool that automatically generates YARA rules from malware samples using biclustering algorithms to help analysts create detection rules for malware families.

An open source packet capture and forwarding tool that captures network packets on one machine and sends them to another for remote monitoring and analysis.

Dispatch helps manage security incidents by integrating with existing tools and automating incident response tasks.

ConsoleMe is a web service that simplifies AWS IAM permissions and credential management across multiple accounts through self-service workflows and centralized administration.

Scumblr is a web-based security automation platform that performs periodic data source synchronization and security analysis to help organizations proactively identify and track security issues.

A deprecated digital forensics tool by Netflix that helped investigators scope compromises across AWS cloud instances by identifying behavioral differences and outliers during security incidents.

A PowerShell toolkit for penetration testing Microsoft Azure environments, providing discovery, configuration auditing, and post-exploitation capabilities.

A generator for YARA rules that creates rules from strings found in malware files while removing strings from goodware files.

yarAnalyzer creates statistics on a yara rule set and files in a sample directory, generating tables and CSV files, including an inventory feature.

YARA signature and IOC database for LOKI and THOR Lite scanners with high quality rules and IOCs.

An online hash checker utility that retrieves information from various online sources, including Virustotal, HybridAnalysis, and more.

A comprehensive auditd configuration for Linux systems following best practices.

LOKI is a simple IOC and YARA Scanner for Indicators of Compromise Detection.

Fnord is a pattern extraction tool that analyzes obfuscated code using sliding window techniques to identify frequent byte sequences and generate experimental YARA rules for malware analysis.

A lightweight bash script IOC scanner for Linux/Unix/macOS systems that detects malicious indicators through hash matching, filename analysis, string searches, and C2 server identification without requiring installation.

Ghidra is an NSA-developed software reverse engineering framework that provides disassembly, decompilation, and analysis tools for examining compiled code across multiple platforms and processor architectures.