Tools

Troubleshooting and monitoring VoIP calls.

Infisical is the open-source platform for secrets, certificates, and privileged access management.

Tool based on AWS-CLI commands for Amazon Web Services account security assessment and hardening.

Offensive-security MCP server with 205 wrapped tools, 17 specialist agents, and 60 SPA-aware probes for OWASP Top 10. CLI + MCP, BYO LLM. No API key needed on MCP path.

AI supply chain security scanner with 18 MCP tools. Auto-discovers 20 MCP clients, scans dependencies for CVEs (OSV/NVD/EPSS/CISA KEV), maps blast radius from vulnerabilities to exposed credentials and tools, runs CIS benchmarks, generates CycloneDX/SPDX SBOMs, and enforces compliance across OWASP LLM Top 10, MITRE ATLAS, NIST AI RMF, and EU AI Act.

The authentication glue you need.

Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.

Enterprise-class Open Source LDAP server for Linux.

The privacy-first, self-hosted CAPTCHA for the modern web.

A next-gen FOSS self-hosted unified zero trust secure access platform that can operate as a remote access VPN, a ZTNA platform, API/AI/MCP gateway, a PaaS, an ngrok-alternative and a homelab infrastructure.

All in one IP Toolbox. Easy to check what's your IPs, IP geolocation, check for DNS leaks, examine WebRTC connections, speed test, ping test, MTR test, check website availability and more.

A standalone SIGMA-based detection tool for EVTX, Auditd and Sysmon for Linux logs

Open-source file upload security for Node.js. Scan files before storage to detect malware, MIME spoofing, and risky archives.

Fully-featured, zero trust, full mesh overlay network. Includes a 2FA support out of the box, clients for all major desktop/mobile OS'es.

Share sensitive information securely with self-destructing links that are only viewable once.

Secure, browser-based, password-only self-custodial cryptocurrency wallet.

Fully transparent SSH, HTTPS, Kubernetes, MySQL and Postgres bastion/PAM that doesn't need additional client-side software

Securely share sensitive information with automatic expiration & deletion after a set number of views or duration. Track who, what and when with full audit logs.

Find, verify, and analyze leaked credentials

Honeypot framework designed to provide a highly secure environment for detecting and analyzing cyber attacks.

The easiest, and most secure way to access and protect all of your infrastructure.

Open-source AWS security scanner with attack chain detection, breach cost estimation, and copy-paste remediation (CLI + Terraform). 47 checks, 16 attack chain rules. First free standalone AWS security MCP server.

Single Sign-On for Your Self-Hosted Universe

A full-stack AI Red Teaming platform securing AI ecosystems via OpenClaw Security Scan, Agent Scan, Skills Scan, MCP scan, AI Infra scan and LLM jailbreak evaluation.

Industry-leading high-performance, AI and semantic technology web application firewall and API security gateway (fork of nginx).

A Smart Ethernet Switch for Earth

FreeRADIUS - A multi-protocol policy server.

Authentication and authorization infrastructure for SaaS and AI apps, built on OIDC and OAuth 2.1 with multi-tenancy, SSO, and RBAC.

A customizable and powerful penetration testing reporting platform for offensive security professionals. Simplify, customize, and automate your pentest reports with ease.

Open source security data pipeline engine for structured event data, supporting high-volume telemetry ingestion, compaction, and retrieval; purpose-built for security content execution, guided threat hunting, and large-scale investigation.

Kanidm: A simple, secure, and fast identity management platform

Open-source security reports — no paywalls, just actionable insights.

Splunk Security Content

An Obfuscation-Neglect Android Malware Scoring System.

SSH bastion server with access control, session recording, and optional TPM-backed key protection. `EUPL-1.2` `Go/Docker`

A simple and easy-to-use OIDC provider that allows users to authenticate with their passkeys to your services.

Privacy-first password manager with built-in email aliasing. Fully encrypted and self-hostable.

Ghidra is a software reverse engineering (SRE) framework

Pattern recognition for hosts, services, and content

Whistleblowing software enabling anyone to easily set up and maintain a secure reporting platform.

Fast, easy, free Bittorrent client.

Open-source and next-generation Web Application Firewall (WAF)

Distributed, secure messenger with audio and video chat capabilities.

Selfhostable web app to make managing mTLS certificates a breeze

Local-first AWS security analyzer that discovers attack paths and generates remediations using graph theory.

Shuffle: A general purpose security automation platform. Our focus is on collaboration and resource sharing.

Secure sharing of secrets, passwords and files.

A vulnerability scanner for container images and filesystems

Highly customizable SSH server with several ways to authorize a user and options where and how to execute a user's session.

Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more