Tools starting with B

Looking for new tools to extend your tool box? The top 100 list of best security tools is a great start.

BAP (Binary Analysis Platform)

BAP is the abbreviation for Binary Analysis Platform, a toolkit created by the Carnegie Mellon University. It helps with reverse engineering and program analysis. As it focuses on the analysis of binaries, it does not require the source code. Supported hardware architectures include ARM, x86, x86-64, PowerPC, and MIPS.

BDA (Big Data Audit)

BDA is a vulnerability scanner for big data tools like Hadoop and Spark. It searches for configuration weaknesses and reports them. Read how it works in this review.

BTLE-Sniffer (btlesniffer)

BTLE-Sniffer is a scanning tool that scans Bluetooth Low Energy (BLE) devices and tries to identify them. Read how it works in this tool review.

Bandit

Bandit is an AST-based static analyzer for analyzing Python code. It helps with finding code flaws that could lead to security vulnerabilities.


Latest release: 1.8.0 [Nov. 27, 2024]

Bash Scanner

Bash Scanner is a security tool that does a quick scan to see if there are vulnerable packages. It uses an external service to validate.

Bastille Linux

Bastille Linux was a popular tool to perform hardening of systems running Linux and other flavors. It has not received updates in the last years.

BeEF

The Browser Exploitation Framework (or BeEF) is a penetration testing tool that focuses on the web browser.

Belati

Belati is security tool to collect public data and information and calls itself a Swiss army knife for OSINT purposes.

BetterCAP

BetterCAP is a complete, modular, portable and easily extensible MitM tool and framework. It is maintained well and appreciated by many.


Latest release: 2.40.0 [Sept. 14, 2024]

Binary Analysis Next Generation (BANG)

Binary Analysis Next Generation (BANG) or binaryanalysis-ng is a security tool to perform binary analysis by Armijn Hemel. Learn how the tool works.

Bitscout

Bitscout is a security tool that allows professionals performing digital forensics remotely. The toolkit creates a live-cd for this purpose.

BlackBox

BlackBox allows you to store secrets safely in a version control system (VCS) like Git, Mercurial, Subversion, or Perforce). The toolkit has several scripts to encrypt specific files in a repository by using GNU Privacy Guard (GPG).

Bleach

Bleach is a library for Django that can sanitize HTML by escaping and stripping harmful content. Read how it works in this review.


Latest release: 6.2.0 [Oct. 29, 2024]

BleachBit

BleachBit is an open source tool focused on maintaining your privacy by cleaning up sensitive data on the system.


Latest release: 4.6.2 [Oct. 11, 2024]

BlindElephant

BlindElephant is a security tool to perform fingerprinting of web applications. It can discover the name and version of known web applications.

BoopSuite

BoopSuite a wireless pentesting suite to perform security auditing and test wireless networks. It can be used for penetration tests and security assignments.

Bowcaster

Bowcaster is a framework to create exploits. It is written in Python and comes with a set of tool and modules to help exploit development.

Brakeman

Brakeman is a static code analysis tool for Ruby on Rails to perform a security review. Read how it works in this review.


Latest release: 6.2.2 [Oct. 18, 2024]

Btlejack

Btlejack is a security tool that provides all options to sniff, jam, and hijack Bluetooth Low Energy (BLE) devices. Read how it works in this tool review.

BuQuikker

BuQuikker is a security tool to scan the Amazon S3 storage service. Its goal is to find open and unprotected S3 buckets.

Bucket Finder

Bucket Finder is one of the available security tools to discover AWS S3 buckets. Read the review and how it works.

Bucket Stream

Bucket Stream is a security tool to find interesting Amazon S3 Buckets by watching certificate transparency logs. See our review and learn how it works.

Buttercup for desktop

Buttercup is a cross-platform, free, and open-source password manager based on Node.js. It helps to store your passwords and secrets safely.


Latest release: 2.28.1 [Sept. 8, 2024]

bamfdetect

The bamfdetect tool helps with identification and extraction of information from bots and other malware.

bane

The bane tool is an AppArmor profile generator for Docker containers. It helps with creating the appropriate profile for confinement on system level.

bingrep

Bingrep is a utility that can be described as the 'grep for binaries'. It runs on Linux and helps with reverse engineering and malware analysis.

blackman

Blackman is a tool for the BlackArch Linux distribution to install packages. It is similar to Emerge, the package manager that builds from sources.

boofuzz

Boofuzz is a fork of Sulley fuzzing framework after its maintenance dropped. Besides numerous bug fixes, boofuzz aims for extensibility.

btfind (Bluetooth Finder)

Bluetooth Find is a security tool that helps with the location and tracking of discoverable Bluetooth devices. It can be used to find specific devices, like mobile phones, tablets, or notebooks.

RSS feed icon for Linux security tools

Recently reviewed

  • Archery (vulnerability assessment and management)
  • Wapiti (vulnerability scanner for web applications)
  • Patator (multi-purpose brute-force tool)
  • BleachBit (system cleaner and privacy tool)
  • OpenSCAP (suite with tools and security data)
  • Lynis (security scanner and compliance auditing tool)
  • BlackBox (store secrets in Git/Mercurial/Subversion)
  • salt-scanner (Linux vulnerability scanner)
  • Infection Monkey (security testing for data centers and networks)
  • Anchore Engine (container analysis and inspection)
  • Zeek (network security monitoring tool)
  • ZAP (web application analysis)
  • Maltrail (malicious traffic detection system)
  • tls-ca-manage
  • Vuls (agentless vulnerability scanner)
  • Cppcheck (static code analyzer)
  • XSStrike (XSS detection and exploitation suite)
  • Decentraleyes (local CDN emulation for privacy)
  • RootHelper (script to retrieve exploitation tools)
  • graudit (static code analysis tool)
  • Suhosin7 (Suhosin security extension for PHP 7.x)
  • gosec (Golang security checker)
  • Bleach (sanitizing library for Django)
  • siemstress (basic SIEM solution)
  • CMSeeK (CMS detection and exploitation)