{"id":22773,"date":"2021-07-24T20:54:21","date_gmt":"2021-07-24T20:54:21","guid":{"rendered":"https:\/\/www.devopsschool.com\/blog\/?p=22773"},"modified":"2021-09-04T08:45:25","modified_gmt":"2021-09-04T08:45:25","slug":"top-51-free-open-source-tools-for-system-network-dns-http-ssl-security-for-software-engineers","status":"publish","type":"post","link":"https:\/\/www.devopsschool.com\/blog\/top-51-free-open-source-tools-for-system-network-dns-http-ssl-security-for-software-engineers\/","title":{"rendered":"Top 51 free open source tools for system network, DNS, HTTP, SSL &#038; Security for software engineers"},"content":{"rendered":"\n<h2 class=\"wp-block-heading\">Network<\/h2>\n\n\n\n<p>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/www.putty.org\/\" target=\"_blank\" rel=\"noopener\"><strong>PuTTY<\/strong><\/a>&nbsp;&#8211; is an SSH and telnet client, developed originally by Simon Tatham.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/mosh.org\/\" target=\"_blank\" rel=\"noopener\"><strong>Mosh<\/strong><\/a>&nbsp;&#8211; is a SSH wrapper designed to keep a SSH session alive over a volatile connection.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/eternalterminal.dev\/\" target=\"_blank\" rel=\"noopener\"><strong>Eternal Terminal<\/strong><\/a>&nbsp;&#8211; enables mouse-scrolling and tmux commands inside the SSH session.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/nmap.org\/\" target=\"_blank\" rel=\"noopener\"><strong>nmap<\/strong><\/a>&nbsp;&#8211; is a free and open source (license) utility for network discovery and security auditing.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/zmap\/zmap\" target=\"_blank\" rel=\"noopener\"><strong>zmap<\/strong><\/a>&nbsp;&#8211; is a fast single packet network scanner designed for Internet-wide network surveys.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/RustScan\/RustScan\" target=\"_blank\" rel=\"noopener\"><strong>Rust Scan<\/strong><\/a>&nbsp;&#8211; to find all open ports faster than Nmap.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/robertdavidgraham\/masscan\" target=\"_blank\" rel=\"noopener\"><strong>masscan<\/strong><\/a>&nbsp;&#8211; is the fastest Internet port scanner, spews SYN packets asynchronously.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/gvb84\/pbscan\" target=\"_blank\" rel=\"noopener\"><strong>pbscan<\/strong><\/a>&nbsp;&#8211; is a faster and more efficient stateless SYN scanner and banner grabber.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"http:\/\/www.hping.org\/\" target=\"_blank\" rel=\"noopener\"><strong>hping<\/strong><\/a>&nbsp;&#8211; is a command-line oriented TCP\/IP packet assembler\/analyzer.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/traviscross\/mtr\" target=\"_blank\" rel=\"noopener\"><strong>mtr<\/strong><\/a>&nbsp;&#8211; is a tool that combines the functionality of the &#8216;traceroute&#8217; and &#8216;ping&#8217; programs in a single tool.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/mehrdadrad\/mylg\" target=\"_blank\" rel=\"noopener\"><strong>mylg<\/strong><\/a>&nbsp;&#8211; utility which combines the functions of the different network probes in one diagnostic tool.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"http:\/\/netcat.sourceforge.net\/\" target=\"_blank\" rel=\"noopener\"><strong>netcat<\/strong><\/a>&nbsp;&#8211; utility which reads and writes data across network connections, using the TCP\/IP protocol.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/www.tcpdump.org\/\" target=\"_blank\" rel=\"noopener\"><strong>tcpdump<\/strong><\/a>&nbsp;&#8211; is a powerful command-line packet analyzer.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/www.wireshark.org\/docs\/man-pages\/tshark.html\" target=\"_blank\" rel=\"noopener\"><strong>tshark<\/strong><\/a>&nbsp;&#8211; is a tool that allows us to dump and analyze network traffic (wireshark cli).<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/termshark.io\/\" target=\"_blank\" rel=\"noopener\"><strong>Termshark<\/strong><\/a>&nbsp;&#8211; is a simple terminal user-interface for tshark.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/jpr5\/ngrep\" target=\"_blank\" rel=\"noopener\"><strong>ngrep<\/strong><\/a>&nbsp;&#8211; is like GNU grep applied to the network layer.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"http:\/\/netsniff-ng.org\/\" target=\"_blank\" rel=\"noopener\"><strong>netsniff-ng<\/strong><\/a>&nbsp;&#8211; is a Swiss army knife for your daily Linux network plumbing if you will.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/mechpen\/sockdump\" target=\"_blank\" rel=\"noopener\"><strong>sockdump<\/strong><\/a>&nbsp;&#8211; dump unix domain socket traffic.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/google\/stenographer\" target=\"_blank\" rel=\"noopener\"><strong>stenographer<\/strong><\/a>&nbsp;&#8211; is a packet capture solution which aims to quickly spool all packets to disk.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/sachaos\/tcpterm\" target=\"_blank\" rel=\"noopener\"><strong>tcpterm<\/strong><\/a>&nbsp;&#8211; visualize packets in TUI.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/tgraf\/bmon\" target=\"_blank\" rel=\"noopener\"><strong>bmon<\/strong><\/a>&nbsp;&#8211; is a monitoring and debugging tool to capture networking related statistics and prepare them visually.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"http:\/\/iptraf.seul.org\/2.6\/manual.html#installation\" target=\"_blank\" rel=\"noopener\"><strong>iptraf-ng<\/strong><\/a>&nbsp;&#8211; is a console-based network monitoring program for Linux that displays information about IP traffic.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/vergoh\/vnstat\" target=\"_blank\" rel=\"noopener\"><strong>vnstat<\/strong><\/a>&nbsp;&#8211; is a network traffic monitor for Linux and BSD.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/iperf.fr\/\" target=\"_blank\" rel=\"noopener\"><strong>iPerf3<\/strong><\/a>&nbsp;&#8211; is a tool for active measurements of the maximum achievable bandwidth on IP networks.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/Microsoft\/Ethr\" target=\"_blank\" rel=\"noopener\"><strong>ethr<\/strong><\/a>&nbsp;&#8211; is a Network Performance Measurement Tool for TCP, UDP &amp; HTTP.