{"id":22267581,"url":"https://github.com/txuswashere/cyber-sec-resources-tools","last_synced_at":"2026-03-19T22:14:26.087Z","repository":{"id":228997911,"uuid":"775496014","full_name":"txuswashere/Cyber-Sec-Resources-Tools","owner":"txuswashere","description":"Cyber Sec: Resources \u0026 Tools","archived":false,"fork":false,"pushed_at":"2024-03-22T10:19:56.000Z","size":41,"stargazers_count":2,"open_issues_count":0,"forks_count":0,"subscribers_count":1,"default_branch":"main","last_synced_at":"2025-01-30T13:27:41.281Z","etag":null,"topics":["awsome-list","cyber-security","cybersecurity","cybersecurity-education","resource-pack","resourcepack","resources","security","security-automation","security-hardening","security-scan","security-scanner","security-testing","security-tools","security-vulnerability"],"latest_commit_sha":null,"homepage":"","language":null,"has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/txuswashere.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null}},"created_at":"2024-03-21T13:55:04.000Z","updated_at":"2025-01-07T14:32:51.000Z","dependencies_parsed_at":"2024-03-21T15:13:10.244Z","dependency_job_id":null,"html_url":"https://github.com/txuswashere/Cyber-Sec-Resources-Tools","commit_stats":null,"previous_names":["txuswashere/cyber-sec-resources-tools"],"tags_count":0,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/txuswashere%2FCyber-Sec-Resources-Tools","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/txuswashere%2FCyber-Sec-Resources-Tools/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/txuswashere%2FCyber-Sec-Resources-Tools/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/txuswashere%2FCyber-Sec-Resources-Tools/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/txuswashere","download_url":"https://codeload.github.com/txuswashere/Cyber-Sec-Resources-Tools/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":245485375,"owners_count":20623229,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["awsome-list","cyber-security","cybersecurity","cybersecurity-education","resource-pack","resourcepack","resources","security","security-automation","security-hardening","security-scan","security-scanner","security-testing","security-tools","security-vulnerability"],"created_at":"2024-12-03T11:07:30.983Z","updated_at":"2026-01-05T22:45:16.187Z","avatar_url":"https://github.com/txuswashere.png","language":null,"funding_links":[],"categories":[],"sub_categories":[],"readme":"# Cyber-Sec-Resources-Tools\nCyber Sec: Resources \u0026amp; Tools\n\n\n\n\n\n# Intrusion Detection Tools\n- Snort https://www.snort.org\n- Suricata https://suricata-ids.org\n- AlienVault® OSSIM™ (https://cybersecurity.att.com)\n- SolarWinds Security Event Manager (https://www.solarwinds.com)\n- OSSEC (https://www.ossec.net)\n- Zeek (https://zeek.org)\n- Sagan Log Analysis Engine (https://quadrantsec.com)\n\n\n# Honeypot Tools\n- HoneyBOT https://www.atomicsoftwaresolutions.com\n- KFSensor (http://www.keyfocus.net)\n- MongoDB-HoneyProxy (https://github.com)\n- Modern Honey Network (https://github.com)\n- ESPot (https://github.com)\n- HoneyPy (https://github.com)\n\n\n# Proxy Server:\n- Squid Proxy http://www.squid-cache.org\n- Whonix (https://www.whonix.org)\n- Psiphon (https://psiphon.ca)\n- FoxyProxy (https://getfoxyproxy.org)\n- GeoSurf (https://www.geosurf.com)\n- JonDo (https://anonymous-proxy-servers.net)\n- Proxify (https://proxify.com)\n- Guardster (http://www.guardster.com)\n- Global Proxy Network (https://infatica.io)\n- Anonym8 (https://github.com)\n- ProxySite (https://www.proxysite.com)\n- ProxyCap (https://www.proxycap.com)\n- CCProxy (https://www.youngzsoft.net)\n- Fiddler (https://www.telerik.com)\n- BlackArch Proxy (https://blackarch.org)\n- Artica Proxy (https://artica-proxy.com)\n\n\n# SIEM Solutions:\n- Splunk Enterprise https://www.splunk.com\n- ArcSight ESM (https://www.microfocus.com)\n- IBM Qradar SIEM (https://www.ibm.com)\n- AlienVault OSSIM (https://cybersecurity.att.com)\n- FortiSIEM (https://www.fortinet.com)\n- SolarWinds Security Event Manager (SEM) (https://www.solarwinds.com)\n\n# Digital Evidence\n- Federal Rules of Evidence (United States) https://www.rulesofevidence.org\n- Scientific Working Group on Digital Evidence (SWGDE) https://www.swgde.org\n- The Association of Chief Police Officers (ACPO) Principles of Digital Evidence https://www.college.police.uk\n\n\n\n# UBA Tools (User Behavior Analytics)\n- Exabeam Advanced Analytics (https://www.exabeam.com)\n- LogRhythm UEBA (https://logrhythm.com)\n- Dtex Systems (https://dtexsystems.com)\n- Gurucul Risk Analytics (GRA) (https://gurucul.com)\n- Securonix UEBA (https://www.securonix.com)\n\n\n# Anti-Trojan Software\n- Kaspersky Internet Security https://www.kaspersky.com\n- McAfee® LiveSafe™ (https://www.mcafee.com)\n- Bitdefender Total Security (https://bitdefender.com)\n- HitmanPro (https://www.hitmanpro.com)\n- Malwarebytes (https://www.malwarebytes.org)\n- Zemana Antimalware (https://www.zemana.com)\n\n# Antivirus Software\n- Bitdefender Antivirus Plus https://www.bitdefender.com\n- ClamWin (http://www.clamwin.com)\n- Kaspersky Anti-Virus (https://www.kaspersky.com)\n- McAfee Total Protection (https://www.mcafee.com)\n- Avast Premier Antivirus (https://www.avast.com)\n- ESET Internet Security (https://www.eset.com)\n\n\n# Common Virtualization Vendors\n- VMware ESXi https:/www.vmware.com\n- Citrix Hypervisor https://www.citrix.com\n- Virtual Iron https://www.oracle.com\n- Microsoft Hyper-V Server https://www.microsoft.com\n- VirtualBox https://www.virtualbox.org\n\n# Docker Security Tools\n- Docker Bench for Security https://github.com\n- Twistlock (https://github.com)\n- Aqua (https://www.aquasec.com)\n- Anchore (https://anchore.com)\n- NeuVector (https://neuvector.com)\n- CloudPassage Halo (https://www.cloudpassage.com)\n\n# Cloud Service Providers\n- Amazon Web Service (AWS) https://aws.amazon.com\n- Microsoft Azure https://azure.microsoft.com\n- Google Cloud Platform (GCP) https://cloud.google.com\n- IBM Cloud https://www.ibm.com\n\n# Cloud Security Tools\n- Qualys Cloud Platform https://www.qualys.com\n- CloudPassage Halo (https://www.cloudpassage.com)\n- McAfee MVISION Cloud (https://www.mcafee.com)\n- CipherCloud (https://www.ciphercloud.com)\n- Netskope Security Cloud (https://www.netskope.com)\n- Prisma Cloud (https://www.paloaltonetworks.com)\n\n\n# Cloud Attack Tools\n- Nimbostratus https://andresriancho.github.io\n- S3Scanner https://github.com\n- Cloud Container Attack Tool (CCAT) https://github.com\n- Pacu https://github.com\n- DumpsterDiver https://github.com\n- GCPBucketBrute https://rhinosecuritylabs.com\n\n\n\n# Container Management Platforms\n- Docker https://www.docker.com \n- Amazon Elastic Container Service (ECS) (https://aws.amazon.com)\n- Microsoft Azure Container Instances (ACI) (https://azure.microsoft.com)\n- Red Hat OpenShift Container Platform (https://www.openshift.com)\n- Portainer (https://www.portainer.io)\n- HPE Ezmeral Container Platform (https://www.hpe.com)\n\n# Kubernetes Platforms\n- Kubernetes https://kubernetes.io \n- Amazon Elastic Kubernetes Service (EKS) (https://aws.amazon.com)\n- Docker Kubernetes Service (DKS) (https://www.docker.com)\n- Knative (https://cloud.google.com)\n- IBM Cloud Kubernetes Service (https://www.ibm.com)\n- Google Kubernetes Engine (GKE) (https://cloud.google.com)\n\n\n\n\n\n\n# Wireless Security Tools\n- Cisco Adaptive Wireless IPS https://www.cisco.com\n- AirMagnet WiFi Analyzer PRO (https://www.netally.com)\n- RFProtect (https://www.arubanetworks.com)\n- Fern Wifi Cracker (https://github.com)\n- OSWA-Assistant (http://securitystartshere.org)\n- BoopSuite (https://github.com)\n\n\n# Mobile Security Management Solutions\n\n## Mobile Device Management Solutions\n- Miradore https://www.miradore.com\n- AirWatch (https://www.vmware.com)\n- Microsoft Intune (https://www.microsoft.com)\n- IBM MaaS360 (https://www.ibm.com)\n- XenMobile (https://www.citrix.com)\n- Absolute Manage MDM (http://www.absolute.com)\n\n### Examples of Mobile Application Management (MAM)\n- Microsoft Intune https://www.microsoft.com\n- AppStation's MAM (https://www.mobileiron.com)\n- Scalefusion Application Management (https://scalefusion.com)\n- ManageEngine Mobile Device Manager Plus (https://www.manageengine.com)\n- Apriorit Enterprise Mobile Device and Application Management (https://www.apriorit.com)\n- Appaloosa (https://www.appaloosa.io)\n\n## Mobile Content Management Solutions\n- Vaultize (https://www.vaultize.com)\n- MobileIron (https://www.mobileiron.com)\n- AppTec360° (https://www.apptec360.com)\n\n## Mobile Threat Defense Solutions\n- MobileIron Threat Defense (MTD) (https://www.mobileiron.com)\n- Pradeo Security Mobile Threat Defense (https://www.pradeo.com)\n- Zimperium Mobile Threat Defense (MTD) (https://www.zimperium.com)\n- Wandera Mobile Threat Defense (https://www.wandera.com)\n- Lookout MTD (https://www.lookout.com)\n\n## Mobile Email Management Solutions\n- 42Gears MEM (https://www.42gears.com)\n- Hexnode Mobile Email Management (https://www.hexnode.com)\n- Mimecast Mobile Email Management (https://www.mimecast.com)\n\n## Enterprise Mobility Management Solutions\n- ManageEngine Mobile Device Manager Plus (https://www.manageengine.com)\n- 42Gears Enterprise Mobility Management (EMM) (https://www.42gears.com)\n- Scalefusion EMM (https://scalefusion.com)\n- IBM Security MaaS360® (https://www.ibm.com)\n- Zebra Enterprise Mobility Management (EMM) Tool Kit (https://www.zebra.com)\n\n## Unified Endpoint Management Solutions\n- Mobileiron UEM (https://www.mobileiron.com)\n- Ivanti Unified Endpoint Manager (https://www.ivanti.com)\n- Workspace ONE UEM (https://www.vmware.com)\n- ManageEngine Desktop Central (https://www.manageengine.com)\n- 42Gears UEM (https://www.42gears.com)\n\n\n# Mobile Security Tools\n- Malwarebytes Security https://play.google.com \n- Lookout Personal (https://www.lookout.com)\n- Zimperium’s zIPS (https://www.zimperium.com)\n- BullGuard Mobile Security (https://www.bullguard.com)\n- Norton Security for iOS (https://us.norton.com)\n- Comodo Mobile Security (https://m.comodo.com)\n\n\n# Android Hacking Tools\n- zANTI https://www.zimperium.com An Android app that allows you to perform attacks, such as spoof MAC address, creating a malicious Wi-Fi hotspot, and hijack session\n- Network Spoofer (https://www.digitalsquid.co.uk)\n- Low Orbit Ion Cannon (LOIC) (https://droidinformer.org)\n- DroidSheep (https://droidsheep.info)\n- Orbot Proxy (https://guardianproject.info)\n- PhoneSploit (https://github.com)\n\n# Android Security Tools\n- Kaspersky Internet Security for Android https://my.kaspersky.com\n- Avira Antivirus Security (https://www.avira.com)\n- Avast Mobile Security (https://www.avast.com)\n- McAfee Mobile Security (https://www.mcafeemobilesecurity.com)\n- Lookout Mobile Security and Antivirus (https://www.lookout.com)\n- Sophos Mobile Security (https://www.sophos.com)\n\n\n\n# iOS Hacking Tools\n- Elcomsoft Phone Breaker https://www.elcomsoft.com \n- Fing - Network Scanner (https://apps.apple.com)\n- Network Analyzer Master (https://apps.apple.com)\n- Spyic (https://spyic.com)\n- iWepPRO (https://apps.apple.com)\n- Frida (https://www.frida.re)\n\n# iOS Device Security Tools\n- Avira Mobile Security Source: https://www.avira.com\n- Norton Mobile Security (https://us.norton.com)\n- LastPass Password Manager (https://www.lastpass.com)\n- Lookout Mobile Security (https://www.lookout.com)\n- SplashID Safe Password Manager (https://www.splashid.com)\n- Webroot Mobile Security (https://www.webroot.com)\n\n\n\n\n# IoT Attack Tools\n- Firmalyzer https://firmalyzer.com \n- RIoT Vulnerability Scanner https://www.beyondtrust.com\n- Foren6 https://cetic.github.io\n- IoT Inspector