pocsuite3 is a remote vulnerability testing framework.
Read more
Category: Security
OpenSCAP – NIST Certified SCAP 1.2 toolkit
OpenSCAP is both a library and a command line tool which can be used to parse and evaluate each component of the SCAP standard.
Read more
Nuclei – fast and customisable vulnerability scanner
nuclei is a fast and customisable vulnerability scanner based on simple YAML based DSL.
Read more
Wapiti – web-application vulnerability scanner
Wapiti allows you to audit the security of your websites or web applications.
Read more
Obfuscate – utility to censor private information
Obfuscate is a simple GTK-based utility that’s designed to censor private information.
Read more
sqlmap – penetration testing tool
sqlmap is a penetration testing tool that automates detecting and exploiting SQL injection flaws and taking over of database servers.
Read more
XSSer – detect, exploit and report XSS vulnerabilities
XSSer is an automatic framework to detect, exploit and report XSS vulnerabilities in web-based applications.
Read more
simple fuzzer – a simple fuzzer
simple fuzzer is exactly what it sounds like – a simple fuzzer.
Read more
Doona – network based protocol fuzzer
Doona is a fork of the Bruteforce Exploit Detector Tool (BED). It adds a significant number of features/changes.
Read more
socat – multipurpose relay (SOcket CAT)
socat is a flexible, multi-purpose relay tool. Its purpose is to establish a relationship between two data sources,
Read more
flawfinder – lexically find potential security flaws (“hits”) in source code
Flawfinder searches through C/C++ source code looking for potential security flaws.
Read more
Hydra – fast network logon cracker
Hydra is a parallelized login cracker which supports numerous protocols to attack.
Read more
5 Best Open Source Firewall Distributions
Security is paramount. Security involves defense in depth. Approaching security one step at a time, with consistency and rigour, you can mitigate threats.
Read more
9 Best Free and Open Source Host-Based Intrusion Detection Systems
An intrusion detection system is a device or software application that monitors a network or systems for malicious activity or policy violations.
Read more
Security Onion – platform built by defenders for defenders
Security Onion includes network visibility, host visibility, intrusion detection honeypots, log management, and case management.
Read more