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/jwbensley\/Etherate\" target=\"_blank\" rel=\"noopener\"><strong>Etherate<\/strong><\/a>&nbsp;&#8211; is a Linux CLI based Ethernet and MPLS traffic testing tool.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/mpolden\/echoip\" target=\"_blank\" rel=\"noopener\"><strong>echoip<\/strong><\/a>&nbsp;&#8211; is a IP address lookup service.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/troglobit\/nemesis\" target=\"_blank\" rel=\"noopener\"><strong>Nemesis<\/strong><\/a>&nbsp;&#8211; packet manipulation CLI tool; craft and inject packets of several protocols.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/packetfu\/packetfu\" target=\"_blank\" rel=\"noopener\"><strong>packetfu<\/strong><\/a>&nbsp;&#8211; a mid-level packet manipulation library for Ruby.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/scapy.net\/\" target=\"_blank\" rel=\"noopener\"><strong>Scapy<\/strong><\/a>&nbsp;&#8211; packet manipulation library; forge, send, decode, capture packets of a wide number of protocols.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/SecureAuthCorp\/impacket\" target=\"_blank\" rel=\"noopener\"><strong>impacket<\/strong><\/a>&nbsp;&#8211; is a collection of Python classes for working with network protocols.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/arthepsy\/ssh-audit\" target=\"_blank\" rel=\"noopener\"><strong>ssh-audit<\/strong><\/a>&nbsp;&#8211; is a tool for SSH server auditing.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/aria2.github.io\/\" target=\"_blank\" rel=\"noopener\"><strong>aria2<\/strong><\/a>&nbsp;&#8211; is a lightweight multi-protocol &amp; multi-source command-line download utility.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/x-way\/iptables-tracer\" target=\"_blank\" rel=\"noopener\"><strong>iptables-tracer<\/strong><\/a>&nbsp;&#8211; observe the path of packets through the iptables chains.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/proabiral\/inception\" target=\"_blank\" rel=\"noopener\"><strong>inception<\/strong><\/a>&nbsp;&#8211; a highly configurable tool to check for whatever you like against any number of hosts.<\/p>\n\n\n\n<h1 class=\"wp-block-heading\">Network (DNS)<\/h1>\n\n\n\n<p>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/farrokhi\/dnsdiag\" target=\"_blank\" rel=\"noopener\"><strong>dnsdiag<\/strong><\/a>&nbsp;&#8211; is a DNS diagnostics and performance measurement tools.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/mschwager\/fierce\" target=\"_blank\" rel=\"noopener\"><strong>fierce<\/strong><\/a>&nbsp;&#8211; is a DNS reconnaissance tool for locating non-contiguous IP space.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/subfinder\/subfinder\" target=\"_blank\" rel=\"noopener\"><strong>subfinder<\/strong><\/a>&nbsp;&#8211; is a subdomain discovery tool that discovers valid subdomains for websites.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/aboul3la\/Sublist3r\" target=\"_blank\" rel=\"noopener\"><strong>sublist3r<\/strong><\/a>&nbsp;&#8211; is a fast subdomains enumeration tool for penetration testers.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/OWASP\/Amass\" target=\"_blank\" rel=\"noopener\"><strong>amass<\/strong><\/a>&nbsp;&#8211; is tool that obtains subdomain names by scraping data sources, crawling web archives, and more.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/google\/namebench\" target=\"_blank\" rel=\"noopener\"><strong>namebench<\/strong><\/a>&nbsp;&#8211; provides personalized DNS server recommendations based on your browsing history.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/blechschmidt\/massdns\" target=\"_blank\" rel=\"noopener\"><strong>massdns<\/strong><\/a>&nbsp;&#8211; is a high-performance DNS stub resolver for bulk lookups and reconnaissance.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/guelfoweb\/knock\" target=\"_blank\" rel=\"noopener\"><strong>knock<\/strong><\/a>&nbsp;&#8211; is a tool to enumerate subdomains on a target domain through a wordlist.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/DNS-OARC\/dnsperf\" target=\"_blank\" rel=\"noopener\"><strong>dnsperf<\/strong><\/a>&nbsp;&#8211; DNS performance testing tools.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/jedisct1\/dnscrypt-proxy\" target=\"_blank\" rel=\"noopener\"><strong>dnscrypt-proxy 2<\/strong><\/a>&nbsp;&#8211; a flexible DNS proxy, with support for encrypted DNS protocols.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/dnsdb\/dnsdbq\" target=\"_blank\" rel=\"noopener\"><strong>dnsdbq<\/strong><\/a>&nbsp;&#8211; API client providing access to passive DNS database systems.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/looterz\/grimd\" target=\"_blank\" rel=\"noopener\"><strong>grimd<\/strong><\/a>&nbsp;&#8211; fast dns proxy, built to black-hole internet advertisements and malware servers.<\/p>\n\n\n\n<h1 class=\"wp-block-heading\">Network (HTTP)<\/h1>\n\n\n\n<p>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/curl.haxx.se\/\" target=\"_blank\" rel=\"noopener\"><strong>curl<\/strong><\/a>&nbsp;&#8211; is a command line tool and library for transferring data with URLs.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/gitlab.com\/davidjpeacock\/kurly\" target=\"_blank\" rel=\"noopener\"><strong>kurly<\/strong><\/a>&nbsp;&#8211; is an alternative to the widely popular curl program, written in Golang.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/jakubroztocil\/httpie\" target=\"_blank\" rel=\"noopener\"><strong>HTTPie<\/strong><\/a>&nbsp;&#8211; is an user-friendly HTTP client.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/asciimoo\/wuzz\" target=\"_blank\" rel=\"noopener\"><strong>wuzz<\/strong><\/a>&nbsp;&#8211; is an interactive cli tool for HTTP inspection.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/summerwind\/h2spec\" target=\"_blank\" rel=\"noopener\"><strong>h2spec<\/strong><\/a>&nbsp;&#8211; is a conformance testing tool for HTTP\/2 implementation.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/gildasio\/h2t\" target=\"_blank\" rel=\"noopener\"><strong>h2t<\/strong><\/a>&nbsp;&#8211; is a simple tool to help sysadmins to hardening their websites.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/trimstray\/htrace.sh\" target=\"_blank\" rel=\"noopener\"><strong>htrace.sh<\/strong><\/a>&nbsp;&#8211; is a simple Swiss Army knife for http\/https troubleshooting and profiling.