360-FAAR alternatives

Looking for a better tool, or simply want to learn about alternatives? There is typically more than one option.

Alternatives (by tag)

76

Alternative: Docker Bench for Security

Docker Bench for Security is a small security scanner to perform several tests that are part of the Docker CIS benchmark.

Project details

Docker Bench for Security is written in shell script.

Strengths

  • + Screen output is colored
  • + More than 25 contributors
  • + More than 2000 GitHub stars
  • + The source code of this software is available

Typical usage

  • application security
  • security assessment

Docker Bench for Security project page

85

Alternative: Prowler

Prowler is a security tool to perform security audits on AWS configurations. It helps to find configuration flaws and improve system hardening.

Project details

Prowler is written in shell script.

Strengths

  • + The source code of this software is available

Typical usage

  • security assessment
  • system hardening

Prowler project page

59

Alternative: 0trace.py

The 0trace.py utility is a rewrite of 0trace (by another author) to perform reconnaissance and bypass network firewalls.

This security tool enables the user to perform hop enumeration (similar to traceroute). Instead of sending actual packets, it uses an established TCP connection.

85

Alternative: Assimilator

Assimilator is a firewall orchestration tool. It allows configuration and automation of firewall rules by proxy requests to different types of firewalls.

Project details

Assimilator is written in Python.

Strengths

  • + The source code of this software is available

Typical usage

  • network traffic filtering

Assimilator project page

64

Alternative: DFWFW (Docker Firewall Framework)

DFWFW, short of Docker Firewall Framework, offers easy administration of the iptables rules of Docker containers. It updates using event streams.

Project details

DFWFW is written in Perl.

Strengths

  • + The source code of this software is available

Weaknesses

  • - Full name of author is unknown

Typical usage

  • firewall management

DFWFW project page

78

Alternative: Douane

Douane is an application firewall that interacts with the user to allow or deny new network connections.

Project details

Douane is written in C, C++, GTK+.

Strengths

  • + The source code of this software is available

Typical usage

  • network traffic filtering

Douane project page

97

Alternative: FireHOL

FireHOL is promoted as an iptables stateful packet filtering firewall for humans. It also comes with FireQOS, which a bandwidth shaper based on tc.

Project details

FireHOL is written in shell script.

Strengths

  • + More than 500 GitHub stars
  • + The source code of this software is available

Typical usage

  • firewall management
  • network traffic filtering

FireHOL project page

67

Alternative: Knock

A port knocking implementation to make network ports to become stealth or trigger events based on a port knocking sequence.

Knock implements the principle of port knocking. It does so by using libpcap to sniff network traffic on interfaces and then use that to see if it matches a predefined sequence of steps.

Project details

Knock is written in C.

Strengths

  • + Project is mature (10+ years)

Weaknesses

  • - No updates for a while

Knock project page

56

Alternative: LPFW (LeoPard FloWer)

LPFW is the abbreviation for LeoPard FloWer and is an application firewall for Linux.

Project details

LPFW is written in C++, Python.

Strengths

  • + The source code of this software is available

Weaknesses

  • - Unknown project license

Typical usage

  • network traffic filtering

LPFW project page

74

Alternative: nftables

nftables is a subsystem of the Linux kernel to filter and classify network traffic and supposed to replace netfilter.

nftables is supposed to replace netfilter as the primary interface of network filtering. It is available since Linux kernel 3.13. Both netfilter and nftables have been co-authored by Patrick McHardy.

Project details

nftables is written in C.

Strengths

  • + The source code of this software is available

Typical usage

  • network traffic filtering

nftables project page

64

Alternative: OpenSnitch

OpenSnitch is a Linux port of the popular macOS Little Snitch application firewall

OpenSnitch is a tool based on Little Snitch, a macOS application level firewall. All outgoing connections are monitored and the user is alerted when a new outgoing connection occurs. This allows the user to detect and block any unwanted connections.

The OpenSnitch tool relies on NFQUEUE, which is an extension for iptables. With this extension software running in userland can intercept IP packets and allow/drop them.

Project details

OpenSnitch is written in Python.

Strengths

  • + More than 2000 GitHub stars
  • + The source code of this software is available

Typical usage

  • network traffic filtering

OpenSnitch project page

60

Alternative: opensvp

Opensvp is a security tool to test firewall software. It uses protocol level attacks to determine if the firewall is vulnerable to a type of attack.

Project details

opensvp is written in Python.

Strengths

  • + The source code of this software is available

Typical usage

  • application testing
  • defense testing
  • penetration test
  • security assessment

opensvp project page

100

Alternative: Faraday

Faraday is collaboration tool for pentest assignments and vulnerability management. It allows integration with a number of other security tools.

Project details

Faraday is written in Python.

Strengths

  • + Commercial support available
  • + More than 1000 GitHub stars
  • + The source code of this software is available

Typical usage

  • collaboration
  • penetration test
  • security assessment
  • vulnerability scanning

Faraday project page

84

Alternative: Scout2

Scout2 is a security tool to assess the security of an AWS environment. It can be used for system hardening and IT audits.

Project details

Scout2 is written in Python.

Strengths

  • + More than 10 contributors
  • + More than 500 GitHub stars

Typical usage

  • IT audit
  • security assessment
  • self-assessment
  • system hardening

Scout2 project page

93

Alternative: WordPress Exploit Framework (WPXF)

The WordPress Exploit Framework (WPXF) is a framework written in Ruby. As the name implies, it aids in pentesting WordPress installations.

This framework is a tool that can be used as part of the pentesters toolbox. When running the tool, you will have to define a host, exploit, and payload. The tool is less friendly for beginners, but more experienced pentesters will find no difficulty in using it.

Project details

WordPress Exploit Framework is written in Ruby.

Strengths

  • + The source code of this software is available

Weaknesses

  • - Has longer learning curve

Typical usage

  • penetration test
  • security assessment
  • vulnerability scanning

WordPress Exploit Framework project page