Open Hub
Open Hub

Tags : Browse Projects

Select a tag to browse associated projects and drill deeper into the tag cloud.

Snort

Compare

  Analyzed 1 day ago

Snort is a lightweight network intrusion detection system, capable of performing real-time traffic analysis and packet logging on IP networks. It can perform protocol analysis, content searching/matching and can be used to detect a variety of attacks and probes, such as buffer overflows, stealth ... [More] port scans, CGI attacks, SMB probes, OS fingerprinting attempts, and much more. Snort uses a flexible rule based language to describe traffic that it should collect or pass, and a modular detection engine. Snort has a real-time alerting capability, with alert mechanisms for syslog, a user specified file, a UNIX socket, or WinPopup messages to Windows clients using Samba's smbclient. [Less]

374K lines of code

13 current contributors

21 days since last commit

88 users on Open Hub

High Activity
4.09091
   
0 Reviews
I Use This
Mostly written in C++
Licenses: gpl
Tags analysis bsd c detection ethernet firewall hacking ids infosec inline intrusion ips 32 more...

Zed Attack Proxy

Compare

  Analyzed 40 minutes ago

The Zed Attack Proxy (ZAP) is one of the world’s most popular free security tools and is actively maintained by hundreds of international volunteers. It can help you automatically find security vulnerabilities in your web applications while you are developing and testing your applications. Its also ... [More] a great tool for experienced pentesters to use for manual security testing. [Less]

1.33M lines of code

61 current contributors

about 12 hours since last commit

42 users on Open Hub

Very High Activity
4.875
   
1 Review
I Use This
Mostly written in Java
Licenses: apache_2
Tags dast extension hacking opensource scanner security testing vulnerability web zap

ettercap

Compare

  Analyzed about 1 hour ago

Ettercap is a network sniffer/interceptor/logger for ethernet LANs. It supports active and passive dissection of many protocols (even ciphered ones, like SSH and HTTPS). Data injection in an established connection and filtering on the fly is also possible, keeping the connection synchronized. Many ... [More] sniffing modes were implemented to give you a powerful and complete sniffing suite. Plugins are supported. It has the ability to check whether you are in a switched LAN or not, and to use OS fingerprints (active or passive) to let you know the geometry of the LAN. [Less]

66.3K lines of code

7 current contributors

2 months since last commit

35 users on Open Hub

Low Activity
4.57143
   
0 Reviews
I Use This
Mostly written in C
Licenses: gpl
Tags exploitation hack hacking infosec lan linux mac man_in_the_middle mitm monitoring networking security 8 more...

OWASP OWTF

Compare

Claimed by Open Web Application Securi... Analyzed 1 day ago

OWASP OWTF, the Offensive (Web) Testing Framework, is an OWASP+PTES-focused try to unite great tools and make pen testing more efficient, written mostly in Python.

71.9K lines of code

4 current contributors

about 1 month since last commit

22 users on Open Hub

Low Activity
5.0
 
0 Reviews
I Use This
Mostly written in Python
Licenses: BSD_License
Tags hacking hackingtools infosec opensource owasp owaspproject owasp_stage_flagship owasp_type_tool owtf penetration_testing python scanner 3 more...

PHPIDS

Compare

  Analyzed about 10 hours ago

PHPIDS (PHP-Intrusion Detection System) is a simple to use, well structured, fast and state-of-the-art security layer for your PHP based web application. The IDS neither strips, sanitizes nor filters any malicious input, it simply recognizes when an attacker tries to break your site and reacts in ... [More] exactly the way you want it to. Based on a set of approved and heavily tested filter rules any attack is given a numerical impact rating which makes it easy to decide what kind of action should follow the hacking attempt. This could range from simple logging to sending out an emergency mail to the development team, displaying a warning message for the attacker or even ending the user’s session. [Less]

50.1K lines of code

0 current contributors

about 11 years since last commit

14 users on Open Hub

Inactive
4.4
   
0 Reviews
I Use This
Mostly written in PHP
Licenses: lgpl3
Tags attacks csrf detection directory dt exploit filter hacking header ids injection injections 13 more...

Prelude SIEM

Compare

  Analyzed about 7 hours ago

Prelude SIEM is a Security Information and Event Management system, for all available security application, opensource or proprietary, to report to a centralized system. In order to achieve this task, Prelude relies on the IDMEF (Intrusion Detection Message Exchange Format) IETF standard (RFC 4765) ... [More] , that enables different kinds of sensors to generate events using an unified language. Prelude SIEM benefits from its ability to find traces of malicious activity from different sensors (Snort, Suricata, OSSEC, Wazuh, honeyd, Samhain, over 30 types of systems logs, and others) in order to better verify an attack and in the end to perform automatic correlation between the various events. Prelude SIEM is commited to providing a SIEM that offers the ability to unify currently available tools. [Less]

451K lines of code

6 current contributors

about 5 years since last commit

12 users on Open Hub

Inactive
4.83333
   
0 Reviews
I Use This
Mostly written in C
Licenses: gpl
Tags cybersecurity detection firewall forensics hacking hids ids infosec intrusion linux logger logmanagement 8 more...

w3af

Compare

  Analyzed 1 day ago

w3af is a Web Application Attack and Audit Framework. The project goal is to create a framework to find and exploit web application vulnerabilities that is easy to use and extend. Actually w3af has more than 130 plugins, including SQL injection, Cross Site Scripting and unsafe scripts detection.

320K lines of code

14 current contributors

over 5 years since last commit

9 users on Open Hub

Inactive
4.16667
   
1 Review
I Use This
Mostly written in Python
Licenses: gpl
Tags hacking python security testing vulnerability web

sqlmap

Compare

  Analyzed about 21 hours ago

67K lines of code

16 current contributors

11 days since last commit

6 users on Open Hub

Moderate Activity
5.0
 
0 Reviews
I Use This
Mostly written in Python
Licenses: No declared licenses
Tags audit bisection blind database dbms enumeration exploit file fingerprint hack hacking inband 28 more...

IronBee

Compare

  Analyzed about 3 hours ago

Led by the team who designed and built ModSecurity, the new project aims to produce a web application firewall sensor that is secure, high-performing, portable, and freely available – even for commercial use. Hosted at the web site www.ironbee.com, the project is open to all parties interested in joining the development effort.

235K lines of code

0 current contributors

over 9 years since last commit

6 users on Open Hub

Inactive
3.0
   
0 Reviews
I Use This
Mostly written in C
Licenses: apache_2
Tags apache2 detection firewall hacking ids infosec inline intrusion ips mod-security monitoring network 8 more...

netsniff-ng

Compare

  Analyzed 1 day ago

netsniff-ng is is a free, performant Linux network analyzer and networking toolkit. The gain of performance is reached by zero-copy mechanisms, so that the kernel does not need to copy packets from kernelspace to userspace and vice versa. netsniff-ng consists of much more than only a network ... [More] analyzer. Next to the zero-copy sniffer itself, further tools like trafgen, a powerful zero-copy network packet generator, or ifpps, a tool that provides top-like kernel networking statistics, and curvetun, a lightweight curve25519-based multiuser IP tunnel, are being shipped. [Less]

21.3K lines of code

9 current contributors

4 months since last commit

6 users on Open Hub

Very Low Activity
5.0
 
0 Reviews
I Use This
Mostly written in C
Licenses: GNU_Gener...
Tags admin analysis analyzer arppoisoning arpspoofing bpf bridge c dump ethernet gateway hack 35 more...