this list suggested in reddit, or others in the reddit thread). I’m sure there are more (and I’d be happy to add them, e.g. OrangeAssassin – drop-in replacement of SpamAssassin.Hermes Secure Email Gateway – an Ubuntu-based email gateway.YARA – The pattern matching swiss knife for malware researchers.pfsense – the most popular open source firewall.CVE Search – set of tools for search in CVE data.WebScarab – (obsolete) web vulnerability scanner by OWASP.ZAProxy – web vulnerability scanner by OWASP.OpenVAS – very popular vulnerability assessment.osquery – real-time querying of endpoint data.TheHive Cortex – TheHive companion used for fast queriying.TheHive – incident response / SOAR platform.GRR – incident response and remote live forensics.Sigma – Generic Signature Format for SIEM Systems.OpenDXL – open source tools for security intelligence sharing.SpiderFoot – threat intelligence aggregation.BloodHound – ActiveDirectory relationship detection.Arkime – packet capture and search tool (formerly Moloch).Apache Metron – (retired) network security monitoring, evolved from Cisco OpenSOC.Elastic SIEM – SIEM functionality by Elasticsearch.SecurityOnion – security monitoring and log management.OSSIM – open source SIEM, at the core of AlienVault.Velociraptor – endpoint visibility and response.OSSEC – host-based intrusion detection system.
Security monitoring, intrusion detection/prevention So here’s the list in on apparent order (note that I’ve listed only defensive tools, offensive ones like metasploit, nmap, wireshark, etc.
This plethora of options is one of the reasons that security is so hard – they are many different ways to achieve something and it almost always involves headaches with configuring and connecting various “point solutions” (as marketers call them). And there are dozens of great open source security tools, so I decided to publish a list of them. As a founder of a security company, I’m constantly looking for open source tools to either incorporate in our offering, or get inspiration from, or provide integration with.
0 kommentar(er)
