Open Hub

Tags : Browse Projects

Select a tag to browse associated projects and drill deeper into the tag cloud.

Snort

Compare

  Analyzed 2 months ago

Snort is a lightweight network intrusion detection system, capable of performing real-time traffic analysis and packet logging on IP networks. It can perform protocol analysis, content searching/matching and can be used to detect a variety of attacks and probes, such as buffer overflows, stealth ... [More] port scans, CGI attacks, SMB probes, OS fingerprinting attempts, and much more. Snort uses a flexible rule based language to describe traffic that it should collect or pass, and a modular detection engine. Snort has a real-time alerting capability, with alert mechanisms for syslog, a user specified file, a UNIX socket, or WinPopup messages to Windows clients using Samba's smbclient. [Less]

308K lines of code

13 current contributors

6 months since last commit

87 users on Open Hub

Activity Not Available
4.09091
   
0 Reviews
I Use This
Mostly written in C++
Licenses: gpl
Tags analysis bsd c detection ethernet firewall hacking ids infosec inline intrusion ips 32 more...

OWASP Zed Attack Proxy

Compare

Claimed by Open Web Application Securi... Analyzed 17 days ago

The OWASP Zed Attack Proxy (ZAP) is one of the world’s most popular free security tools and is actively maintained by hundreds of international volunteers. It can help you automatically find security vulnerabilities in your web applications while you are developing and testing your applications. Its ... [More] also a great tool for experienced pentesters to use for manual security testing. [Less]

27.5K lines of code

61 current contributors

25 days since last commit

40 users on Open Hub

High Activity
4.875
   
1 Review
I Use This
Mostly written in JavaScript
Licenses: apache_2
Tags hacking opensource owasp owasp_stage_flagship owasp_type_tool scanner security testing vulnerability web zap

ettercap

Compare

  Analyzed 2 months ago

Ettercap is a network sniffer/interceptor/logger for ethernet LANs. It supports active and passive dissection of many protocols (even ciphered ones, like SSH and HTTPS). Data injection in an established connection and filtering on the fly is also possible, keeping the connection synchronized. Many ... [More] sniffing modes were implemented to give you a powerful and complete sniffing suite. Plugins are supported. It has the ability to check whether you are in a switched LAN or not, and to use OS fingerprints (active or passive) to let you know the geometry of the LAN. [Less]

64.4K lines of code

7 current contributors

7 months since last commit

35 users on Open Hub

Activity Not Available
4.625
   
0 Reviews
I Use This
Mostly written in C
Licenses: gpl
Tags exploitation hack hacking infosec lan linux mac man_in_the_middle mitm monitoring networking security 8 more...

OWASP OWTF

Compare

Claimed by Open Web Application Securi... Analyzed 2 months ago

OWASP OWTF, the Offensive (Web) Testing Framework, is an OWASP+PTES-focused try to unite great tools and make pen testing more efficient, written mostly in Python.

167K lines of code

4 current contributors

6 months since last commit

21 users on Open Hub

Activity Not Available
5.0
 
0 Reviews
I Use This
Mostly written in JavaScript
Licenses: BSD_License
Tags hacking hackingtools infosec opensource owasp owaspproject owasp_stage_flagship owasp_type_tool owtf penetration_testing python scanner 3 more...

PHPIDS

Compare

  Analyzed 30 days ago

PHPIDS (PHP-Intrusion Detection System) is a simple to use, well structured, fast and state-of-the-art security layer for your PHP based web application. The IDS neither strips, sanitizes nor filters any malicious input, it simply recognizes when an attacker tries to break your site and reacts in ... [More] exactly the way you want it to. Based on a set of approved and heavily tested filter rules any attack is given a numerical impact rating which makes it easy to decide what kind of action should follow the hacking attempt. This could range from simple logging to sending out an emergency mail to the development team, displaying a warning message for the attacker or even ending the user’s session. [Less]

50.1K lines of code

0 current contributors

over 5 years since last commit

14 users on Open Hub

Inactive
4.4
   
0 Reviews
I Use This
Mostly written in PHP
Licenses: lgpl3
Tags attacks csrf detection directory dt exploit filter hacking header ids injection injections 13 more...

Prelude SIEM

Compare

  Analyzed 30 days ago

Prelude is a Security Information and Event Management system, enabling all available security application, be it opensource or proprietary, to report to a centralized system. In order to achieve this task, Prelude relies on the IDMEF (Intrusion Detection Message Exchange Format) IETF standard (RFC ... [More] 4765), that enables different kinds of sensors to generate events using an unified language. Prelude benefits from its ability to find traces of malicious activity from different sensors (Snort, Suricata, OSSEC, honeyd, Samhain, over 30 types of systems logs, and many others) in order to better verify an attack and in the end to perform automatic correlation between the various events. Prelude is commited to providing a SIEM that offers the ability to unify currently available tools. [Less]

445K lines of code

6 current contributors

5 months since last commit

11 users on Open Hub

Moderate Activity
4.83333
   
0 Reviews
I Use This
Mostly written in C
Licenses: gpl
Tags cybersecurity detection firewall forensics hacking hids ids infosec intrusion linux logger logmanagement 8 more...

w3af

Compare

  Analyzed 28 days ago

w3af is a Web Application Attack and Audit Framework. The project goal is to create a framework to find and exploit web application vulnerabilities that is easy to use and extend. Actually w3af has more than 130 plugins, including SQL injection, Cross Site Scripting and unsafe scripts detection.

319K lines of code

14 current contributors

4 months since last commit

9 users on Open Hub

Moderate Activity
4.16667
   
1 Review
I Use This
Mostly written in Python
Licenses: gpl
Tags hacking python security testing vulnerability web

netsniff-ng

Compare

  Analyzed 30 days ago

netsniff-ng is is a free, performant Linux network analyzer and networking toolkit. The gain of performance is reached by zero-copy mechanisms, so that the kernel does not need to copy packets from kernelspace to userspace and vice versa. netsniff-ng consists of much more than only a network ... [More] analyzer. Next to the zero-copy sniffer itself, further tools like trafgen, a powerful zero-copy network packet generator, or ifpps, a tool that provides top-like kernel networking statistics, and curvetun, a lightweight curve25519-based multiuser IP tunnel, are being shipped. [Less]

70K lines of code

9 current contributors

5 months since last commit

6 users on Open Hub

Very Low Activity
5.0
 
0 Reviews
I Use This
Mostly written in C
Licenses: GNU_Gener...
Tags admin analysis analyzer arppoisoning arpspoofing bpf bridge c dump ethernet gateway hack 35 more...

sqlmap

Compare

  Analyzed 30 days ago

66.7K lines of code

16 current contributors

about 1 month since last commit

6 users on Open Hub

High Activity
5.0
 
0 Reviews
I Use This
Mostly written in Python
Licenses: No declared licenses
Tags audit bisection blind database dbms enumeration exploit file fingerprint hack hacking inband 28 more...

IronBee

Compare

  Analyzed 2 months ago

Led by the team who designed and built ModSecurity, the new project aims to produce a web application firewall sensor that is secure, high-performing, portable, and freely available – even for commercial use. Hosted at the web site www.ironbee.com, the project is open to all parties interested in joining the development effort.

235K lines of code

0 current contributors

about 4 years since last commit

6 users on Open Hub

Activity Not Available
3.0
   
0 Reviews
I Use This
Mostly written in C
Licenses: apache_2
Tags apache2 bsd c detection firewall hacking ids infosec inline intrusion ips linux 15 more...