https://www.iot-inspector.com\n- RFCrack https://github.com\n- HackRF One https://greatscottgadgets.com\n\n# IoT Device Management Solutions\n- Azure IoT Central https://azure.microsoft.com\n- Oracle IoT Asset Monitoring Cloud (https://www.oracle.com)\n- Predix (https://www.ge.com)\n- Cloud IoT Core (https://cloud.google.com)\n- IBM Watson IoT Platform (https://www.ibm.com)\n- AT\u0026T IoT Connectivity Management (https://www.business.att.com)\n\n# IoT Security Tools\n- Bevywise IoT Simulator https://www.bevywise.com\n- SeaCat.io (https://teskalabs.com)\n- DigiCert IoT Security Solutions (https://www.digicert.com)\n- FortiNAC (https://www.fortinet.com)\n- Darktrace (https://www.darktrace.com)\n- Cisco IoT Threat Defense (https://www.cisco.com)\n- Symantec Critical System Protection (https://www.symantec.com)\n\n\n\n# OT Attack Tools\n- ICS Exploitation Framework (ISF) https://github.com \n- SCADA Shutdown Tool https://github.com\n- GRASSMARLIN https://github.com\n- Metasploit https://www.metasploit.com\n- modbus-cli https://github.com\n- PLCinject https://github.com\n\n# OT Security Tools\n- Flowmon https://www.flowmon.com Flowmon empowers manufacturers and utility companies to ensure the reliability of their industrial networks to avoid downtime and disruption of service continuity\n- tenable.ot https://www.tenable.com\n- Forescout https://www.forescout.com\n- PA-220R https://www.paloaltonetworks.com\n- Fortinet ICS/SCADA solution https://www.fortinet.com\n- Nozomi Networks Guardian https://www.nozominetworks.com\n\n\n\n\n# MD5 and MD6 Hash Calculators\n- MD5 Calculator https://www.bullzip.com\n- HashMyFiles https://www.nirsoft.net\n- MD6 Hash Generator (https://www.browserling.com)\n- All Hash Generator (https://www.browserling.com)\n- MD6 Hash Generator (https://convert-tool.com)\n- md5 hash generator (https://onlinehashtools.com)\n- HashCalc (https://www.slavasoft.com)\n- FastSum https://www.fastsum.com\n- WinMD5 https://www.winmd5.com\n\n\n\n## Hash Calculators for Mobile\n- Hash Tools https://play.google.com\n- Hash Droid https://play.google.com\n- Hash Checker (https://play.google.com)\n- Hashr Hash \u0026 Checksum Calculator (https://play.google.com)\n- Hash Calc (https://play.google.com)\n- Hash Generator Checksum Calculator (https://play.google.com)\n- Hash Smart Checker (https://play.google.com)\n\n# Cryptography Tools\n- BCTextEncoder https://www.jetico.com\n- AxCrypt (https://axcrypt.net)\n- Microsoft Cryptography Tools (https://docs.microsoft.com)\n- Concealer (https://www.belightsoft.com)\n- CryptoForge (https://www.cryptoforge.com)\n- Cyphertop (https://cyphertop.com)\n\n\n# Certification Authorities\n- Comodo https://www.comodoca.com\n- IdenTrust https://www.identrust.com\n- DigiCert CertCentral https://www.digicert.com\n- GoDaddy https://www.godaddy.com\n\n\n\n# Disk Encryption Tools\n- VeraCrypt https://www.veracrypt.fr\n- BitLocker Drive Encryption (https://docs.microsoft.com)\n- FinalCrypt (https://www.finalcrypt.org)\n- Seqrite Encryption Manager (https://www.seqrite.com)\n- FileVault (https://support.apple.com)\n- Gilisoft Full Disk Encryption (http://www.gilisoft.com)\n\n\n# File Encryption Tools\n- Advanced Encryption Package http://www.aeppro.com\n- AxCrypt (https://www.axcrypt.net)\n- idoo File Encryption (https://www.idooencryption.com)\n- Cryptomator (https://cryptomator.org)\n- Encrypto (https://macpaw.com)\n- AES Crypt (https://www.aescrypt.com)\n\n\n# Removable Media Encryption Tools\n- GiliSoft USB Encryption http://www.gilisoft.com\n- idoo USB Encryption (https://www.idooencryption.com)\n- Kakasoft USB Security (https://www.kakasoft.com)\n- Rohos Mini Drive (https://www.rohos.com)\n- McAfee File \u0026 Removable Media Protection (https://www.mcafee.com)\n- MFG’s Removable Media Encryption (https://www.managedencryption.co.uk)\n\n\n# Steganography Detection Tools\n- OpenStego https://www.openstego.com\n- StegSpy http://www.spy-hunter.com\n\n# Anti-forensics Tools\n- Steganography Studio (http://stegstudio.sourceforge.net)\n- CryptaPix (https://www.briggsoft.com)\n- GiliSoft File Lock Pro (http://gilisoft.com)\n- wbStego (https://wbstego.wbailer.com)\n- Data Stash (https://www.skyjuicesoftware.com)\n- OmniHide PRO (https://omnihide.com)\n- Masker (http://softpuls.weebly.com)\n- DeepSound (http://jpinsoft.net)\n- DBAN (https://dban.org)\n- east-tec InvisibleSecrets (https://www.east-tec.com)\n\n# Collecting Open Files: Using NetworkOpenedFiles\n- NetworkOpenedFiles https://www.nirsoft.net\n\n# Process Memory\n- Process Dumper https://github.com\n\n# Network Status\n- PromiscDetect tool https://vidstromlabs.com\n\n# Examining .edb File Using ESEDatabaseView\n- ESEDatabaseView https://www.nirsoft.net\n\n# Detecting Externally Connected Devices to the System\n- DriveLetterView https://www.nirsoft.net\n\n# Memory Forensics: Malware Analysis \n- Redline https://www.fireeye.com\n\n# Cache, Cookie, and History Recorded in Web Browsers\n## Cache, Cookie, and History Analysis: Google Chrome\n- ChromeCacheView https://www.nirsoft.net\n- ChromeCookiesView https://www.nirsoft.net\n- ChromeHistoryView https://www.nirsoft.net\n- MZCacheView (https://www.nirsoft.net) \n- MZCookiesView (https://www.nirsoft.net) \n- MZHistoryView (https://www.nirsoft.net)\n\n## Cache, Cookie, and History Analysis: Microsoft Edge\n- IECacheView (https://www.nirsoft.net)\n- EdgeCookiesView (https://www.nirsoft.net)\n- BrowsingHistoryView (https://www.nirsoft.net)\n\n# Metadata Analysis Tool:\n- Metashield Analyzer https://www.elevenpaths.com\n\n# Memory Dumps\n- Volatility Framework https://volatilityfoundation.org/\n- PhotoRec Tool https://www.cgsecurity.org\n\n# Mac Forensics Tools\n- OS X Auditor (https://github.com)\n- Recon Imager (https://sumuri.com)\n- Memoryze for the Mac (https://www.fireeye.com)\n- Stellar Data Recovery Professional for Mac (https://www.stellarinfo.com)\n- F-Response (https://www.f-response.com)\n- volafox (https://github.com)\n- Volatility (https://www.volatilityfoundation.org)\n- mac_apt macOS (and iOS) Artifact Parsing Tool (https://github.com)\n\n\n# Thunderbird Local Email Files\n- SysTools Mailpro+ https://www.systoolsgroup.com\n\n# Email Headers: Checking Email Authenticity\n- Email Dossier https://centralops.net\n- Email Address Verifier https://tools.verifyemailaddress.io\n- Email Checker https://email-checker.net\n- G-Lock Software Email Verifier https://www.glocksoft.com\n\n# Recovering Deleted Email Messages\n- Paraben's Electronic Evidence Examiner https://paraben.com\n\n# Malware Analysis\n- Malware Analysis Challenges https://www.hhs.gov\n- VirusTotal https://www.virustotal.com\n\n## Tools for Malware Analysis\n### Hypervisors\n- Virtual Box (https://www.virtualbox.org)\n- Parallels Desktop (https://www.parallels.com)\n- VMware vSphere Hypervisor (https://www.vmware.com)\n\n### Network and Internet Simulation Tools\n- NetSim (https://www.tetcos.com)\n- ns-3 (https://www.nsnam.org)\n- Riverbed Modeler (https://www.riverbed.com)\n- QualNet (https://www.scalable-networks.com)\n\n### Screen Capture and Recording Tools\n- Snagit (https://www.techsmith.com)\n- Camtasia (https://www.techsmith.com)\n- Ezvid (https://www.ezvid.com)\n\n### OS Backup and Imaging Tools\n- Genie Backup Manager Pro (https://www.zoolz.com)\n- Macrium Reflect Server (https://www.macrium.com)\n- R-Drive Image (https://www.drive-image.com)\n- O\u0026O DiskImage (https://www.oo-software.com)\n\n\n## Static Malware Analysis\n### Identifying Packing/Obfuscation Methods\n- PEiD https://github.com\n\n### Finding the Portable Executables (PE) Information\n- Pestudio https://www.winitor.com\n\n### Identifying File Dependencies\n- Dependency Walker https://www.dependencywalker.com\n\n### Malware Disassembly\n- OllyDbg http://www.ollydbg.de\n\n\n## Dynamic Malware Analysis\n\n### Monitoring Host Integrity\n- WhatChanged Portable https://portableapps.com\n\n\n# Windows AutoStart Registry Keys\n- RegRipper https://github.com\n\n# System Behavior Analysis\n\n## Monitoring Windows Services\n- Windows Service Manager (SrvMan) https://sysprogs.com\n\n## Monitoring API Calls\nAPI Monitor http://www.rohitab.com\n\n## Device Driver Monitoring Tool\n- DriverView https://www.nirsoft.net\n\n## Monitoring Files and Folders\n- Tripwire Enterprise https://www.tripwire.com\n- PA File Sight https://www.poweradmin.com\n\n\n\n\n\n\n# Data Backup Tools\n- Genie Backup Manager Pro (https://www.zoolz.com)\n- BullGuard Backup (https://www.bullguard.com)\n- NTI Backup Now EZ (https://www.nticorp.com)\n- Power2Go 13 (https://www.cyberlink.com)\n- Backup4all (https://www.backup4all.com)\n\n\n\n# Data Recovery Tools\n- EaseUS Data Recovery Wizard https://www.easeus.com\n- Recuva (https://www.ccleaner.com)\n- Puran File Recovery (http://www.puransoftware.com)\n- Glary Undelete (https://www.glarysoft.com)\n- SoftPerfect File Recovery (https://www.softperfect.com)\n- Wise Data Recovery (https://www.wisecleaner.com)\n- WinHex https://x-ways.net\n- Recover My Files https://getdata.com\n- DiskDigger https://diskdigger.org\n- Handy Recovery https://www.handyrecovery.com\n- Quick Recovery https://www.recoveryourdata.com\n- Stellar Phoenix Windows Data Recovery https://www.stellarinfo.com\n\n\n# Password Cracking Tools\n- Passware Kit Forensic https://www.passware.com\n- L0phtCrack https://www.l0phtcrack.com\n- ophcrack https://ophcrack.sourceforge.io\n- Cain \u0026 Abel https://www.oxid.it\n- RainbowCrack https://project-rainbowcrack.com\n- Offline NT Password \u0026 Registry Editor https://pogostick.net\n- John the Ripper https://www.openwall.com\n- hashcat https://hashcat.net\n- THC-Hydra https://github.com\n- Medusa http://foofus.net\n\n\n# Default Passwords\n- https://open-sez.me\n- https://www.fortypoundhead.com\n- https://cirt.net\n- http://www.defaultpassword.us\n- https://www.routerpasswords.com\n- https://default-password.info\n- https://www.defpass.com\n\n\n\n\n# DLP Solutions (Data Loss Prevention)\n- MyDLP https://mydlp.com\n- Symantec Data Loss Prevention (https://www.symantec.com)\n- SecureTrust Data Loss Prevention (https://www.securetrust.com)\n- McAfee Total Protection (https://www.mcafee.com)\n- Check Point Data Loss Prevention (https://www.checkpoint.com)\n- Digital Guardian Endpoint DLP (https://digitalguardian.com)\n\n\n\n# Acquire Volatile Data from a Windows Machine\n- Belkasoft Live RAM Capturer https://belkasoft.com\n- Bulk Extractor https://digitalcorpora.org\n\n# Acquire Non-volatile Data (Using a Windows Forensic Workstation)\n- AccessData FTK Imager https://accessdata.com\n\n\n\n\n\n\n# Phishing Tools\n- Examples of Phishing Emails https://its.tntech.edu\n- ShellPhish https://github.com\n- BLACKEYE https://github.com\n- PhishX https://github.com\n- Modlishka https://github.com\n- Trape https://github.com\n- Evilginx https://github.com\n\n# Anti-Phishing Toolbar\n- Netcraft https://www.netcraft.com\n- PhishTank https://www.phishtank.com\n\n# Social Engineering Tools:\n- Social Engineering Toolkit (SET) https://www.trustedsec.com\n- SpeedPhish Framework (SPF) (https://github.com)\n- Gophish (https://getgophish.com)\n- King Phisher (https://github.com)\n- LUCY (https://www.lucysecurity.com)\n- MSI Simple Phish (https://microsolved.com)\n\n# Audit Organization's Security for Phishing Attacks \n- OhPhish https://ohphish.eccouncil.org\n\n\n\n\n\n# Sniffing Techniques\n## MAC flooding\n- Mac Flooding Switches with macof https://www.monkey.org\n## ARP Poisoning Tools\n- arpspoof https://linux.die.net\n- BetterCAP (https://www.bettercap.org)\n- Ettercap (http://www.ettercap-project.org)\n- dsniff (https://www.monkey.org)\n- MITMf (https://github.com)\n- Arpoison (https://sourceforge.net)\n\n\n# DoS/DDoS Attack Tools\n- High Orbit Ion Cannon (HOIC) https://sourceforge.net\n- Low Orbit Ion Cannon (LOIC) https://sourceforge.net\n- XOIC (http://anonhacktivism.blogspot.com)\n- HULK (https://siberianlaika.ru)\n- Tor’s Hammer (https://sourceforge.net)\n- Slowloris (https://github.com)\n- PyLoris (https://sourceforge.net)\n- R-U-Dead-Yet (https://sourceforge.net)\n\n# DoS/DDoS Protection Tools\n- Anti DDoS Guardian http://www.beethink.com\n- Imperva DDoS Protection (https://www.imperva.com)\n- DOSarrest’s DDoS protection service (https://www.dosarrest.com)\n- DDoS-GUARD (https://ddos-guard.net)\n- Cloudflare (https://www.cloudflare.com)\n- F5 (https://f5.com)\n\n# Session Hijacking Tools\n- OWASP ZAP https://owasp.org\n- Burp Suite (https://portswigger.net)\n- bettercap (https://www.bettercap.org)\n- netool toolkit (https://sourceforge.net)\n- WebSploit Framework (https://sourceforge.net)\n- sslstrip (https://pypi.org)\n\n# Session Hijacking Detection Tools\n- Wireshark https://www.wireshark.org\n- USM Anywhere (https://cybersecurity.att.com)\n- Check Point IPS (https://www.checkpoint.com)\n- LogRhythm (https://logrhythm.com)\n- SolarWinds Security Event Manager (SEM) (https://www.solarwinds.com)\n- IBM Security Network Intrusion Prevention System (https://www.ibm.com)\n\n# Web Server Attack Tools\n- Metasploit https://www.metasploit.com\n- Immunity’s CANVAS (https://www.immunityinc.com)\n- THC Hydra (https://github.com)\n- HULK DoS (https://github.com)\n- MPack (https://sourceforge.net)\n- w3af (https://w3af.org)\n\n# Web Server Security Tools\n- Fortify WebInspect Source: https://www.microfocus.com\n- Acunetix Web Vulnerability Scanner (https://www.acunetix.com)\n- Retina Host Security Scanner (https://www.beyondtrust.com)\n- NetIQ Secure Configuration Manager (https://www.netiq.com)\n- SAINT Security Suite (https://www.carson-saint.com)\n- Sophos Intercept X for Server (https://www.sophos.com)\n\n# Web Application Attack Tools\n- Burp Suite https://portswigger.net\n- OWASP Zed Attack Proxy (ZAP) https://www.owasp.org\n- Metasploit (https://www.metasploit.com)\n- w3af (http://w3af.org)\n- Nikto (https://cirt.net)\n- Sn1per (https://github.com)\n- WSSiP (https://github.com)\n\n# Web Application Security Testing Tools\n- N-Stalker Web App Security Scanner https://www.nstalker.com\n- Acunetix WVS (https://www.acunetix.com)\n- Browser Exploitation Framework (BeEF) (http://beefproject.com)\n- Metasploit (https://www.metasploit.com)\n- PowerSploit (https://github.com)\n- Watcher (https://www.casaba.com)\n\n\n# SQL Injection Tools\n- sqlmap http://sqlmap.org\n- Mole (https://sourceforge.net)\n- Blisqy (https://github.com)\n- blind-sql-bitshifting (https://github.com)\n- NoSQLMap (https://github.com)\n- SQL Power Injector (http://www.sqlpowerinjector.com)\n\n# SQL Injection Detection Tools\n- Damn Small SQLi Scanner (DSSS) https://github.com\n- OWASP ZAP (https://www.owasp.org)\n- Snort (https://www.snort.org)\n- Burp Suite (https://portswigger.net)\n- HCL AppScan (https://www.hcltech.com)\n- w3af (https://w3af.org)\n\n\n# Wireless Attack Tools\n- Aircrack-ng Suite: http://www.aircrack-ng.org\n- AirMagnet WiFi Analyzer PRO https://www.netally.com \n- Ettercap https://www.ettercap-project.org\n- Wifiphisher https://wifiphisher.org\n- Reaver https://github.com\n- Fern Wifi Cracker https://github.com\n- Elcomsoft Wireless Security Auditor https://www.elcomsoft.com\n\n\n# Wireless Security Tools\n- Cisco Adaptive Wireless IPS https://www.cisco.com \n- AirMagnet WiFi Analyzer PRO (https://www.netally.com)\n- RFProtect (https://www.arubanetworks.com)\n- WatchGuard WIPS (https://www.watchguard.com)\n- AirMagnet Planner (https://www.netally.com)\n- Extreme AirDefense (https://www.extremenetworks.com)\n\n\n# Bluetooth Attack Tools\n- BluetoothView https://www.nirsoft.net \n- BlueZ (http://www.bluez.org)\n- BtleJack (https://github.com)\n- BTCrawler (http://petronius.sourceforge.net)\n- BlueScan (http://bluescanner.sourceforge.net)\n- Bluetooth Scanner btCrawler (https://play.google.com)\n\n\n\n\n# Reconnaissance Tools\n- Web Data Extractor http://www.webextractor.com\n- Whois Lookup https://whois.domaintools.com\n- Tamos https://www.tamos.com\n\n# Scanning Tools\n- Nmap https://nmap.org\n- MegaPing http://www.magnetosoft.com\n- Unicornscan https://www.kali.org/tools/unicornscan/\n- Hping2/Hping3 http://www.hping.org\n- NetScanTools Pro https://www.netscantools.com\n- SolarWinds Port Scanner https://www.solarwinds.com\n- PRTG Network Monitor https://www.paessler.com\n- OmniPeek Network Protocol Analyzer https://www.liveaction.com\n\n\n# Enumeration Tools\n- Nbtstat Utility https://docs.microsoft.com \n\t- nbtstat [-a RemoteName] [-A IP Address] [-c] [-n] [-r] [-R] [-RR] [-s] [-S] [Interval]\n- NetBIOS Enumerator http://nbtenum.sourceforge.net\n\n## NetBIOS Enumeration Tools:\n- Global Network Inventory http://www.magnetosoft.com\n- Advanced IP Scanner https://www.advancedip-scanner.com\n- Hyena https://www.systemtools.com\n- Nsauditor Network Security Auditor https://www.nsauditor.com\n\n\n\n\n# Vulnerability Scoring Systems and Databases\n- Common Vulnerability Scoring System (CVSS) https://www.first.org \n- Common Vulnerabilities and Exposures (CVE) https://cve.mitre.org\n- National Vulnerability Database (NVD) https://nvd.nist.gov\n- Common Weakness Enumeration (CWE) https://cwe.mitre.org\n\n# Vulnerability Assessment Tools\n- Qualys Vulnerability Management https://www.qualys.com\n- OpenVAS https://www.openvas.org\n- GFI LanGuard https://www.gfi.com\n- Nessus Professional https://www.tenable.com\n- Nikto https://cirt.net\n- Qualys FreeScan https://freescan.qualys.com\n- Acunetix Web Vulnerability Scanner https://www.acunetix.com\n- Nexpose https://www.rapid7.com\n- Network Security Scanner https://www.beyondtrust.com\n- SAINT Security Suite https://www.carson-saint.com\n- beSECURE (AVDS) https://www.beyondsecurity.com\n- Core Impact https://www.coresecurity.com\n- N-Stalker Web Application Security