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/reorx\/httpstat\" target=\"_blank\" rel=\"noopener\"><strong>httpstat<\/strong><\/a>&nbsp;&#8211; is a tool that visualizes curl statistics in a way of beauty and clarity.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/gchaincl\/httplab\" target=\"_blank\" rel=\"noopener\"><strong>httplab<\/strong><\/a>&nbsp;&#8211; is an interactive web server.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/lynx.browser.org\/\" target=\"_blank\" rel=\"noopener\"><strong>Lynx<\/strong><\/a>&nbsp;&#8211; is a text browser for the World Wide Web.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/browsh-org\/browsh\/\" target=\"_blank\" rel=\"noopener\"><strong>Browsh<\/strong><\/a>&nbsp;&#8211; is a fully interactive, real-time, and modern text-based browser.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/dhamaniasad\/HeadlessBrowsers\" target=\"_blank\" rel=\"noopener\"><strong>HeadlessBrowsers<\/strong><\/a>&nbsp;&#8211; a list of (almost) all headless web browsers in existence.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/httpd.apache.org\/docs\/2.4\/programs\/ab.html\" target=\"_blank\" rel=\"noopener\"><strong>ab<\/strong><\/a>&nbsp;&#8211; is a single-threaded command line tool for measuring the performance of HTTP web servers.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/www.joedog.org\/siege-home\/\" target=\"_blank\" rel=\"noopener\"><strong>siege<\/strong><\/a>&nbsp;&#8211; is an http load testing and benchmarking utility.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/wg\/wrk\" target=\"_blank\" rel=\"noopener\"><strong>wrk<\/strong><\/a>&nbsp;&#8211; is a modern HTTP benchmarking tool capable of generating significant load.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/giltene\/wrk2\" target=\"_blank\" rel=\"noopener\"><strong>wrk2<\/strong><\/a>&nbsp;&#8211; is a constant throughput, correct latency recording variant of wrk.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/tsenart\/vegeta\" target=\"_blank\" rel=\"noopener\"><strong>vegeta<\/strong><\/a>&nbsp;&#8211; is a constant throughput, correct latency recording variant of wrk.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/codesenberg\/bombardier\" target=\"_blank\" rel=\"noopener\"><strong>bombardier<\/strong><\/a>&nbsp;&#8211; is a fast cross-platform HTTP benchmarking tool written in Go.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/cmpxchg16\/gobench\" target=\"_blank\" rel=\"noopener\"><strong>gobench<\/strong><\/a>&nbsp;&#8211; http\/https load testing and benchmarking tool.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/rakyll\/hey\" target=\"_blank\" rel=\"noopener\"><strong>hey<\/strong><\/a>&nbsp;&#8211; HTTP load generator, ApacheBench (ab) replacement, formerly known as rakyll\/boom.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/tarekziade\/boom\" target=\"_blank\" rel=\"noopener\"><strong>boom<\/strong><\/a>&nbsp;&#8211; is a script you can use to quickly smoke-test your web app deployment.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/shekyan\/slowhttptest\" target=\"_blank\" rel=\"noopener\"><strong>SlowHTTPTest<\/strong><\/a>&nbsp;&#8211; is a tool that simulates some Application Layer Denial of Service attacks by prolonging HTTP.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/OJ\/gobuster\" target=\"_blank\" rel=\"noopener\"><strong>gobuster<\/strong><\/a>&nbsp;&#8211; is a free and open source directory\/file &amp; DNS busting tool written in Go.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/ssllabs\/ssllabs-scan\" target=\"_blank\" rel=\"noopener\"><strong>ssllabs-scan<\/strong><\/a>&nbsp;&#8211; command-line reference-implementation client for SSL Labs APIs.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/mozilla\/http-observatory\" target=\"_blank\" rel=\"noopener\"><strong>http-observatory<\/strong><\/a>&nbsp;&#8211; Mozilla HTTP Observatory cli version.<\/p>\n\n\n\n<h1 class=\"wp-block-heading\">SSL<\/h1>\n\n\n\n<p>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/www.openssl.org\/\" target=\"_blank\" rel=\"noopener\"><strong>openssl<\/strong><\/a>&nbsp;&#8211; is a robust, commercial-grade, and full-featured toolkit for the TLS and SSL protocols.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/gnutls.org\/manual\/html_node\/gnutls_002dcli-Invocation.html\" target=\"_blank\" rel=\"noopener\"><strong>gnutls-cli<\/strong><\/a>&nbsp;&#8211; client program to set up a TLS connection to some other computer.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/nabla-c0d3\/sslyze\" target=\"_blank\" rel=\"noopener\"><strong>sslyze&nbsp;<\/strong><\/a>&#8211; fast and powerful SSL\/TLS server scanning library.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/rbsec\/sslscan\" target=\"_blank\" rel=\"noopener\"><strong>sslscan<\/strong><\/a>&nbsp;&#8211; tests SSL\/TLS enabled services to discover supported cipher suites.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/drwetter\/testssl.sh\" target=\"_blank\" rel=\"noopener\"><strong>testssl.sh<\/strong><\/a>&nbsp;&#8211; testing TLS\/SSL encryption anywhere on any port.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/mozilla\/cipherscan\" target=\"_blank\" rel=\"noopener\"><strong>cipherscan<\/strong><\/a>&nbsp;&#8211; a very simple way to find out which SSL ciphersuites are supported by a target.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"http:\/\/www.tarsnap.com\/spiped.html\" target=\"_blank\" rel=\"noopener\"><strong>spiped<\/strong><\/a>&nbsp;&#8211; is a utility for creating symmetrically encrypted and authenticated pipes between socket addresses.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/certbot\/certbot\" target=\"_blank\" rel=\"noopener\"><strong>Certbot<\/strong><\/a>&nbsp;&#8211; is EFF&#8217;s tool to obtain certs from Let&#8217;s Encrypt and (optionally) auto-enable HTTPS on your server.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/FiloSottile\/mkcert\" target=\"_blank\" rel=\"noopener\"><strong>mkcert<\/strong><\/a>&nbsp;&#8211; simple zero-config tool to make locally trusted development certificates with any names you&#8217;d like.