Tools

Troubleshooting and monitoring VoIP calls.

Infisical is the open-source platform for secrets, certificates, and privileged access management.

Tool based on AWS-CLI commands for Amazon Web Services account security assessment and hardening.

Offensive-security MCP server with 205 wrapped tools, 17 specialist agents, and 60 SPA-aware probes for OWASP Top 10. CLI + MCP, BYO LLM. No API key needed on MCP path.

AI supply chain security scanner with 18 MCP tools. Auto-discovers 20 MCP clients, scans dependencies for CVEs (OSV/NVD/EPSS/CISA KEV), maps blast radius from vulnerabilities to exposed credentials and tools, runs CIS benchmarks, generates CycloneDX/SPDX SBOMs, and enforces compliance across OWASP LLM Top 10, MITRE ATLAS, NIST AI RMF, and EU AI Act.

The authentication glue you need.

Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.

The privacy-first, self-hosted CAPTCHA for the modern web.

A next-gen FOSS self-hosted unified zero trust secure access platform that can operate as a remote access VPN, a ZTNA platform, API/AI/MCP gateway, a PaaS, an ngrok-alternative and a homelab infrastructure.

A standalone SIGMA-based detection tool for EVTX, Auditd and Sysmon for Linux logs

Fully-featured, zero trust, full mesh overlay network. Includes a 2FA support out of the box, clients for all major desktop/mobile OS'es.

Open-source file upload security for Node.js. Scan files before storage to detect malware, MIME spoofing, and risky archives.

All in one IP Toolbox. Easy to check what's your IPs, IP geolocation, check for DNS leaks, examine WebRTC connections, speed test, ping test, MTR test, check website availability and more.

Share sensitive information securely with self-destructing links that are only viewable once.

Secure, browser-based, password-only self-custodial cryptocurrency wallet.

Honeypot framework designed to provide a highly secure environment for detecting and analyzing cyber attacks.

The easiest, and most secure way to access and protect all of your infrastructure.

Find, verify, and analyze leaked credentials

Securely share sensitive information with automatic expiration & deletion after a set number of views or duration. Track who, what and when with full audit logs.

Fully transparent SSH, HTTPS, Kubernetes, MySQL and Postgres bastion/PAM that doesn't need additional client-side software

A full-stack AI Red Teaming platform securing AI ecosystems via OpenClaw Security Scan, Agent Scan, Skills Scan, MCP scan, AI Infra scan and LLM jailbreak evaluation.

Single Sign-On for Your Self-Hosted Universe

Open-source AWS security scanner with attack chain detection, breach cost estimation, and copy-paste remediation (CLI + Terraform). 47 checks, 16 attack chain rules. First free standalone AWS security MCP server.

Kanidm: A simple, secure, and fast identity management platform

Open source security data pipeline engine for structured event data, supporting high-volume telemetry ingestion, compaction, and retrieval; purpose-built for security content execution, guided threat hunting, and large-scale investigation.

A customizable and powerful penetration testing reporting platform for offensive security professionals. Simplify, customize, and automate your pentest reports with ease.

Ghidra is a software reverse engineering (SRE) framework

Whistleblowing software enabling anyone to easily set up and maintain a secure reporting platform.

Privacy-first password manager with built-in email aliasing. Fully encrypted and self-hostable.

A simple and easy-to-use OIDC provider that allows users to authenticate with their passkeys to your services.

SSH bastion server with access control, session recording, and optional TPM-backed key protection. `EUPL-1.2` `Go/Docker`

Splunk Security Content

Local-first AWS security analyzer that discovers attack paths and generates remediations using graph theory.

UNIX-like reverse engineering framework and command-line toolset

Selfhostable web app to make managing mTLS certificates a breeze

cloud: :zap: Granular, Actionable Adversary Emulation for the Cloud

finds publicly known security vulnerabilities in a website's frontend JavaScript libraries

Modular SIP server (registrar/proxy/router/etc).

Zeek is a powerful network analysis framework that is much different from the typical IDS you may know.

Arkime is an open source, large scale, full packet capturing, indexing, and database system.

Passbolt Community Edition (CE) API. The JSON API for the open source password manager for teams!

An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers.

OpenBao is a software solution to manage, store, and distribute sensitive data including secrets, certificates, and keys.

Safety guardrails for ai coding agents and human terminal commands

Open Source Identity and Access Management For Modern Applications and Services

Independent, privacy-first, self-hostable PoW CAPTCHA service made in EU

Open source Auth0/Clerk/Firebase alternative. Passkeys, SSO, MFA, passwordless, biometric login. Self-hosted or cloud. Enterprise-ready for SaaS & mobile apps

Main Sigma Rule Repository

Web frontend for managing entries (e.g. users, groups, DHCP settings) stored in an LDAP directory.

Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.