Scanner https://www.nstalker.com\n\n# Vulnerability Exploitation\n- Exploit-DB https://www.exploit-db.com \n- SecurityFocus https://www.securityfocus.com\n\n## Vulnerability Research\n- Microsoft Vulnerability Research (MSVR) (https://www.microsoft.com)\n- Dark Reading (https://www.darkreading.com)\n- SecurityTracker (https://securitytracker.com)\n- Trend Micro (https://www.trendmicro.com)\n- Security Magazine (https://www.securitymagazine.com)\n- PenTest Magazine (https://pentestmag.com)\n- SC Magazine (https://www.scmagazine.com)\n- Help Net Security (https://www.helpnetsecurity.com)\n- HackerStorm (http://www.hackerstorm.co.uk)\n- Computerworld (https://www.computerworld.com)\n- WindowsSecurity (http://www.windowsecurity.com)\n- D’Crypt (https://www.d-crypt.com)\n\n\n\n\n\n# Network Sniffers for Network Monitoring\n- Wireshark https://www.wireshark.org https://wiki.wireshark.org\n- tcpdump https://www.tcpdump.org\n- Riverbed Packet Analyzer Plus (https://www.riverbed.com)\n- OmniPeek (https://www.liveaction.com)\n- Observer Analyzer (https://www.viavisolutions.com)\n- SolarWinds Deep Packet Inspection and Analysis (https://www.solarwinds.com)\n- Xplico (https://www.xplico.org)\n- SteelCentral Packet Analyzer https://www.riverbed.com\n\n# Network Monitoring Tools\n- PRTG Network Monitor https://www.paessler.com\n- SolarWinds Network Performance Monitor (https://www.solarwinds.com)\n- ManageEngine OpManager (https://www.manageengine.com)\n- Capsa Free Network Analyzer (https://www.colasoft.com)\n- Monitis Network Monitoring Solution (https://www.monitis.com)\n- Nagios Network Analyzer (https://www.nagios.com)\n\n\n\n\n\n\n# Regulatory Frameworks\n- Payment Card Industry Data Security Standard (PCI DSS) https://www.pcisecuritystandards.org\n- Health Insurance Portability and Accountability Act (HIPAA) https://www.hhs.gov\n- Sarbanes Oxley Act (SOX) https://www.sec.gov\n- Gramm-Leach-Bliley Act (GLBA) https://www.ftc.gov\n- General Data Protection Regulation (GDPR) https://gdpr.eu\n- Data Protection Act 2018 (DPA) https://www.legislation.gov.uk\n- ISO Information Security Standards https://www.iso27001security.com\n- The Digital Millennium Copyright Act (DMCA) https://www.copyright.gov\n- The Federal Information Security Management Act (FISMA) https://csrc.nist.gov\n- The Electronic Communications Privacy Act https://it.ojp.gov\n\n\n\n# Tools\n- http://www.metasploit.com/ – World’s most used penetration testing software\n- http://www.arachni-scanner.com/ – Web Application Penetration Testing Scanner Framework\n- https://github.com/sullo/nikto – Nikto web server scanner\n- http://www.tenable.com/products/nessus-vulnerability-scanner – Nessus Vulnerability Scanner\n- http://www.portswigger.net/burp/intruder.html – Burp Intruder is a Web Application Penetration Testing Tools for automating customized attacks against web apps.\n- http://www.openvas.org/ – The world’s most advanced Open Source vulnerability scanner and manager.\n- https://github.com/iSECPartners/Scout2 – Security auditing tool for AWS environments\n- https://www.owasp.org/index.php/Category:OWASP_DirBuster_Project – Is a multi threaded java application designed to brute force directories and files names on web/application servers.\n- https://www.owasp.org/index.php/ZAP – The Zed Attack Proxy is an easy-to-use integrated penetration testing tool for finding vulnerabilities in web applications.\n- https://github.com/tecknicaltom/dsniff – dsniff is a collection of tools for network auditing and penetration testing.   \n- https://github.com/WangYihang/Webshell-Sniper – Manage your web shell via terminal.   \n- https://github.com/DanMcInerney/dnsspoof – DNS spoofer. Drops DNS responses from the router and replaces it with the spoofed DNS response\n- https://github.com/trustedsec/social-engineer-toolkit – The Social-Engineer Toolkit (SET) repository from TrustedSec\n- https://github.com/sqlmapproject/sqlmap – Automatic SQL injection and database takeover tool\n- https://github.com/beefproject/beef – The Browser Exploitation Framework Project\n- http://w3af.org/ – w3af is a Web Application Attack and Audit Framework\n- https://github.com/espreto/wpsploit – WPSploit, Exploiting WordPress With Metasploit   \n- https://github.com/WangYihang/Reverse-Shell-Manager – Reverse shell manager via terminal.   \n- https://github.com/RUB-NDS/WS-Attacker – WS-Attacker is a modular framework for web services penetration testing\n- https://github.com/wpscanteam/wpscan – WPScan is a black box WordPress vulnerability scanner\n- http://sourceforge.net/projects/paros/ Paros proxy\n- https://www.owasp.org/index.php/Category:OWASP_WebScarab_Project Web Scarab proxy\n- https://code.google.com/p/skipfish/ Skipfish, an active Web Application Penetration Testing reconnaissance tool\n- http://www.acunetix.com/vulnerability-scanner/ Acunetix Web Vulnerability Scanner\n- http://www-03.ibm.com/software/products/en/appscan IBM Security AppScan\n- https://www.netsparker.com/web-vulnerability-scanner/ Netsparker web vulnerability scanner\n- http://www8.hp.com/us/en/software-solutions/webinspect-dynamic-analysis-dast/index.html HP Web Inspect\n- https://github.com/sensepost/wikto Wikto – Nikto for Windows with some extra features\n- http://samurai.inguardians.com Samurai Web Testing Framework\n- https://code.google.com/p/ratproxy/ Ratproxy\n- http://www.websecurify.com Websecurify\n- http://sourceforge.net/projects/grendel/ Grendel-scan\n- https://www.owasp.org/index.php/Category:OWASP_DirBuster_Project DirBuster\n- http://www.edge-security.com/wfuzz.php Wfuzz\n- http://wapiti.sourceforge.net wapiti\n- https://github.com/neuroo/grabber Grabber\n- https://subgraph.com/vega/ Vega\n- http://websecuritytool.codeplex.com Watcher passive web scanner\n- http://xss.codeplex.com x5s XSS and Unicode transformations security testing assistant\n- http://www.beyondsecurity.com/avds AVDS Vulnerability Assessment and Management\n- http://www.golismero.com Golismero\n- http://www.ikare-monitoring.com IKare\n- http://www.nstalker.com N-Stalker X\n- https://www.rapid7.com/products/nexpose/index.jsp Nexpose\n- http://www.rapid7.com/products/appspider/ App Spider\n- http://www.milescan.com ParosPro\n- https://www.qualys.com/enterprises/qualysguard/web-application-scanning/ Qualys Web Application Scanning\n- http://www.beyondtrust.com/Products/RetinaNetworkSecurityScanner/ Retina\n- https://www.owasp.org/index.php/OWASP_Xenotix_XSS_Exploit_Framework Xenotix XSS Exploit Framework\n- https://github.com/future-architect/vuls Vulnerability scanner for Linux, agentless, written in golang.