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/square\/certstrap\" target=\"_blank\" rel=\"noopener\"><strong>certstrap<\/strong><\/a>&nbsp;&#8211; tools to bootstrap CAs, certificate requests, and signed certificates.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/yassineaboukir\/sublert\" target=\"_blank\" rel=\"noopener\"><strong>Sublert<\/strong><\/a>&nbsp;&#8211; is a security and reconnaissance tool to automatically monitor new subdomains.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/trimstray\/mkchain\" target=\"_blank\" rel=\"noopener\"><strong>mkchain<\/strong><\/a>&nbsp;&#8211; open source tool to help you build a valid SSL certificate chain.<\/p>\n\n\n\n<h1 class=\"wp-block-heading\">Security<\/h1>\n\n\n\n<p>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/access.redhat.com\/documentation\/en-us\/red_hat_enterprise_linux\/5\/html\/deployment_guide\/ch-selinux\" target=\"_blank\" rel=\"noopener\"><strong>SELinux<\/strong><\/a>&nbsp;&#8211; provides a flexible Mandatory Access Control (MAC) system built into the Linux kernel.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/wiki.ubuntu.com\/AppArmor\" target=\"_blank\" rel=\"noopener\"><strong>AppArmor<\/strong><\/a>&nbsp;&#8211; proactively protects the operating system and applications from external or internal threats.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/grapheneX\/grapheneX\" target=\"_blank\" rel=\"noopener\"><strong>grapheneX<\/strong><\/a>&nbsp;&#8211; Automated System Hardening Framework.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/dev-sec\/\" target=\"_blank\" rel=\"noopener\"><strong>DevSec Hardening Framework<\/strong><\/a>&nbsp;&#8211; Security + DevOps: Automatic Server Hardening.<\/p>\n\n\n\n<p><\/p>\n\n\n\n<h1 class=\"wp-block-heading\">TOR<\/h1>\n\n\n\n<p>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/GouveaHeitor\/nipe\" target=\"_blank\" rel=\"noopener\"><strong>Nipe<\/strong><\/a>&nbsp;&#8211; script to make Tor Network your default gateway.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/trimstray\/multitor\" target=\"_blank\" rel=\"noopener\"><strong>multitor<\/strong><\/a>&nbsp;&#8211; a tool that lets you create multiple TOR instances with a load-balancing.<\/p>\n\n\n\n<h1 class=\"wp-block-heading\">Network<\/h1>\n\n\n\n<p>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/www.wireshark.org\/\" target=\"_blank\" rel=\"noopener\"><strong>Wireshark<\/strong><\/a>&nbsp;&#8211; is the world\u2019s foremost and widely-used network protocol analyzer.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/www.ettercap-project.org\/\" target=\"_blank\" rel=\"noopener\"><strong>Ettercap<\/strong><\/a>&nbsp;&#8211; is a comprehensive network monitor tool.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/etherape.sourceforge.io\/\" target=\"_blank\" rel=\"noopener\"><strong>EtherApe<\/strong><\/a>&nbsp;&#8211; is a graphical network monitoring solution.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/packetsender.com\/\" target=\"_blank\" rel=\"noopener\"><strong>Packet Sender<\/strong><\/a>&nbsp;&#8211; is a networking utility for packet generation and built-in UDP\/TCP\/SSL client and servers.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/ostinato.org\/\" target=\"_blank\" rel=\"noopener\"><strong>Ostinato<\/strong><\/a>&nbsp;&#8211; is a packet crafter and traffic generator.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/jmeter.apache.org\/\" target=\"_blank\" rel=\"noopener\"><strong>JMeter\u2122<\/strong><\/a>&nbsp;&#8211; open source software to load test functional behavior and measure performance.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/locustio\/locust\" target=\"_blank\" rel=\"noopener\"><strong>locust<\/strong><\/a>&nbsp;&#8211; scalable user load testing tool written in Python.<\/p>\n\n\n\n<h1 class=\"wp-block-heading\">Browsers<\/h1>\n\n\n\n<p>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/www.ssllabs.com\/ssltest\/viewMyClient.html\" target=\"_blank\" rel=\"noopener\"><strong>SSL\/TLS Capabilities of Your Browser<\/strong><\/a>&nbsp;&#8211; test your browser&#8217;s SSL implementation.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/caniuse.com\/\" target=\"_blank\" rel=\"noopener\"><strong>Can I use<\/strong><\/a>&nbsp;&#8211; provides up-to-date browser support tables for support of front-end web technologies.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/panopticlick.eff.org\/\" target=\"_blank\" rel=\"noopener\"><strong>Panopticlick 3.0<\/strong><\/a>&nbsp;&#8211; is your browser safe against tracking?<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/privacy.net\/analyzer\/\" target=\"_blank\" rel=\"noopener\"><strong>Privacy Analyzer<\/strong><\/a>&nbsp;&#8211; see what data is exposed from your browser.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/browserleaks.com\/\" target=\"_blank\" rel=\"noopener\"><strong>Web Browser Security<\/strong><\/a>&nbsp;&#8211; it&#8217;s all about Web Browser fingerprinting.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/www.howsmyssl.com\/\" target=\"_blank\" rel=\"noopener\"><strong>How&#8217;s My SSL?<\/strong><\/a>&nbsp;&#8211; help a web server developer learn what real world TLS clients were capable of.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/suche.org\/sslClientInfo\" target=\"_blank\" rel=\"noopener\"><strong>sslClientInfo<\/strong><\/a>&nbsp;&#8211; client test (incl TLSv1.3 information).<\/p>\n\n\n\n<h1 class=\"wp-block-heading\">SSL\/Security<\/h1>\n\n\n\n<p>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/www.ssllabs.com\/ssltest\/\" target=\"_blank\" rel=\"noopener\"><strong>SSLLabs Server Test<\/strong><\/a>&nbsp;&#8211; performs a deep analysis of the configuration of any SSL web server.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/dev.ssllabs.com\/ssltest\/\" target=\"_blank\" rel=\"noopener\"><strong>SSLLabs Server Test (DEV)<\/strong><\/a>&nbsp;&#8211; performs a deep analysis of the configuration of any SSL web server.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/www.immuniweb.com\/ssl\/\" target=\"_blank\" rel=\"noopener\"><strong>ImmuniWeb\u00ae SSLScan<\/strong><\/a>&nbsp;&#8211; test SSL\/TLS (PCI DSS, HIPAA and NIST).<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/www.jitbit.com\/sslcheck\/\" target=\"_blank\" rel=\"noopener\"><strong>SSL Check<\/strong><\/a>&nbsp;&#8211; scan your website for non-secure content.