Online resources

Security related Operating Systems @ Rawsec – Complete list of security related operating systems Best Linux Penetration Testing Distributions @ CyberPunk – Description of main penetration testing distributions Security @ Distrowatch – Website dedicated to talking about, reviewing and keeping up to date with open source operating systems Hardening Windows 10 – Guide for hardening […]

Big Data

hadoop-pcap – Hadoop library to read packet capture (PCAP) files. Workbench – A scalable python framework for security research and development teams. OpenSOC – OpenSOC integrates a variety of open source big data technologies in order to offer a centralized tool for security monitoring and analysis. Apache Spot (incubating) – Apache Spot is open source […]

Web Application Firewall

ModSecurity – ModSecurity is a toolkit for real-time web application monitoring, logging, and access control. NAXSI – NAXSI is an open-source, high performance, low rules maintenance WAF for NGINX, NAXSI means Nginx Anti Xss & Sql Injection. sql_firewall SQL Firewall Extension for PostgreSQL ironbee – IronBee is an open source project to build a universal […]

Organization

OWASP – The Open Web Application Security Project (OWASP) is a 501(c)(3) worldwide not-for-profit charitable organization focused on improving the security of software. Portswigger – PortSwigger offers tools for web application security, testing & scanning. Choose from a wide range of security tools & identify the very latest vulnerabilities. Let’s Encrypt – Let’s Encrypt is a […]

Threat Intelligence

ThreatCrowd – A free threat intel tool for pivoting on domains/ips/emails/av/locations within the site / Maltego / Api. abuse.ch – ZeuS Tracker / SpyEye Tracker / Palevo Tracker / Feodo Tracker tracks Command&Control servers (hosts) around the world and provides you a domain- and an IP-blocklist. Emerging Threats – Open Source – Emerging Threats began […]

Content Disarm & Reconstruct

DocBleach – An open-source Content Disarm & Reconstruct software sanitizing Office, PDF and RTF Documents. ExeFilter – an open-source tool and framework to filter files and active content. CIRCLean– CIRCLean is an independent hardware solution to clean documents from untrusted (obtained) USB keys / USB sticks.

Security Information & Event Management

Prelude – Prelude is a Universal “Security Information & Event Management” (SIEM) system. Prelude collects, normalizes, sorts, aggregates, correlates and reports all security-related events independently of the product brand or license giving rise to such events; Prelude is “agentless”. OSSIM – OSSIM provides all of the features that a security professional needs from a SIEM […]

Firewall

pfSense – Firewall and Router FreeBSD distribution. OPNsense – is an open source, easy-to-use and easy-to-build FreeBSD based firewall and routing platform. OPNsense includes most of the features available in expensive commercial firewalls, and more in many cases. It brings the rich feature set of commercial offerings with the benefits of open and verifiable sources. […]

Anti-Spam

Spam Scanner – Anti-Spam Scanning Service and Anti-Spam API. rspamd – Fast, free and open-source spam filtering system. SpamAssassin – A powerful and popular email spam filter employing a variety of detection technique. Scammer-List – A free open source AI based Scam and Spam Finder with a free API.

VPN

OpenVPN – OpenVPN is an open source software application that implements virtual private network (VPN) techniques for creating secure point-to-point or site-to-site connections in routed or bridged configurations and remote access facilities. It uses a custom security protocol that utilizes SSL/TLS for key exchange. SoftEther VPN – Among the many features of this open source […]