Web Application Firewall

ModSecurity – ModSecurity is a toolkit for real-time web application monitoring, logging, and access control. NAXSI – NAXSI is an open-source, high performance, low rules maintenance WAF for NGINX, NAXSI means Nginx Anti Xss & Sql Injection. sql_firewall SQL Firewall Extension for PostgreSQL ironbee – IronBee is an open source project to build a universal […]

Social Engineering / OSINT

Gophish – An Open-Source Phishing Framework. Maltego – Maltego is an open source intelligence and graphical link analysis tool for gathering and connecting information for investigative tasks. Maltego is a Java application that runs on Windows, Mac and Linux. Social Engineering Toolkit (SET) – Social Engineering Toolkit (or SET) is an open-source, Python-driven toolkit aimed at […]

Threat Intelligence

ThreatCrowd – A free threat intel tool for pivoting on domains/ips/emails/av/locations within the site / Maltego / Api. abuse.ch – ZeuS Tracker / SpyEye Tracker / Palevo Tracker / Feodo Tracker tracks Command&Control servers (hosts) around the world and provides you a domain- and an IP-blocklist. Emerging Threats – Open Source – Emerging Threats began […]