Check Out These Free Tools
Available on GitHub, these tools are perfect for professionals, hobbyists, and researchers looking to enhance their development and security capabilities.
CyberPad Chrome Extension
A secure, distraction-free notepad for your security assessments, coding, or penetration testing. Perfect for quickly documenting findings, writing and formatting code, and keeping all your notes organized—right in your browser.
Download CyberPad Now!Linkr URL Manager
Linkr is a lightweight browser extension that helps you organize and access your favorite websites with just one click. It offers a more visual and customizable alternative to traditional bookmarks with a modern, dark-themed interface.
Web Version View on GitHubLlama.cpp Model Controller 🦙
The Llama.cpp Model Controller is an intuitive web interface for managing local LLM deployments powered by llama.cpp. This application streamlines the process of starting, monitoring, and stopping language models through a clean, responsive UI, eliminating the need for complex command-line operations.
View on GitHubCyberPad
A secure, distraction-free notepad for your security assessments, coding, or penetration testing. Perfect for quickly documenting findings, writing and formatting code, and keeping all your notes organized—right in your browser.
Web VersionImage Metadata Extractor
metaX is a tool designed to extract metadata from image files such as PNG, JPG, and JPEG. The tool can display image information and extract detailed EXIF metadata including GPS coordinates, camera model, exposure, and more.
Web Version View on GitHubHAK3R Free Website Theme
🚀 A modern, responsive portfolio template for cybersecurity professionals built with React, TypeScript, and Flowbite. Features include system-aware dark/light theme, SEO optimization, and clean component architecture.
Web Version View on GitHubAdvanced Domain Lookup
Investigate and gather detailed information on domain names with our Advanced Domain/Subdomain Lookup Tool. This tool allows you to perform WHOIS lookups, check DNS records, subdomains, assess domain availability and much more.
Web Version View on GitHubIP Calculator
This tool performs various IP address calculations such as converting IP addresses to binary or hexadecimal, converting binary or hexadecimal to IP addresses, and converting CIDR notation to IP ranges and vice versa.
Web Version View on GitHubCybersecurity Career Continuum
This guide helps you match your personality traits and aptitudes with various career paths. Whether you're an outgoing communicator thriving in Security Sales or IT Support, or a detail-oriented thinker suited for Malware Analysis or Penetration Testing, this tool provides personalized insights.
Web VersionSecurity Website Checker
This tool provides a comprehensive analysis of a website's status and security. Enter a domain to receive detailed information about its accessibility, performance, and security features.
Web Version View on GitHubCybersecurity Tools
A curated and complete collection of amazing software, libraries, documents, books, resources, and other cool security-related content. This repository is an amalgamation of all security tools I have collected, researched and used in my cybersecurity career. It's indexed by category and has easy to find links to each tool.
Web Version View on GitHubPentest Cheat Sheet
A collection of commands, tips, and techniques for penetration testing and security assessments. This repository serves as a quick reference guide for ethical hackers and security professionals. It includes commands for information gathering, vulnerability scanning, exploitation, post-exploitation, and more.
View on GitHubCodePad
CodePad is a real-time code sharing platform that allows users to write, share, and collaborate on code snippets. The platform supports over many programming languages and provides syntax highlighting.
Web VersionEmoji World ❤️
Emoji World is a fun and user-friendly platform that allows you to search, browse, and effortlessly copy your favorite emojis. Whether you're looking to express emotions, represent objects, or showcase symbols, Emoji World has got you covered with an extensive collection organized into intuitive categories. Enhance your messaging, social media posts, and documents with ease!
Web Version View on GitHubDevelopment Tools
A curated list of top developer-first products to enhance your workflow. Featuring tools built for developers—with code examples, "Headless," "API-first," and "SaaS" in focus—this collection highlights powerful, customizable products developers rely on, from APIs to scalable platforms.
Web Version View on GitHubOnline IP Checker
MyIP is a simple Django-based web application that allows users to check their public IP address. It includes a home page with a button to view the user's IP address and a dedicated page to display it in a clean, user-friendly design. The application uses Bootstrap 5 and FontAwesome for styling.
Web Version View on GitHubDamn Vulnerable WordPress
Designed for ethical hacking, Cybersecurity students this Docker container allows you to simulate real-world vulnerabilities, such as outdated plugins, weak passwords, and misconfigurations, providing hands-on experience in identifying and exploiting WordPress security flaws.
View on GitHubWindows Security Scripts
A collection of PowerShell scripts for investigating Windows PCs. These tools help detect potential compromises by analyzing network connections, user accounts, shared folders, scheduled tasks, and system logs, offering both general and in-depth security assessments.
View on GitHubRSYNC Website Backup
Powerful and feature-rich Shell script for automating website backups using rsync. It performs daily, weekly, and monthly backups with rotation to manage storage efficiently. It includes configurable email notifications for backup successes and failures, and offers advanced options for remote backups, logging, and error handling.
View on GitHubMITRE ATT&CK Mapper
This project provides a Python script to map alert signatures to MITRE ATT&CK techniques. It uses the mitreattack-python library to fetch detailed information about MITRE ATT&CK techniques dynamically from the latest STIX data.
View on GitHubSite Under Maintenance
Quick and dirty script for sites that go down and need an under maintenance html. It's quick and it works!
View on GitHubVirusTotal IP Reputation Checker
This Python script allows you to check the reputation of IP addresses and domains using the VirusTotal API. The script fetches detailed information about each IP address and domain, including security information, location, and network details.
View on GitHubVPN Checker Using vpnapi.io
This Python script allows you to check a list of IP addresses using the vpnapi.io API. The script fetches detailed information about each IP address, including security information, location, and network details.
View on GitHubVPN Checker via List
This script checks your list of IP addresses against known VPN IP addresses to determine if they are VPNs. This is not a complete list of VPNs, but it is a good starting point. The script will output any IP addresses that are part of the VPNs CIDR blocks. If IPs are not then they will get disregarded via /dev/null.
View on GitHubMamaShop Vulnerable Ecommerce
This is a simple docker application using Ubuntu 16.04 xenial, apache2 httpd (2.4), php (7.0) and mariadb (10), a classical LAMP stack, to create a vulnerable web application - Vulnerable Mama Shop. Vulnerable Mama Shop is insecurely coded and has a simple SQL injection flaw. It can be used to learn and practice SQL injection.
View on GitHubQuick SMTP Listener
This script implements a basic SMTP listener using the aiosmtpd library in Python. The listener listens for incoming email messages and prints the sender's address, recipients' addresses, and message content on the console, and binds the SMTP server to a specific hostname and port for receiving incoming connections.
View on GitHubDocker WordPress
I tried to do a simple installation of Wordpress on Docker but ran into several problems with MariaSQL. They don't play nice! I'm adding this docker-compose.yml just in case it helps! (not sure where I got it from but thank you whoever you are!)
View on GitHubQuick Deploy Sanity Check
This script checks for basic stuff when sending code to a repo or putting code on a staging or production server. Things this script is checking include: Permissions, Ownership, localhost possible links, and local IP address possible links.
View on GitHubRemove Database Tables
This bash script attampts to remove mysql/mariasql database tables without having to login into mysql. Tested on development. Feel free to comment and help out.
View on GitHubPush to Production
This bash script helps you in moving from a /home/user folder to /var/www/html/. It adds recursive permissions, ownership and other perks. Please feel free to comment and help me get it better. Tested on development (debian 11/Apache2).
View on GitHubMySQLMap App
This is an extremely vulnerable application. Please do not deploy in production or host it on the Internet. You are responsible for this application and what you do with it.
View on GitHub