Information Security Programs
This is a page of infosec related software. The listings were getting too long on the main website.
| Link | Description | Platform | Rating |
|---|---|---|---|
| faraday | Open source vuln management platform | linux | 4 |
| osv-scanner | better way of triaging vulns from google | linux | ? |
| caretta | Lets you visualize k8s dependency graphs | linux | 4 |
| bpfmon | A tcpdump co-tool that lets you see HOW MUCH with bpf packets. It graphs usage. | linux | 5 |
| ronin | Security toolkit written in ruby | linux | ? |
| chainguard | Software Supply chain security | various | ? |
| security-guard | Kubernetes knative host protector | varius | ? |
| MISP | lets you share threat intelligence | various | 4 |
| openziti | zero trust secure network and file sharing | various | 4 |
| zrok | uses above for file sharing securely p2p | various | 4 |
| rafis | European framework for evaluating risk | variou | ? |
| rafib | another risk evaluation ramework in php | various | |
| age | modern encyrptor replacement for gpg | various | 4 |
| sniffnet | network sniffer graphical | VARIOUS | 5 |
| zxcvbn | password strength estimator | various | 4 |
| kali purple | Pen testing suite | various | 5 |
| signway | lets you interpose 'mitm' proxying for api calls and gets around 'post' limitation. | ||
| logparser | uses ai to auto classify and enrich logfiles | various | 4 |
| lmtuner | ai llm tuner for large language models | various | ? |
| nsjail | lets you jail network processes on linux | linux | ? |
| ja4 Network printing | Lets you fingerprit with the new standard | linux | |
| keyleSSH | keyless ssh client via tide | linux | ? |
| docuseal | Lets you sign you own pdfs | linux | ? |
| apparmour howto | tells you how to use apparmour | linux | ? |
| netbox | network inventory source of truth | linux | ? |
| nmap formatter | Formats nmap output and pretty prints it | linux | ? |
| sqlite-schema-diagram | makes a graphical schema of a sqlite database | linux | 5 |
| tracecat | a hunting / splunk like framework | linux | ? |
| siglens | log sink 100x more efficient than splunk | linux | ? |
| fuzz testing | a newer way to fuzz test | linux | ? |
| how to sign a debian kernel 2023 | how to sign kernel images | linux | ? |
| bincapz | enumerate binary capabilties | linux | ? |
| pipexec | fancy pants pipe examples | linux | ? |
| openapi-tui | text user interface to explore openapi/swagger definitions | linux | ? |
| InspectreGadget | So much for 'confidential computing' | linux | 5 |
| bubblebox | Bubblejail Bubblebox create a secure container for your browser in linux | linux | 4 |
| paxtest | tests your system for various memory and stack vulnerabilities | linux | 5 |
| osv | mostly a search engine for vulnerabilities | really all of them | not a program! |
| yara-x | a vulnerabiltiy pattern match hickey written in rust. | linux | ? |
| flawz | tui for searching cve and flaws | linux | ? |
| sanctorum | REALLY weird vpn daemon which seems partially modeled after templeos | linux | ? |
| samltracer | a SAML debugger for when you absolutely, positively be there overnight. | various browsers | 5 |
| stepping stone | a record keeper for red teams | ? | |
| extensiontotal | tests the security of visual code studio plugins | 4 | |
| imhex | graphical reverse engineering tool | 4 | |
| age-plugins | interesting plugins for the age encryptor | 4 | |
| open sourced wafs | mostly wafs. | 5 | |
| sshamble | ssh attack research and development project | 4 | |
| narrowsh | restricted shell for ssh | linux | ? |
| binsider | elf binary dissector with tyi | linux | 5 |
| sslsplit | Lets you inspect tls traffic by cloning it and then decrypting | linux | 5 |
| polarproxy | same | linux | 5 |
| bpf keylogger | uses ebpf to log keystrokes | linux | 4 |