• Categories
  • Tools

    Below is a catalogue of different security tools, products, and services that I use in my work and personal life. These tools are being referenced as a convenience for informational purposes only and do not necessarily constitute an endorsement.

    Acunetix

    Acunetix is a dynamic web vulnerability scanner that automates web application security testing. The tool has an...

    Arachni

    Arachni is a high performance web application security scanner built on the Ruby framework, aimed towards helping...

    Autopsy

    Autopsy is a digital forensics platform and graphical interface to The Sleuth Kit and other digital forensics tools....

    BuiltWith

    BuiltWith checks websites for snippets of code or tags related to some technologies. Since that data is publicly...

    Burp Suite

    Burp Suite is an intercepting proxy server for security testing of web applications. It operates as a man-in-the-middle...

    CanaryTokens

    CanaryTokens, also known as honeytokens, are not new but can be useful as a source of information. They can be...

    crt.sh

    A popular CT search tool is crt.sh. Subdomains can be detected using Certificate Transparency (CT). SSL/TLS certificates...

    CRXcavator

    CRXcavator automatically scans the entire Chrome Web Store every 3 hours and produces a quantified risk score for...

    DataSploit

    DataSploit is an open source intelligence collection (OSINT) tool. It is a simple way to dump data for a domain...

    Deadswitch

    Deadswitch is a no-access encryption dead man's switch, designed to protect data owners by enabling the targeted...

    Distill

    Distill is a service that allows customers to monitor and track changes to content within web apps (frontend)....

    Fail2Ban

    Fail2Ban is an intrusion prevention software framework that protects computer servers from brute-force attacks....