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"http:\/\/www.ssltools.com\/\" target=\"_blank\" rel=\"noopener\"><strong>SSL Scanner<\/strong><\/a>&nbsp;&#8211; analyze website security.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/cryptcheck.fr\/\" target=\"_blank\" rel=\"noopener\"><strong>CryptCheck<\/strong><\/a>&nbsp;&#8211; test your TLS server configuration (e.g. ciphers).<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/urlscan.io\/\" target=\"_blank\" rel=\"noopener\"><strong>urlscan.io<\/strong><\/a>&nbsp;&#8211; service to scan and analyse websites.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/report-uri.com\/home\/tools\" target=\"_blank\" rel=\"noopener\"><strong>Report URI<\/strong><\/a>&nbsp;&#8211; monitoring security policies like CSP and HPKP.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/csp-evaluator.withgoogle.com\/\" target=\"_blank\" rel=\"noopener\"><strong>CSP Evaluator<\/strong><\/a>&nbsp;&#8211; allows developers and security experts to check if a Content Security Policy.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/uselesscsp.com\/\" target=\"_blank\" rel=\"noopener\"><strong>Useless CSP<\/strong><\/a>&nbsp;&#8211; public list about CSP in some big players (might make them care a bit more).<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/whynohttps.com\/\" target=\"_blank\" rel=\"noopener\"><strong>Why No HTTPS?<\/strong><\/a>&nbsp;&#8211; top 100 websites by Alexa rank not automatically redirecting insecure requests.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/ciphersuite.info\/\" target=\"_blank\" rel=\"noopener\"><strong>TLS Cipher Suite Search<\/strong><\/a>&#8211; cipher suite search engine.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/RaymiiOrg\/cipherli.st\" target=\"_blank\" rel=\"noopener\"><strong>cipherli.st<\/strong><\/a>&nbsp;&#8211; strong ciphers for Apache, Nginx, Lighttpd, and more.<strong>*<\/strong><br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/2ton.com.au\/dhtool\/\" target=\"_blank\" rel=\"noopener\"><strong>dhtool<\/strong><\/a>&nbsp;&#8211; public Diffie-Hellman parameter service\/tool.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/badssl.com\/\" target=\"_blank\" rel=\"noopener\"><strong>badssl.com<\/strong><\/a>&nbsp;&#8211; memorable site for testing clients against bad SSL configs.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/tlsfun.de\/\" target=\"_blank\" rel=\"noopener\"><strong>tlsfun.de<\/strong><\/a>&nbsp;&#8211; registered for various tests regarding the TLS\/SSL protocol.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/sslmate.com\/caa\/\" target=\"_blank\" rel=\"noopener\"><strong>CAA Record Helper<\/strong><\/a>&nbsp;&#8211; generate a CAA policy.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/ccadb.org\/resources\" target=\"_blank\" rel=\"noopener\"><strong>Common CA Database<\/strong><\/a>&nbsp;&#8211; repository of information about CAs, and their root and intermediate certificates.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/certstream.calidog.io\/\" target=\"_blank\" rel=\"noopener\"><strong>CERTSTREAM<\/strong><\/a>&nbsp;&#8211; real-time certificate transparency log update stream.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/crt.sh\/\" target=\"_blank\" rel=\"noopener\"><strong>crt.sh<\/strong><\/a>&nbsp;&#8211; discovers certificates by continually monitoring all of the publicly known CT.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/www.hardenize.com\/\" target=\"_blank\" rel=\"noopener\"><strong>Hardenize<\/strong><\/a>&nbsp;&#8211; deploy the security standards.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/cryptcheck.fr\/suite\/\" target=\"_blank\" rel=\"noopener\"><strong>Cipher suite compatibility<\/strong><\/a>&nbsp;&#8211; test TLS cipher suite compatibility.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/www.urlvoid.com\/\" target=\"_blank\" rel=\"noopener\"><strong>urlvoid<\/strong><\/a>&nbsp;&#8211; this service helps you detect potentially malicious websites.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/securitytxt.org\/\" target=\"_blank\" rel=\"noopener\"><strong>security.txt<\/strong><\/a>&nbsp;&#8211; a proposed standard (generator) which allows websites to define security policies.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/mozilla\/ssl-config-generator\" target=\"_blank\" rel=\"noopener\"><strong>ssl-config-generator<\/strong><\/a>&nbsp;&#8211; help you follow the Mozilla Server Side TLS configuration guidelines.<\/p>\n\n\n\n<h1 class=\"wp-block-heading\">HTTP Headers &amp; Web Linters<\/h1>\n\n\n\n<p>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/securityheaders.com\/\" target=\"_blank\" rel=\"noopener\"><strong>Security Headers<\/strong><\/a>&nbsp;&#8211; analyse the HTTP response headers (with rating system to the results).<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/observatory.mozilla.org\/\" target=\"_blank\" rel=\"noopener\"><strong>Observatory by Mozilla<\/strong><\/a>&nbsp;&#8211; set of tools to analyze your website.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/webhint.io\/\" target=\"_blank\" rel=\"noopener\"><strong>webhint<\/strong><\/a>&nbsp;&#8211; is a linting tool that will help you with your site&#8217;s accessibility, speed, security, and more.<\/p>\n\n\n\n<h1 class=\"wp-block-heading\">DNS<\/h1>\n\n\n\n<p>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"http:\/\/viewdns.info\/\" target=\"_blank\" rel=\"noopener\"><strong>ViewDNS<\/strong><\/a>&nbsp;&#8211; one source for free DNS related tools and information.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/dnslookup.org\/\" target=\"_blank\" rel=\"noopener\"><strong>DNSLookup<\/strong><\/a>&nbsp;&#8211; is an advanced DNS lookup tool.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/dnslytics.com\/\" target=\"_blank\" rel=\"noopener\"><strong>DNSlytics<\/strong><\/a>&nbsp;&#8211; online DNS investigation tool.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/dnsspy.io\/\" target=\"_blank\" rel=\"noopener\"><strong>DNS Spy<\/strong><\/a>&nbsp;&#8211; monitor, validate and verify your DNS configurations.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/zonemaster.iis.se\/en\/\" target=\"_blank\" rel=\"noopener\"><strong>Zonemaster<\/strong><\/a>&nbsp;&#8211; helps you to control how your DNS works.