An open-source user mode debugger for Windows. Optimized for reverse engineering and malware analysis.
-
Updated
Dec 21, 2024 - C++
Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.
An open-source user mode debugger for Windows. Optimized for reverse engineering and malware analysis.
Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more
🕵️♂️ All-in-one OSINT tool for analysing any website
Find secrets with Gitleaks 🔑
Find, verify, and analyze leaked credentials
🔒 A compiled checklist of 300+ tips for protecting digital security and privacy in 2024
♾ Infisical is the open-source secret management platform: Sync secrets across your team/infrastructure, prevent secret leaks, and manage internal PKI
🤖 The Modern Port Scanner 🤖
Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.
SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.
Daemon to ban hosts that cause multiple authentication errors
API, CLI, and Web App for analyzing and finding a person's profile in 1000 social media \ websites
Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.
Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices
Prowler is an Open Cloud Security tool for AWS, Azure, GCP and Kubernetes. It helps for continuos monitoring, security assessments and audits, incident response, compliance, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more.
Scapy: the Python-based interactive packet manipulation program & library.
List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.
Adversary Emulation Framework
Attack Surface Management Platform
A curated list of awesome search engines useful during Penetration testing, Vulnerability assessments, Red/Blue Team operations, Bug Bounty and more