All Cybersecurity Tools

Pwndbg is a GDB plug-in that enhances the debugging experience for low-level software developers, hardware hackers, reverse-engineers, and exploit developers.

A project that detects malicious SSL connections by identifying and blacklisting SSL certificates used by botnet C&C servers and identifying JA3 fingerprints to detect and block malware botnet C&C communication.

ONYPHE is a cyber defense search engine that discovers exposed assets and provides real-time monitoring to identify vulnerabilities and potential risks.

Open-source honeypot tool for detecting and analyzing malicious activities in the Apache Struts exploit.

A Scriptable Android Debugger for reverse engineers and developers.

A project sharing malicious URLs used for malware distribution to help protect networks.

A repository of officially managed detection rules for the Falco runtime security monitoring system that identifies threats, abnormal behaviors, and compliance violations through syscall and container event analysis.

Prowler is an open source multi-cloud security assessment tool that performs audits, compliance checks, and security evaluations across AWS, Azure, GCP, and Kubernetes environments.

A tool for enumerating and attacking GitHub Actions pipelines

Hapi is a Node.js web application framework that provides built-in functionality for building scalable server-side applications and APIs with security features and plugin architecture.

A fuzzer for detecting open redirect vulnerabilities

PCMag's Security Watch offers timely insights and reviews on security software and technologies.

StaCoAn is a cross-platform tool for static code analysis on mobile applications, emphasizing the identification of security vulnerabilities.

Collection of cybersecurity conference videos recorded by Cooper (@Ministraitor)

An open-source, drag-and-drop security workflow builder with integrated case management for automating security workflows and tackling alert fatigue.

Track postMessage usage with this Chrome Extension

YaraHunter scans container images, running Docker containers, and filesystems using YARA rules to detect malware indicators and signs of compromise.

YLS Language Server for YARA Language with comprehensive features and Python 3.8 support.

SecLists is a comprehensive repository of security testing lists including usernames, passwords, URLs, fuzzing payloads, and web shells used during penetration testing and security assessments.

Needle is a discontinued open source modular framework for iOS application security assessments that was compatible with iOS 9 and iOS 10 before being replaced by Objection.

A threat intelligence domain/IP/hash threat feeds checker that checks IPVoid, URLVoid, Virustotal, and Cymon.

A Splunk application that processes honeypot data from hpfeeds channels to generate clustered meta-events and visualizations for security analysis.

A project providing honeypots for embedded device vulnerabilities with support for AWS integration and JSON output.

A database protection suite that provides field-level encryption, access control, and intrusion detection for distributed applications storing sensitive data.