The most comprehensive directory of cybersecurity tools for security assessment, penetration testing, and risk discovery.
Explore our curated collection of 137+ essential cybersecurity tools, ranging from network security and penetration testing to malware analysis and vulnerability assessment.
Whether you're a security professional, penetration tester, or IT administrator, find the right tools to enhance your security operations, conduct thorough assessments, and protect your digital assets.
Modern phishing tool with advanced functionality.
Penetration testing framework that makes hacking simple
Open source web server scanner that performs comprehensive tests against web servers for multiple items
Vulnerability scanner for comprehensive security assessments
Platform for searching, monitoring, and analyzing machine-generated big data via a web-style interface
Swiss army knife for TCP/IP connections and listening
Open source phishing framework for penetration testers and security researchers.
Open-source penetration testing framework designed for social engineering.
Collection of PowerShell modules used during penetration tests and red team engagements
Advanced AI-generated content detection platform with trial access.
Fast subdomains enumeration tool for penetration testers
Pattern matching swiss knife for malware researchers and threat hunters
Enterprise vulnerability management and assessment platform
Enterprise platform for detecting deepfakes and synthetic media across video content.
Multi-modal content analysis platform utilizing machine learning for detecting AI-generated or manipulated media, featuring forensic analysis tools and automated reporting.
Collection of cybersecurity tools for red team operations.
Open source intrusion prevention system capable of real-time traffic analysis and packet logging
A comprehensive vulnerability scanner for containers, filesystems, and git repositories, offering fast and accurate scanning with DevOps-friendly integration.
Network protocol analyzer for network troubleshooting and analysis
WordPress vulnerability scanner used to identify security issues in WordPress installations
Powerful network analysis framework that transforms network traffic into high-level events and entities
Professional audio authentication software featuring waveform analysis, digital signature verification, tampering detection, and comprehensive metadata analysis.
Feature-full, modular, high-performance Ruby framework aimed towards web application security scanning
An automated API security testing platform offering continuous API scanning, zero-day vulnerability detection, and API documentation analysis.
Tool for detecting and analyzing potential deepfake videos using advanced AI algorithms.
Open source Host-based Intrusion Detection System (HIDS) that performs log analysis, integrity checking, rootkit detection, and more
Security tool designed to find common security issues in Python code
Tool for testing and promoting user awareness by simulating real-world phishing attacks.
Open source threat intelligence aggregation platform
Open source network threat detection engine capable of real-time intrusion detection, inline intrusion prevention and network security monitoring
A Software Composition Analysis platform for software bill of materials (SBOM), component vulnerability analysis, and license compliance.
Advanced deepfake detection platform featuring video analysis, face manipulation detection, movement analysis, and confidence scoring capabilities.
Advanced image metadata analysis tool providing metadata extraction, digital signature verification, image source identification, and manipulation detection features.
Platform for monitoring threat actor channels and data breaches.
Cloud-based IT, security and compliance solutions
Security tool that mounts automated victim-customized phishing attacks against WiFi clients.
Comprehensive content verification platform offering cross-modal analysis, AI detection algorithms, blockchain verification, and detailed audit trails.
Network mapping of attack surfaces and external asset discovery using open source information gathering and active reconnaissance techniques.
Advanced service identification and port scanning tool
Intelligence Framework for analyzing threats in multiple ways from a single API.
Post-exploitation framework that enables you to run PowerShell agents without powershell.exe
An OSINT tool to search for accounts by username in 581 sites. Features include asynchronous execution, highly customizable, and CSV/TXT export.
Wireless network and device detector, sniffer, wardriving tool, and WIDS framework
A modern API security scanner supporting GraphQL and REST API testing, authentication testing, rate limiting analysis, and API fuzzing capabilities.
Open source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws
A cloud-native runtime security tool providing real-time container security monitoring, Kubernetes threat detection, and custom rule engine for behavior detection.
AI image detection and analysis platform for identifying synthetic content.
Active Directory security tool that uses graph theory to reveal hidden relationships and attack paths
Tool for finding Geolocation of devices using social engineering.
Man-in-the-middle attack framework used for phishing credentials and session cookies.
Container and cloud security platform with runtime protection
Browser Exploitation Framework for penetration testing
A generic SIEM rules platform with multi-platform support and community-driven rules for easy conversion between formats.
Advanced AI text detection tool offering writing style analysis, perplexity scoring, and bulk content scanning capabilities for identifying AI-generated content.
Comprehensive digital content verification platform providing content provenance tracking, digital signatures, metadata verification, and chain of custody tracking.
Specialized tool for detecting AI-generated and synthetic voice content.
Professional email finder and verifier tool. Find anyone's email address and verify them in bulk. Features include email finder, domain search, and email verification.
World's fastest and most advanced password recovery tool
Open source antivirus engine for detecting trojans, viruses, malware & other malicious threats
An offensive Google framework focused on OSINT gathering and vulnerability research around Google services and products. Latest v2.0.1 release includes major improvements.
Fast and flexible network logon cracker which supports numerous protocols
Open source intelligence (OSINT) automation tool that integrates with multiple data sources
Developer security platform for open source and container security
Tool for identifying and analyzing potentially AI-generated or manipulated images.
Web Application Firewall (WAF) fingerprinting tool to identify and detect web application firewall products
Open-source phishing toolkit designed for businesses and penetration testers.
AI speech detection tool to identify synthetic and AI-generated audio content.
Framework for performing layer 2 attacks, focused on network protocol analysis
A comprehensive digital image forensics tool offering error level analysis, noise analysis, clone detection, and metadata analysis capabilities for detecting manipulated images and verifying image authenticity.
Advanced deepfake video detection platform that helps identify AI-generated video content.
Open source cloud native security observability platform
Automated adversary emulation system that performs post-compromise adversarial behavior
Integrated platform for web application security testing
Full-featured web reconnaissance framework written in Python
Network tool able to send custom TCP/IP packets and display target replies
An Infrastructure as Code security scanner that scans Terraform, CloudFormation, and Kubernetes manifests with 1000+ built-in policies and custom policy framework support.
A PowerShell-based Windows security tool for event log analysis, threat hunting automation, and IOC detection.
AI image detection tool specifically designed for identifying AI-generated images.
Security auditing tool for Linux/Unix-based systems that performs detailed security scans and compliance checks
Multi-modal AI detection platform for identifying synthetic images and audio.
Open Cyber Threat Intelligence Platform that allows organizations to manage their cyber threat intelligence knowledge and observables.
A DevSecOps platform for security orchestration, vulnerability management, metrics reporting, and CI/CD integration.
Comprehensive AI-generated content detection platform for video, audio, and images.
Wireless and ethernet security auditing and attack software.
Advanced command-line tool designed to brute force directories and files in webservers
Collaborative platform for InfoSec teams to handle reporting and vulnerability management
An advanced mobile security scanner for Android vulnerability scanning, runtime analysis, and SDK security testing.
Sophisticated audio forensics tool for voice pattern analysis, audio manipulation detection, spectral analysis, and audio source identification.
A comprehensive mobile security testing framework offering static and dynamic analysis, API security testing, and malware analysis.
An IoT security assessment tool for default credential testing, device discovery, and vulnerability scanning.
Discover where your personal data is stored and how to reclaim it
Calculate potential costs associated with data breaches
Assess and improve your organization's data privacy practices
Define and scope your security assessment requirements