Description:
A vulnerability scanner for container images and filesystems; scans SBOMs and images to identify known vulnerabilities, integrates with Syft and OpenVEX for composable, auditable results.
Security
SpiderFoot
Description:
SpiderFoot is an open source intelligence (OSINT) automation tool. It integrates with just about every data source available and utilises a range of methods for data analysis, making that data easy to navigate.
SpiderFoot has an embedded web-server for providing a clean and intuitive web-based interface but can also be used completely via the command-line. It’s written in Python 3 and MIT-licensed.
fnox
Description:
encrypted/remote secret manager. A cross-platform toolset for securely storing and retrieving secrets, with support for age encryption and cloud secret managers (AWS, Azure, GCP), plus OS Keychain and shell integration to load secrets on demand.
OpenThreat
Description:
OpenThreat is a free, open-source platform for tracking CVEs and security threats. It aggregates data from trusted sources (NVD, CISA KEV, BSI CERT-Bund) into a REST API with a Next.js frontend and PostgreSQL backend, enabling advanced search, filters, and real-time threat intelligence.
Clear NDR Community
Description:
Clear NDR Community is an open-source Suricata-based network detection and response distribution (NSM/IDS). A turnkey Linux stack (Docker or Debian ISO) incorporating Suricata, OpenSearch, EveBox, Arkime, and Scirius; successor to SELKS. Licensed under GPL-3.0-or-later.
BruteForceAI
Description:
BruteForceAI is an advanced penetration-testing tool that uses LLMs to analyze login forms and automate multi-threaded brute-force and password-spray attacks, with AI-discovered selectors, evasion features, and webhook notifications for authorized testing.
garak
Description:
garak is an open-source LLM vulnerability scanner that probes for weaknesses in large language models, including hallucination, data leakage, prompt injection, misinformation, toxicity, jailbreaks, and more, using static, dynamic, and adaptive probes.
Nosey Parker
Description:
Nosey Parker is a CLI tool that detects secrets and sensitive data in text and Git history.
AIDEFEND Framework
Description:
AIDEFEND (Artificial Intelligence Defense Framework) is an open-source knowledge base of defensive countermeasures to protect AI/ML systems. It features interactive views and maps defenses to threats from MITRE ATLAS, MAESTRO, and OWASP, helping security professionals safeguard AI deployments.
EntraGoat
Description:
EntraGoat is a deliberately vulnerable Microsoft Entra ID environment that simulates real-world identity misconfigurations and attack paths for security training. It uses PowerShell scripts and Microsoft Graph APIs to deploy vulnerable configurations in an isolated Entra ID tenant, offering multiple privilege-escalation challenges for hands-on learning.