Security

Open-source collaborative IDS/IPS. Shares threat intelligence across community. Behavior-based detection with crowdsourced blocklists.

Advanced Intrusion Detection Environment. File integrity checking tool. Creates a database of files and detects unauthorized changes.

Cloud-native runtime security. Detects unexpected behavior in containers, Kubernetes, and Linux hosts using system call monitoring.

Fast directory, DNS, vhost, S3, and GCS brute-force tool. Written in Go for high performance. Essential for web application testing.

Fast web fuzzer written in Go. Fuzz URLs, headers, POST data, and more. Highly customizable with filters, matchers, and output formats.

Active Directory attack path mapping. Reveals hidden relationships in AD environments. Community Edition — free and open source.

Fast, customizable vulnerability scanner. Template-based scanning for web apps, networks, DNS, and more. 8000+ community templates.

Comprehensive security scanner. Finds vulnerabilities in containers, file systems, Git repos, and Kubernetes. Scans OS packages and app dependencies.

Vulnerability scanner for container images and filesystems. Fast scanning with SBOM support. Works with Syft for complete supply chain security.

Static analysis tool for infrastructure-as-code. Scans Terraform, CloudFormation, Kubernetes, Docker for misconfigurations. 1000+ built-in policies.

Checks Kubernetes clusters against CIS Kubernetes Benchmark. Automated compliance checking for cluster security hardening.

AWS and Azure security assessment tool. 300+ checks for compliance, hardening, and best practices. Supports CIS, PCI-DSS, HIPAA, GDPR.

Pattern matching tool for malware researchers. Create rules to identify and classify malware samples. Used by antivirus engines worldwide.

SQL-powered operating system instrumentation. Query your infrastructure like a database. Used by Facebook, Google, and major enterprises.

Google Rapid Response — remote live forensics. Incident response framework for remote investigation and artifact collection at scale.

Scan for rootkits, backdoors, and local exploits. Checks for known rootkit signatures, wrong file permissions, and hidden files.

Locally checks for signs of rootkits. Examines system binaries for rootkit modifications. Quick, lightweight scan.

Open-source phishing toolkit for security awareness training. Design campaigns, track results, and measure employee susceptibility.

Find leaked credentials in Git repos, S3 buckets, and filesystems. Scans history, branches, and commits. High-signal, low-noise.

Scan Git repos for hardcoded secrets. Pre-commit hooks, CI/CD integration, custom rules. Fast and accurate.

Enterprise-friendly tool for detecting secrets in code. Designed to prevent new secrets from entering the codebase via pre-commit hooks.

GitGuardian CLI for scanning Git repos for secrets. 350+ detectors, pre-commit hooks, CI integration. Free for open source.

CLI tool for generating Software Bill of Materials (SBOM) from container images and filesystems. CycloneDX and SPDX output.

Microsoft's SBOM generation tool. Creates SPDX-compliant SBOMs for any project. Integrates with build pipelines.