Security

Complete suite for WiFi network security assessment. Includes monitoring, attacking, testing, and cracking WEP/WPA/WPA2 encryption.

Windows event log fast forensics timeline generator. Sigma-based detection, threat hunting, and incident response.

GitGuardian CLI for scanning Git repos for secrets. 350+ detectors, pre-commit hooks, CI integration. Free for open source.

General-purpose policy engine. Enforce policies across microservices, Kubernetes, CI/CD, and API gateways using Rego language.

Detects capabilities in executable files. Identifies what malware can do (e.g., HTTP comms, file encryption) using MITRE ATT&CK mapping.

Protects hosts from brute-force attacks. Monitors logs and blocks attacking IPs using firewall rules. Supports SSH, FTP, SMTP.

Fast and flexible online password brute-forcing tool. Supports 50+ protocols including SSH, FTP, HTTP, RDP, SMB, MySQL, and more.

Interactive HTTPS proxy. Intercept, inspect, modify, and replay HTTP/HTTPS traffic. Console, web, and Python API interfaces.

Vulnerability scanner for container images and filesystems. Fast scanning with SBOM support. Works with Syft for complete supply chain security.

High-level tracing language for Linux. Dynamic tracing with eBPF. AWK-like syntax for kernel and userspace probes.

Malware initial assessment tool. Analyzes PE files without executing them. Detects anomalies, imports, resources, and indicators.

Advanced memory forensics framework. Extract digital artifacts from volatile memory (RAM) dumps. Supports Windows, Linux, and macOS memory analysis.

Full-featured web reconnaissance framework. Modular design with marketplace for modules. Automated OSINT collection and reporting.

AlienVault Open Source SIEM. Combines asset discovery, vulnerability assessment, intrusion detection, behavioral monitoring, and SIEM in one platform.

Open-source SOC platform integrating Wazuh and threat intelligence.

SQL-powered operating system instrumentation. Query your infrastructure like a database. Used by Facebook, Google, and major enterprises.

CTF framework and exploit development library. Simplifies exploit writing with tubes, packing, ELF parsing, and ROP chains.

Forensic imaging tool by AccessData. Create forensic images, preview evidence, and export files. Supports E01, DD, and SMART formats.

Sysinternals Active Directory viewer and editor. Browse AD database, take snapshots, compare changes. Essential for AD forensics.

Open-source web application attack and audit framework. Identifies 200+ vulnerabilities including SQL injection, XSS, and CSRF.

System monitor for Linux that logs process and network activity.

Agent-less vulnerability scanner for Linux/FreeBSD. Scans using multiple vulnerability databases. Email/Slack notifications.

Malware configuration and payload extraction. Advanced fork of Cuckoo with YARA integration, behavior analysis, and config extraction.

Simple IOC and YARA scanner. Checks files against known indicators of compromise, suspicious filenames, and YARA rules.