RSS feed icon for Linux security tools

Tools starting with B

Looking for new tools to extend your tool box? The top 100 list of best security tools is a great start.

Bandit


Bandit is an AST-based static analyzer for analyzing Python code. It helps with finding code flaws that could lead to security vulnerabilities.

Latest release: 1.4.0 [Jan. 6, 2017]

bane


The bane tool is an AppArmor profile generator for Docker containers. It helps with creating the appropriate profile for confinement on system level.

Latest release: 0.2.2 [June 7, 2017]

Bash Scanner


Bash Scanner is a security tool that does a quick scan to see if there are vulnerable packages. It uses an external service to validate.

Bastille Linux


Bastille Linux was a popular tool to perform hardening of systems running Linux and other flavors. It has not received updates in the last years.

BDA (Big Data Audit)


BDA is a security tool to test installations of Hadoop and Spark, often used to store big data sets. Configuration weaknesses and other issues can be detected.

Latest release: 0.1.1 [Feb. 3, 2017]
New tool!

BeEF


The Browser Exploitation Framework (or BeEF) is a penetration testing tool that focuses on the web browser.

Belati


Belati is security tool to collect public data and information and calls itself a Swiss army knife for OSINT purposes.

Latest release: 0.2.2-dev [June 20, 2017]

BetterCAP


BetterCAP is a complete, modular, portable and easily extensible MitM tool and framework. It is maintained well and appreciated by many.

Latest release: 1.6.2 [Aug. 21, 2017]

bingrep


Bingrep is a utility that can be described as the 'grep for binaries'. It runs on Linux and helps with reverse engineering and malware analysis.

Bitscout


Bitscout is a security tool that allows professionals performing digital forensics remotely. The toolkit creates a live-cd for this purpose.

blackman


Blackman is a tool for the BlackArch Linux distribution to install packages. It is similar to Emerge, the package manager that builds from sources.
New tool!

BleachBit


BleachBit is an open source tool focused on maintaining your privacy by cleaning up sensitive data on the system.

Latest release: 1.17 [Feb. 22, 2017]

BlindElephant


BlindElephant is a security tool to perform fingerprinting of web applications. It can discover the name and version of known web applications.

boofuzz


Boofuzz is a fork of Sulley fuzzing framework after its maintenance dropped. Besides numerous bug fixes, boofuzz aims for extensibility.

Latest release: 0.0.9 [Aug. 23, 2017]

BoopSuite


BoopSuite a wireless pentesting suite to perform security auditing and test wireless networks. It can be used for penetration tests and security assignments.

Latest release: v.1 [Aug. 13, 2017]

Brakeman


Brakeman is a static code analysis tool for Ruby on Rails to perform a security review. It comes as an open source project with optional commercial support.

Latest release: 3.7.2 [Sept. 2, 2017]

Bro


Bro is a network security monitoring tool (NSM) and helps with monitoring. It can also play an active rol in performing forensics and incident response.

Latest release: 2.5.1 [June 26, 2017]

Recently reviewed

  • Masscan (high-performance port scanner)
  • Vane (WordPress vulnerability scanner)
  • MAT (removal of metadata)
  • Yosai (security framework for Python applications)
  • Wireshark (network traffic analyzer)
  • FireHOL (firewall config creator and manager)
  • wpsik (WPS scan and attack tool)
  • USBleach (disarms harmful USB storage)
  • opensvp (firewall testing tool)
  • The Sleuth Kit (toolkit for forensics)
  • MongoSanitizer (defense against MongoDB injection attacks)
  • YASAT (local security scanner)
  • Nmap (network and vulnerability scanner)
  • dnsteal (exfiltration tool via DNS requests)
  • pastemon (tool to monitor Pastebin)
  • BDA (vulnerability scan for Hadoop and Spark)
  • Scirius (Suricata rule management)
  • Spaghetti (web vulnerability scanner)
  • Suricata (network IDS, IPS and monitoring)
  • CIRCLean (USB stick and drives cleaner)
  • King Phisher (Phishing campaign toolkit)
  • Termineter (smart meter security framework)
  • pick (password manager)
  • jak (git encryption)
  • detectem (software enumeration)