Tools

Industry-leading high-performance, AI and semantic technology web application firewall and API security gateway (fork of nginx).

Open-source security reports — no paywalls, just actionable insights.

Malicious traffic detection system

Deterministic execution engine for AI agents with 412 modules across 78 categories (browser, file, Docker, data, crypto, scheduling). Features execution trace, evidence snapshots, replay from any step, and supports both STDIO and Streamable HTTP transport.

Centralized network visibility and continuous asset discovery. Monitor devices, detect change, and stay aware across distributed networks.

A vulnerability scanner for container images and filesystems

Open-source and next-generation Web Application Firewall (WAF)

Shuffle: A general purpose security automation platform. Our focus is on collaboration and resource sharing.

The Single Sign-On Multi-Factor portal for web apps, now OpenID Certified™

An editor of encrypted files that supports YAML, JSON and BINARY formats and encrypts with AWS KMS and PGP.

Zero-Trust access management with true WireGuard® 2FA/MFA

Cerbos is the open core, language-agnostic, scalable authorization solution that makes user permissions and authorization simple to implement and manage by writing context-aware access control policies for your application resources.

Code security scanning tool (SAST) to discover, filter and prioritize security and privacy risks.

Chainsaw provides a powerful ‘first-response’ capability to quickly identify threats within Windows event logs.

♂ Collect a dossier on a person by username from 3000+ sites

SafeLine is a self-hosted WAF(Web Application Firewall) / reverse proxy to protect your web apps from attacks and exploits.

SimpleX - the first messaging network operating without user identifiers of any kind - 100% private by design! iOS, Android and desktop apps !

UNIX-like reverse engineering framework and command-line toolset.

An app that monitors domain names using RDAP, tracks their history, and helps you acquire them when they expire

High-speed log analysis and forensics tool with multi-format parsing, pattern matching, timeline reconstruction and anomaly detection for incident response.

A private certificate authority (X.509 & SSH) & ACME server for secure automated certificate management, so you can use TLS everywhere & SSO for SSH.

OpenVPN is an open source VPN daemon

A framework for secure and scalable network traffic analysis - https://netcap.io

IntelOwl: manage your Threat Intelligence at scale

open-appsec is a machine learning security engine that preemptively and automatically prevents threats against Web Application & APIs. This repo include the main code and logic.

portchecker.io is a free online utility to check the port status of a given hostname or IP address.

MCP server that enables security professionals to interact with Panther's SIEM platform using natural language for writing detections, querying logs, and managing alerts.

Creates Wireguard configuration for hub and peers with ease

Keep your sensitive information out of chat logs, emails, and more with encrypted secrets.

Hayabusa (隼) is a sigma-based threat hunting and fast forensics timeline generator for Windows event logs.