Datastores

databunker – Databunker is an address book on steroids for storing personal data. GDPR and encryption are out of the box. acra – Database security suite: proxy for data protection with transparent “on the fly” data encryption, data masking and tokenization, SQL firewall (SQL injections prevention), intrusion detection system. blackbox – Safely store secrets in […]

Social Engineering / OSINT

Gophish – An Open-Source Phishing Framework. Maltego – Maltego is an open source intelligence and graphical link analysis tool for gathering and connecting information for investigative tasks. Maltego is a Java application that runs on Windows, Mac and Linux. Social Engineering Toolkit (SET) – Social Engineering Toolkit (or SET) is an open-source, Python-driven toolkit aimed at […]

Threat Intelligence

ThreatCrowd – A free threat intel tool for pivoting on domains/ips/emails/av/locations within the site / Maltego / Api. abuse.ch – ZeuS Tracker / SpyEye Tracker / Palevo Tracker / Feodo Tracker tracks Command&Control servers (hosts) around the world and provides you a domain- and an IP-blocklist. Emerging Threats – Open Source – Emerging Threats began […]

Full Packet Capture / Forensic

ngrep – ngrep is like GNU grep applied to the network layer. It’s a PCAP-based tool that allows you to specify an extended regular or hexadecimal expression to match against data payloads of packets. It understands many kinds of protocols, including IPv4/6, TCP, UDP, ICMPv4/6, IGMP and Raw, across a wide variety of interface types, […]