Template Resources

NIST Cybersecurity Framework – NIST is considered the gold standard for cybersecurity frameworks, use this guide to inform your businesses cyber framework. SANS Cybersecurity Policies – Free to use policies and procedures covering most topics in information security. Frequently Asked Questions (NIST) – Learn more about how the NIST framework works and how you can […]

Social Engineering / OSINT

Gophish – An Open-Source Phishing Framework. Maltego – Maltego is an open source intelligence and graphical link analysis tool for gathering and connecting information for investigative tasks. Maltego is a Java application that runs on Windows, Mac and Linux. Social Engineering Toolkit (SET) – Social Engineering Toolkit (or SET) is an open-source, Python-driven toolkit aimed at […]

Mobile / Android / iOS

android-security-awesome – A collection of android security related resources. A lot of work is happening in academia and industry on tools to perform dynamic analysis, static analysis and reverse engineering of android apps. SecMobi Wiki – A collection of mobile security resources which including articles, blogs, books, groups, projects, tools and conferences. * OWASP Mobile […]

Monitoring / Logging

What2Log – Logging is essential in computer security. Computer logs can tell someone everything they need to know about what happened on a particular machine at a particular time. Events can be strung together to create a timeline of several events that happened during a time period. justniffer – Justniffer is a network protocol analyzer […]

Scanning / Pentesting

OpenVAS – OpenVAS is a framework of several services and tools offering a comprehensive and powerful vulnerability scanning and vulnerability management solution. Metasploit Framework – A tool for developing and executing exploit code against a remote target machine. Other important sub-projects include the Opcode Database, shellcode archive and related research. Kali – Kali Linux is […]