15 Open Source Cybersecurity Tools You Need to Know Early

2024.01.07

Open source tools represent a dynamic force in the technology landscape, embodying innovation, collaboration, and accessibility. These tools are developed based on transparency and community-driven principles, allowing users to scrutinize, modify, and adapt to their unique needs. and adjust the solution.

In this article, you will find a list of open source cybersecurity tools that you should definitely check out.

Nemesis: an open source offensive data enrichment and analysis pipeline

Nememsis is a centralized data processing platform that ingests, enriches and analyzes offensive security assessment data (i.e., data collected during penetration testing and RED team engagements).

SessionProbe: open source multi-threaded five-layer testing tool

SessionProbe is a multi-threaded testing tool designed to evaluate user permissions in web applications.

Mosint: Open Source Automated Email OSINT Tool

Mosint is an automated email OSINT tool written in GO and designed to facilitate fast and efficient investigation of target emails. It integrates multiple services to provide security researchers with quick access to a wide range of information.

Vgil: Open source LLM security scanner

Vgil is an open source security scanner that detects hint injection, jailbreaking, and other potential threats to large language models.

AWS Kill Switch: Open Source Incident Response Tool

AWS Kill Switch is an open source incident response tool used to quickly lock down AWS accounts and IAM roles in the event of a security incident.

PolarDns: an open source DNS server tailored for security assessments

PolarDNS is a specialized authoritative DNS server that enables operators to generate custom DNS responses suitable for DNS protocol testing purposes.

K0motron: Open source Kubernetes cluster management

The open source solution k0motron has two supported options for production-grade Kubernetes cluster management.

Kubscape 3.0 improves security for open source Kubernetes

For DevSecOps practitioners or platform engineers, Kubescape’s open source Kubernetes security platform has been upgraded to version 3.0.

Logging Made Easy: Free log management solution from CISA

CISA has launched a new version of LME (Logging Make Easy), a simple and easy-to-use log management solution for Windows devices that can be downloaded and installed by yourself for free.

GOAD: A vulnerable Active Directory environment used to practice attack techniques

GOAD is a free testing lab that provides pen testers with a vulnerable Active Directory environment to practice common attack methods.

Wazeh: Free and Open Source XDR and SIEM

Wazeh is an open source platform designed for threat detection, prevention and response, which protects workloads in on-premises, virtual, container and cloud environments.

Yeti: an open, distributed, threat intelligence repository

Yeti is a unified platform that consolidates observation data, compromise indicators, TTPs and threat-related knowledge. It automatically enhances observability such as domain resolution and IP geolocation, saving you effort.

BinDiff: an open source comparison tool for binary files

BinDiff is a binary file comparison tool for quickly finding differences and similarities in disassembled code.

LLm Guard: an open source toolkit for protecting large language models

LLm Guard is a toolkit designed to harden the security of large language models and is designed for easy integration and deployment in production environments.

Velociraptor: Open Source Digital Forensics and Incident Response

Velociraptor is a sophisticated digital forensics and incident response tool designed to increase your visibility into endpoint activity.