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"http:\/\/leafdns.com\/\" target=\"_blank\" rel=\"noopener\"><strong>Leaf DNS<\/strong><\/a>&nbsp;&#8211; comprehensive DNS tester.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/findsubdomains.com\/\" target=\"_blank\" rel=\"noopener\"><strong>Find subdomains online<\/strong><\/a>&nbsp;&#8211; find subdomains for security assessment penetration test.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/dnsdumpster.com\/\" target=\"_blank\" rel=\"noopener\"><strong>DNSdumpster<\/strong><\/a>&nbsp;&#8211; dns recon &amp; research, find &amp; lookup dns records.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/dnstable.com\/\" target=\"_blank\" rel=\"noopener\"><strong>DNS Table online<\/strong><\/a>&nbsp;&#8211; search for DNS records by domain, IP, CIDR, ISP.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/intodns.com\/\" target=\"_blank\" rel=\"noopener\"><strong>intoDNS<\/strong><\/a>&nbsp;&#8211; DNS and mail server health checker.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"http:\/\/www.zonecut.net\/dns\/\" target=\"_blank\" rel=\"noopener\"><strong>DNS Bajaj<\/strong><\/a>&nbsp;&#8211; check the delegation of your domain.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/www.buddyns.com\/delegation-lab\/\" target=\"_blank\" rel=\"noopener\"><strong>BuddyDNS Delegation LAB<\/strong><\/a>&nbsp;&#8211; check, trace and visualize delegation of your domain.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/dnssec-debugger.verisignlabs.com\/\" target=\"_blank\" rel=\"noopener\"><strong>dnssec-debugger<\/strong><\/a>&nbsp;&#8211; DS or DNSKEY records validator.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"http:\/\/ptrarchive.com\/\" target=\"_blank\" rel=\"noopener\"><strong>PTRarchive.com<\/strong><\/a>&nbsp;&#8211; this site is responsible for the safekeeping of historical reverse DNS records.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"http:\/\/xip.io\/\" target=\"_blank\" rel=\"noopener\"><strong>xip.io<\/strong><\/a>&nbsp;&#8211; wildcard DNS for everyone.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/nip.io\/\" target=\"_blank\" rel=\"noopener\"><strong>nip.io<\/strong><\/a>&nbsp;&#8211; dead simple wildcard DNS for any IP Address.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/ceipam.eu\/en\/dnslookup.php\" target=\"_blank\" rel=\"noopener\"><strong>dnslookup (ceipam)<\/strong><\/a>&nbsp;&#8211; one of the best DNS propagation checker (and not only).<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/whatsmydns.com\/\" target=\"_blank\" rel=\"noopener\"><strong>What&#8217;s My DNS<\/strong><\/a>&nbsp;&#8211; DNS propagation checking tool.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/blog.erbbysam.com\/index.php\/2019\/02\/09\/dnsgrep\/\" target=\"_blank\" rel=\"noopener\"><strong>DNSGrep<\/strong><\/a>&nbsp;&#8211; quickly searching large DNS datasets.<\/p>\n\n\n\n<h1 class=\"wp-block-heading\">Net-tools<\/h1>\n\n\n\n<p>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/toolbar.netcraft.com\/site_report\" target=\"_blank\" rel=\"noopener\"><strong>Netcraft<\/strong><\/a>&nbsp;&#8211; detailed report about the site, helping you to make informed choices about their integrity.<strong>*<\/strong><br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/atlas.ripe.net\/\" target=\"_blank\" rel=\"noopener\"><strong>RIPE NCC Atlas<\/strong><\/a>&nbsp;&#8211; a global, open, distributed Internet measurement platform.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/www.robtex.com\/\" target=\"_blank\" rel=\"noopener\"><strong>Robtex<\/strong><\/a>&nbsp;&#8211; uses various sources to gather public information about IP numbers, domain names, host names, etc.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/securitytrails.com\/\" target=\"_blank\" rel=\"noopener\"><strong>Security Trails<\/strong><\/a>&nbsp;&#8211; APIs for Security Companies, Researchers and Teams.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/tools.keycdn.com\/curl\" target=\"_blank\" rel=\"noopener\"><strong>Online Curl<\/strong><\/a>&nbsp;&#8211; curl test, analyze HTTP Response Headers.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/extendsclass.com\/\" target=\"_blank\" rel=\"noopener\"><strong>Online Tools for Developers<\/strong><\/a>&nbsp;&#8211; HTTP API tools, testers, encoders, converters, formatters, and other tools.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/ping.eu\/\" target=\"_blank\" rel=\"noopener\"><strong>Ping.eu<\/strong><\/a>&nbsp;&#8211; online Ping, Traceroute, DNS lookup, WHOIS and others.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/network-tools.com\/\" target=\"_blank\" rel=\"noopener\"><strong>Network-Tools<\/strong><\/a>&nbsp;&#8211; network tools for webmasters, IT technicians &amp; geeks.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/bgpview.io\/\" target=\"_blank\" rel=\"noopener\"><strong>BGPview<\/strong><\/a>&nbsp;&#8211; search for any ASN, IP, Prefix or Resource name.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/isbgpsafeyet.com\/\" target=\"_blank\" rel=\"noopener\"><strong>Is BGP safe yet?<\/strong><\/a>&nbsp;&#8211; check BGP (RPKI) security of ISPs and other major Internet players.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/riseup.net\/\" target=\"_blank\" rel=\"noopener\"><strong>Riseup<\/strong><\/a>&nbsp;&#8211; provides online communication tools for people and groups working on liberatory social change.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/www.virustotal.com\/gui\/home\/upload\" target=\"_blank\" rel=\"noopener\"><strong>VirusTotal<\/strong><\/a>&nbsp;&#8211; analyze suspicious files and URLs to detect types of malware.<\/p>\n\n\n\n<h1 class=\"wp-block-heading\">Privacy<\/h1>\n\n\n\n<p>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/www.privacytools.io\/\" target=\"_blank\" rel=\"noopener\"><strong>privacytools.io<\/strong><\/a>&nbsp;&#8211; provides knowledge and tools to protect your privacy against global mass surveillance.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/dnsprivacy.org\/wiki\/display\/DP\/DNS+Privacy+Test+Servers\" target=\"_blank\" rel=\"noopener\"><strong>DNS Privacy Test Servers<\/strong><\/a>&nbsp;&#8211; DNS privacy recursive servers list (with a &#8216;no logging&#8217; policy).