\n- https://github.com/rastating/wordpress-exploit-framework A Ruby framework for developing and using modules that aid in the penetration testing of WordPress-powered websites and systems.\n- http://www.xss-payloads.com/ XSS Payloads to leverage XSS vulnerabilities, build custom payloads, and practice penetration testing skills.\n- https://github.com/joaomatosf/jexboss JBoss (and others Java Deserialization Vulnerabilities) verify and EXploitation Tool\n- https://github.com/commixproject/commix Automated All-in-One OS command injection and exploitation tool\n- https://github.com/pathetiq/BurpSmartBuster A Burp Suite content discovery plugin that adds the smart into the Buster!\n- https://github.com/GoSecure/csp-auditor Burp and ZAP plugin to analyze CSP headers\n- https://github.com/ffleming/timing_attack Perform timing attacks against web applications\n- https://github.com/lalithr95/fuzzapi Fuzzapi is a tool used for REST API pentesting\n- https://github.com/owtf/owtf Offensive Web Testing Framework (OWTF)\n- https://github.com/nccgroup/wssip Application for capturing, modifying, and sending custom WebSocket data from client to server and vice versa.\n- https://github.com/tijme/angularjs-csti-scanner Automated client-side template injection (sandbox escape/bypass) detection for AngularJS (ACSTIS).\n\n\n\n# Port Checker \u0026 Port Scanner Tools\n- https://www.advanced-port-scanner.com/ Advanced Port Scanner\n- https://nmap.org/book/port-scanning-tutorial.html TCP with Nmap\n- https://www.ipvoid.com/ IPVOID\n- https://networkappers.com/ Network Tool\n- https://mxtoolbox.com/DNSLookup.aspx DNS Tools\n- https://hidemy.io/en/ Web Proxy and Privacy Tool\n- https://www.solarwinds.com/engineers-toolset/use-cases/open-port-scanner Solar Winds Port Scanner\n- https://www.whatismyip.com/ IP Tool\n- https://www.home.neustar/about-us/news-room/press-releases/2010/neustar-ultradns-unveils-free-ultratools-website UltraTools\n- https://www.yougetsignal.com/ Yougetsignal\n\n\n# Deep Web Search Engine List\n- https://pipl.com/ pipl\n- http://www.mylife.com/ MyLife\n- https://yippy.com/ Yippy\n- http://lookahead.surfwax.com/ Surfwax\n- https://archive.org/web/ Way Back Machine\n- https://scholar.google.com.ph/ Google Scholar\n- https://duckduckgo.com/ DuckDuckgo\n- https://fazzle.com/ Fazzle\n- http://hss3uro2hsxfogfq.onion not Evil\n- https://www.startpage.com/ Start Page\n- https://www.spokeo.com/ Spokeo\n\n\n\n\n\n\n# Cheat Sheets\n- http://n0p.net/penguicon/php_app_sec/mirror/xss.html – XSS cheatsheet\n- https://highon.coffee/blog/lfi-cheat-sheet/ – LFI Cheat Sheet\n- https://highon.coffee/blog/reverse-shell-cheat-sheet/ – Reverse Shell Cheat Sheet\n- https://www.netsparker.com/blog/web-security/sql-injection-cheat-sheet/ – SQL Injection Cheat Sheet\n- https://www.gracefulsecurity.com/path-traversal-cheat-sheet-windows/ – Path Traversal Cheat Sheet: Windows\n\n\n# Vulnerability Scanner Tools\n- https://www.manageengine.com/vulnerability-management/ OpenVAS Vulnerability Scanner\n- https://www.tripwire.com/products/tripwire-ip360 Tripwire IP360\n- https://intruder.io/?\u0026utm_source=gbhackers\u0026utm_medium=p_referral\u0026utm_campaign=global|fixed|vulnerability_scanner_tools Intruder vulnerability scanner\n- https://www.comodo.com/hackerproof/?track=8258 Comodo HackerProof\n- https://www.tenable.com/products/nessus Nessus Vulnerability Scanner\n- https://www.rapid7.com/products/nexpose/ Nexpose community\n- https://www.cirt.net/nikto2/ Nikto\n- https://www.wireshark.org/ Wireshark\n- https://www.aircrack-ng.org/ Aircrack-ng\n- https://retina234.rssing.com/chan-14983683/article50.html Retina network security scanner\n\n\n\n\n# Vulnerabilities\n- http://cve.mitre.org/ – Common Vulnerabilities and Exposures. The Standard for Information Security Vulnerability Names. Web Application Pentesting Tools.\n- https://www.exploit-db.com/ – The Exploit Database – the ultimate archive of Exploits, Shellcode, and Security Papers.\n- http://0day.today/ – Inj3ct0r is the ultimate database of exploits and vulnerabilities and a great resource for vulnerability researchers and security professionals.\n- http://osvdb.org/ – OSVDB’s goal is to provide accurate, detailed, current, and unbiased technical security information.\n- http://www.securityfocus.com/ – Since its inception in 1999, SecurityFocus has been a mainstay in the security community.