<\/p>\n\n\n\n<h1 class=\"wp-block-heading\">Encoders\/Decoders and Regex testing<\/h1>\n\n\n\n<p>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/www.url-encode-decode.com\/\" target=\"_blank\" rel=\"noopener\"><strong>URL Encode\/Decode<\/strong><\/a>&nbsp;&#8211; tool from above to either encode or decode a string of text.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/uncoder.io\/\" target=\"_blank\" rel=\"noopener\"><strong>Uncoder<\/strong><\/a>&nbsp;&#8211; the online translator for search queries on log data.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/regex101.com\/\" target=\"_blank\" rel=\"noopener\"><strong>Regex101<\/strong><\/a>&nbsp;&#8211; online regex tester and debugger: PHP, PCRE, Python, Golang and JavaScript.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/regexr.com\/\" target=\"_blank\" rel=\"noopener\"><strong>RegExr<\/strong><\/a>&nbsp;&#8211; online tool to learn, build, &amp; test Regular Expressions (RegEx \/ RegExp).<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/www.regextester.com\/\" target=\"_blank\" rel=\"noopener\"><strong>RegEx Testing<\/strong><\/a>&nbsp;&#8211; online regex testing tool.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/www.regexpal.com\/\" target=\"_blank\" rel=\"noopener\"><strong>RegEx Pal<\/strong><\/a>&nbsp;&#8211; online regex testing tool + other tools.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/gchq.github.io\/CyberChef\/\" target=\"_blank\" rel=\"noopener\"><strong>The Cyber Swiss Army Knife<\/strong><\/a>&nbsp;&#8211; a web app for encryption, encoding, compression and data analysis<\/p>\n\n\n\n<p>.<\/p>\n\n\n\n<h1 class=\"wp-block-heading\">Passwords<\/h1>\n\n\n\n<p>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/haveibeenpwned.com\/\" target=\"_blank\" rel=\"noopener\"><strong>have i been pwned?<\/strong><\/a>&nbsp;&#8211; check if you have an account that has been compromised in a data breach.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/www.dehashed.com\/\" target=\"_blank\" rel=\"noopener\"><strong>dehashed<\/strong><\/a>&nbsp;&#8211; is a hacked database search engine.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/leakedsource.ru\/\" target=\"_blank\" rel=\"noopener\"><strong>Leaked Source<\/strong><\/a>&nbsp;&#8211; is a collaboration of data found online in the form of a lookup.<\/p>\n\n\n\n<h1 class=\"wp-block-heading\">CVE\/Exploits databases<\/h1>\n\n\n\n<p>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/cve.mitre.org\/\" target=\"_blank\" rel=\"noopener\"><strong>CVE Mitre<\/strong><\/a>&nbsp;&#8211; list of publicly known cybersecurity vulnerabilities.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/www.cvedetails.com\/\" target=\"_blank\" rel=\"noopener\"><strong>CVE Details<\/strong><\/a>&nbsp;&#8211; CVE security vulnerability advanced database.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/www.exploit-db.com\/\" target=\"_blank\" rel=\"noopener\"><strong>Exploit DB<\/strong><\/a>&nbsp;&#8211; CVE compliant archive of public exploits and corresponding vulnerable software.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/0day.today\/\" target=\"_blank\" rel=\"noopener\"><strong>0day.today<\/strong><\/a>&nbsp;&#8211; exploits market provides you the possibility to buy\/sell zero-day exploits.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/sploitus.com\/\" target=\"_blank\" rel=\"noopener\"><strong>sploitus<\/strong><\/a>&nbsp;&#8211; the exploit and tools database.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/cxsecurity.com\/exploit\/\" target=\"_blank\" rel=\"noopener\"><strong>cxsecurity<\/strong><\/a>&nbsp;&#8211; free vulnerability database.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/www.vulncode-db.com\/\" target=\"_blank\" rel=\"noopener\"><strong>Vulncode-DB<\/strong><\/a>&nbsp;&#8211; is a database for vulnerabilities and their corresponding source code if available.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/cveapi.com\/\" target=\"_blank\" rel=\"noopener\"><strong>cveapi<\/strong><\/a>&nbsp;&#8211; free API for CVE data.<\/p>\n\n\n\n<h1 class=\"wp-block-heading\">Crypto<\/h1>\n\n\n\n<p>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/keybase.io\/\" target=\"_blank\" rel=\"noopener\"><strong>Keybase<\/strong><\/a>&nbsp;&#8211; it&#8217;s open source and powered by public-key cryptography.<\/p>\n\n\n\n<h1 class=\"wp-block-heading\">PGP Keyservers<\/h1>\n\n\n\n<p>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/keyserver.ubuntu.com\/\" target=\"_blank\" rel=\"noopener\"><strong>SKS OpenPGP Key server<\/strong><\/a>&nbsp;&#8211; services for the SKS keyservers used by OpenPGP.<\/p>\n\n\n\n<h1 class=\"wp-block-heading\">HTTP(s) Services<\/h1>\n\n\n\n<p>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/varnish-cache.org\/\" target=\"_blank\" rel=\"noopener\"><strong>Varnish Cache<\/strong><\/a>&nbsp;&#8211; HTTP accelerator designed for content-heavy dynamic web sites.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/nginx.org\/\" target=\"_blank\" rel=\"noopener\"><strong>Nginx<\/strong><\/a>&nbsp;&#8211; open source web and reverse proxy server that is similar to Apache, but very light weight.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/openresty.org\/en\/\" target=\"_blank\" rel=\"noopener\"><strong>OpenResty<\/strong><\/a>&nbsp;&#8211; is a dynamic web platform based on NGINX and LuaJIT.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/alibaba\/tengine\" target=\"_blank\" rel=\"noopener\"><strong>Tengine<\/strong><\/a>&nbsp;&#8211; a distribution of Nginx with some advanced features.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/caddyserver.com\/\" target=\"_blank\" rel=\"noopener\"><strong>Caddy Server<\/strong><\/a>&nbsp;&#8211; is an open source, HTTP\/2-enabled web server with HTTPS by default.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/www.haproxy.org\/\" target=\"_blank\" rel=\"noopener\"><strong>HAProxy<\/strong><\/a>&nbsp;&#8211; the reliable, high performance TCP\/HTTP load balancer.<\/p>\n\n\n\n<h1 class=\"wp-block-heading\">DNS Services<\/h1>\n\n\n\n<p>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/nlnetlabs.nl\/projects\/unbound\/about\/\" target=\"_blank\" rel=\"noopener\"><strong>Unbound<\/strong><\/a>&nbsp;&#8211; validating, recursive, and caching DNS resolver (with TLS).<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/www.knot-resolver.cz\/\" target=\"_blank\" rel=\"noopener\"><strong>Knot Resolver<\/strong><\/a>&nbsp;&#8211; caching full resolver implementation, including both a resolver library and a daemon.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/www.powerdns.com\/\" target=\"_blank\" rel=\"noopener\"><strong>PowerDNS<\/strong><\/a>&nbsp;&#8211; is an open source authoritative DNS server, written in C++ and licensed under the GPL.<\/p>\n\n\n\n<h1 class=\"wp-block-heading\">Other Services<\/h1>\n\n\n\n<p>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/z3APA3A\/3proxy\" target=\"_blank\" rel=\"noopener\"><strong>3proxy<\/strong><\/a>&nbsp;&#8211; tiny free proxy server.<\/p>\n\n\n\n<h1 class=\"wp-block-heading\">Security\/hardening<\/h1>\n\n\n\n<p>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/twitter.com\/EmeraldOnion\" target=\"_blank\" rel=\"noopener\"><strong>Emerald Onion<\/strong><\/a>&nbsp;&#8211; is a 501(c)(3) nonprofit organization and transit internet service provider (ISP).<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/pi-hole\/pi-hole\" target=\"_blank\" rel=\"noopener\"><strong>pi-hole<\/strong><\/a>&nbsp;&#8211; the Pi-hole\u00ae is a DNS sinkhole that protects your devices from unwanted content.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/stamparm\/maltrail\" target=\"_blank\" rel=\"noopener\"><strong>maltrail<\/strong><\/a>&nbsp;&#8211; malicious traffic detection system.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/Netflix\/security_monkey\" target=\"_blank\" rel=\"noopener\"><strong>security_monkey<\/strong><\/a>&nbsp;&#8211; monitors AWS, GCP, OpenStack, and GitHub orgs for assets and their changes over time.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/firecracker-microvm\/firecracker\" target=\"_blank\" rel=\"noopener\"><strong>firecracker<\/strong><\/a>&nbsp;&#8211; secure and fast microVMs for serverless computing.<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/StreisandEffect\/streisand\" target=\"_blank\" rel=\"noopener\"><strong>streisand<\/strong><\/a>&nbsp;&#8211; sets up a new server running your choice of WireGuard, OpenSSH, OpenVPN, and more.<\/p>\n\n\n\n<h1 class=\"wp-block-heading\">Tools<\/h1>\n\n\n\n<p>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/www.capanalysis.net\/ca\/\" target=\"_blank\" rel=\"noopener\"><strong>CapAnalysis<\/strong><\/a>&nbsp;&#8211; web visual tool to analyze large amounts of captured network traffic (PCAP analyzer).<br>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/github.com\/digitalocean\/netbox\" target=\"_blank\" rel=\"noopener\"><strong>netbox<\/strong><\/a>&nbsp;&#8211; IP address management (IPAM) and data center infrastructure management (DCIM) tool.<\/p>\n\n\n\n<h1 class=\"wp-block-heading\"><a href=\"https:\/\/github.com\/cloudcommunity\/the-book-of-secret-knowledge#black_small_square-labs\" target=\"_blank\" rel=\"noopener\"><\/a>\u25aa\ufe0f&nbsp;Labs<\/h1>\n\n\n\n<p>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/labs.networkreliability.engineering\/\" target=\"_blank\" rel=\"noopener\"><strong>NRE Labs<\/strong><\/a>&nbsp;&#8211; learn automation by doing it. Right now, right here, in your browser.<\/p>\n\n\n\n<h1 class=\"wp-block-heading\"><a href=\"https:\/\/github.com\/cloudcommunity\/the-book-of-secret-knowledge#black_small_square-other-1\" target=\"_blank\" rel=\"noopener\"><\/a>\u25aa\ufe0f&nbsp;Other<\/h1>\n\n\n\n<p>&nbsp;&nbsp;\ud83d\udd38&nbsp;<a href=\"https:\/\/ee.lbl.gov\/\" target=\"_blank\" rel=\"noopener\"><strong>LBNL&#8217;s Network Research Group<\/strong><\/a>&nbsp;&#8211; home page of the Network Research Group (NRG).<\/p>\n\n\n\n<figure class=\"wp-block-embed is-type-video is-provider-youtube wp-block-embed-youtube wp-embed-aspect-16-9 wp-has-aspect-ratio\"><div class=\"wp-block-embed__wrapper\">\n<iframe loading=\"lazy\"  id=\"_ytid_26984\"  width=\"760\" height=\"427\"  data-origwidth=\"760\" data-origheight=\"427\" src=\"https:\/\/www.youtube.com\/embed\/?enablejsapi=1&#038;list=PLTCuRW0ikUdP5OrEUckFdQPHeE05ZeS5z&#038;autoplay=0&#038;cc_load_policy=0&#038;cc_lang_pref=&#038;iv_load_policy=1&#038;loop=0&#038;rel=1&#038;fs=1&#038;playsinline=0&#038;autohide=2&#038;theme=dark&#038;color=red&#038;controls=1&#038;disablekb=0&#038;\" class=\"__youtube_prefs__  epyt-is-override  no-lazyload\" title=\"YouTube player\"  allow=\"fullscreen; accelerometer; autoplay; clipboard-write; encrypted-media; gyroscope; picture-in-picture; web-share\" referrerpolicy=\"strict-origin-when-cross-origin\" allowfullscreen data-no-lazy=\"1\" data-skipgform_ajax_framebjll=\"\"><\/iframe>\n<\/div><\/figure>\n","protected":false},"excerpt":{"rendered":"<p>Network &nbsp;&nbsp;\ud83d\udd38&nbsp;PuTTY&nbsp;&#8211; is an SSH and telnet client, developed originally by Simon Tatham.&nbsp;&nbsp;\ud83d\udd38&nbsp;Mosh&nbsp;&#8211; is a SSH wrapper designed to keep a SSH session alive over a volatile connection.&nbsp;&nbsp;\ud83d\udd38&nbsp;Eternal Terminal&nbsp;&#8211; enables&#8230; <\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_joinchat":[],"footnotes":""},"categories":[2],"tags":[],"class_list":["post-22773","post","type-post","status-publish","format-standard","hentry","category-uncategorised"],"_links":{"self":[{"href":"https:\/\/www.devopsschool.com\/blog\/wp-json\/wp\/v2\/posts\/22773","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.devopsschool.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.devopsschool.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.devopsschool.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.devopsschool.com\/blog\/wp-json\/wp\/v2\/comments?post=22773"}],"version-history":[{"count":15,"href":"https:\/\/www.devopsschool.com\/blog\/wp-json\/wp\/v2\/posts\/22773\/revisions"}],"predecessor-version":[{"id":23508,"href":"https:\/\/www.devopsschool.com\/blog\/wp-json\/wp\/v2\/posts\/22773\/revisions\/23508"}],"wp:attachment":[{"href":"https:\/\/www.devopsschool.com\/blog\/wp-json\/wp\/v2\/media?parent=22773"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.devopsschool.com\/blog\/wp-json\/wp\/v2\/categories?post=22773"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.devopsschool.com\/blog\/wp-json\/wp\/v2\/tags?post=22773"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}