\n- http://packetstormsecurity.com/ – Global Security Resource\n- https://wpvulndb.com/ – WPScan Vulnerability Database\n\n\n\n# Free Password Manager\n- https://my.norton.com/extspa/passwordmanager Norton Password Manager\n- https://www.lastpass.com/password-manager LastPass Password Manager\n- https://www.dashlane.com/ Dashlane Password Manager\n- https://www.zoho.com/vault/ Zoho Vault\n- https://www.stickypassword.com/ Sticky Password\n- https://www.splashid.com/best-password-manager SplashID Password Manager\n- https://keepass.info/ Keepass Password Manager\n- https://www.roboform.com/ RoboForm\n- https://logmeonce.com/ LogMeOnce Password Manager\n- https://www.enpass.io/ Enpass Password Manager\n\n\n\n# Unified Endpoint Management Tools\n- https://www.ivanti.com/products/endpoint-manager Ivanti Endpoint Management Software\n- https://www.sentinelone.com/platform/?utm_medium=paid-search\u0026utm_source=google-paid\u0026utm_campaign=apj-ind-en-g-s-brand\u0026utm_term=Sentinelone\u0026utm_campaignid=19538119170\u0026ad_id=644475838448\u0026gad_source=1\u0026gclid=CjwKCAiA3aeqBhBzEiwAxFiOBiAS_iTVzYZVM6tKK6F4EqsU4-lHptzubhNcBodiq-YVVK8feRJdahoCBKIQAvD_BwE SentinelOne\n- https://www.sophos.com/en-us/products/endpoint-antivirus?cmp=7014w000001sQT4AAM\u0026utm_source=Google\u0026utm_campaign=IndiaSearchV4%7cBrand%7cB-Endpointprotection\u0026utm_medium=cpc\u0026utm_id=01010\u0026utm_content=SM118385\u0026gad_source=1\u0026gclid=CjwKCAiA3aeqBhBzEiwAxFiOBv9NF84uu-ZVYakUW_exmBsqpHQtNHVl0l8BHY6NiUUAgWdu4bOtrxoCGLgQAvD_BwE\u0026gclsrc=aw.ds Sophos\n- https://www.manageengine.com/products/desktop-central/ EndPoint Central\n- https://learn.microsoft.com/en-us/mem/intune/fundamentals/what-is-intune Microsoft Intune\n- https://www.vmware.com/in/topics/glossary/content/unified-endpoint-management.html VMware\n- https://docs.citrix.com/en-us/citrix-endpoint-management/endpoint-management.html Citrix Systems\n- https://www.gendigital.com/us/en/ Gen Digital\n- https://www.bitdefender.com/business/solutions/endpoint-security.html Bitdefender\n- https://www.crowdstrike.com/cybersecurity-101/endpoint-security/endpoint-management/ CrowdStrike\n\n\n# SIEM Tools List 2024\n- https://www.splunk.com/en_us/download/splunk-cloud.html Splunk\n- https://www.ibm.com/account/reg/signup?formid=urx-30445 IBM Security QRadar\n- https://www.microfocus.com/cyberres/products?trial=true ArcSight\n- https://learn.microsoft.com/en-us/azure/sentinel/overview Microsoft Sentinel\n- https://chronicle.security/ Google Chronicle Security\n- https://cybersecurity.att.com/products/usm-anywhere/free-trial?utm_internal=sb_freetrial_modal OSSIM\n- https://www.ossec.net/ossec-downloads/ OSSEC\n- https://console.cloud.wazuh.com/sign-up?landing=trial Wazuh \n- https://metron.apache.org/documentation/#releases Apache Metron\n- https://aws.amazon.com/marketplace/pp/prodview-saajoeydschi2 SIEMonster \n- https://www.prelude-siem.org/projects/prelude/files Prelude SIEM\n- https://securityonionsolutions.com/ Security Onion\n- https://suricata.io/download/ Suricata\n\n\n\n# SSL\n- https://www.ssllabs.com/ssltest/index.html – This service performs a deep analysis of the configuration of any SSL web server on the public Internet.\n- https://raymii.org/s/tutorials/Strong_SSL_Security_On_nginx.html – Strong SSL Security on nginx\n- https://weakdh.org/ – Weak Diffie-Hellman and the Logjam Attack\n- https://letsencrypt.org/ – Let’s Encrypt is a new Certificate Authority: It’s free, automated, and open.\n- https://filippo.io/Heartbleed/ – A checker (site and tool) for CVE-2014-0160 (Heartbleed).\n\n# SSL Checker Tools\n- https://www.ssllabs.com/ssltest/ SSL Labs\n- https://www.immuniweb.com/ssl/ SSL Security Test\n- https://www.sslchecker.com/certdecoder SSL certificate Decoder\n- https://comodosslstore.com/ssltools/ssl-checker.php COMODO SSL Analyzer\n- https://certs.securetrust.com/support/support-certificate-analyzer.php Certificate Analyzer\n- https://www.digicert.com/help/ DigiCert SSL Checker\n- https://appsec-labs.com/ssl_analyzer/ AppSec SSL Analyzer\n- https://www.geocerts.com/ GocertsSSL\n- https://www.sslshopper.com/ SSLShopper\n\n\n\n# Security Ruby On Rails\n- http://brakemanscanner.org/ – A static analysis security vulnerability scanner and Web Application Security Tools for Ruby on Rails applications.\n- https://github.com/rubysec/ruby-advisory-db – A database of vulnerable Ruby Gems\n- https://github.com/rubysec/bundler-audit – Patch-level verification for Bundler\n- https://github.com/hakirisec/hakiri_toolbelt – Hakiri Toolbelt is a command line interface for the Hakiri platform.\n- https://hakiri.io/facets – Scan Gemfile.lock for vulnerabilities.\n- http://rails-sqli.org/ – This page lists many query methods and options in ActiveRecord that do not sanitize raw SQL arguments and are not intended to be called with unsafe user input.\n- https://github.com/0xsauby/yasuo – A ruby script that scans for vulnerable \u0026 exploitable 3rd-party web applications on a network\n\n\n\n# Linux Distros 2024\n- https://ubuntu.com/ Ubuntu\n- https://www.centos.org/ CentOS\n- https://www.debian.org/ Debian\n- https://linuxmint.com/ Linux Mint\n- https://archlinux.org/ Arch Linux\n- https://tails.net/ Tails\n- https://fedoraproject.org/ Fedora\n- https://elementary.io/ Elementary OS\n- https://www.kali.org/ Kali Linux\n- https://mxlinux.org/ MX Linux\n\n\n\n# Secure Messaging Apps 2024\n- https://play.google.com/store/apps/details?id=org.thoughtcrime.securesms\u0026hl=en_US Signal Private Messenger\n- https://play.google.com/store/apps/details?id=org.telegram.messenger\u0026hl=en\u0026gl=US Telegram\n- https://play.google.com/store/apps/details?id=com.wido.connected\u0026hl=en_IN\u0026gl=US Cyphr\n- https://play.google.com/store/apps/details?id=com.whatsapp\u0026hl=en\u0026gl=US WhatsApp\n- https://play.google.com/store/apps/details?id=pl.cisza\u0026hl=en_US Silence\n- https://play.google.com/store/apps/details?id=com.viber.voip\u0026hl=en\u0026gl=US Viber Messenger\n- https://apps.apple.com/us/app/messages/id1146560473 iMessage\n- https://play.google.com/store/apps/details?id=ch.threema.app\u0026hl=en\u0026gl=US Threema\n- https://play.google.com/store/apps/details?id=com.mywickr.wickr2\u0026hl=en\u0026gl=US Wickr Me\n- https://play.google.com/store/apps/details?id=com.silentcircle.silentphone\u0026hl=en\u0026gl=US Silent Phone\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Ftxuswashere%2Fcyber-sec-resources-tools","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Ftxuswashere%2Fcyber-sec-resources-tools","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Ftxuswashere%2Fcyber-sec-resources-tools/lists"}