Tools starting with F

Looking for new tools to extend your tool box? The top 100 list of best security tools is a great start.

Fail2ban

Fail2Ban is an intrusion prevention software framework that protects computer servers from brute-force attacks

Faraday

Faraday is collaboration tool for pentest assignments and vulnerability management. It allows integration with a number of other security tools.


Latest release: 3.9.2 [Oct. 8, 2019]

Fierce

Fierce is a security tool that helps with DNS reconnaissance. It can locate non-contiguous IP space, but using DNS information.


Latest release: 1.4.0 [Nov. 7, 2019]

fimap

fimap is a tool written in Python to find, prepare, audit, exploit local and remote file inclusion bugs in web applications.

Findsploit

Findsploit is a simple script to search both local and online exploit databases. Typically this is used by penetration testers during a security assignment.

FIR (Fast Incident Response)

FIR is an incident response tool written in the Django framework. It provides a web interface to deal with the creation and management of security-related incidents.

FireAway

FireAway is a security tool to test the security of a firewall by trying to bypass its rules. It will use different methods to hide data or avoid detection by the firewall itself. This tool can be used for both defensive as offensive security.

FireHOL

FireHOL is promoted as an iptables stateful packet filtering firewall for humans. It also comes with FireQOS, which a bandwidth shaper based on tc.

flunym0us

Flunym0us is a security scanner for WordPress and Moodle installations. The tool tests the security of the installation by performing enumeration attempts.

Frida

Frida is a toolkit for reverse engineers, security researchers, and developers. It allows them injecting JavaScript to explore and understand the inner workings of applications on Windows, Mac, Linux, iOS, Android, and others.


Latest release: 12.7.22 [Nov. 12, 2019]

fsociety

The fsociety toolkit is a penetration framework containing other security tools. The project states that is includes all the tools that are used in the Mr. Robot tv series.

Fuzzapi

Fuzzapi is a security tool to test a REST API using fuzzing. It can be used for security assessments and penetration tests.

RSS feed icon for Linux security tools

Recently reviewed

  • Wapiti (vulnerability scanner for web applications)
  • Vuls (agentless vulnerability scanner)
  • Cppcheck (static code analyzer)
  • Zeek (network security monitoring tool)
  • XSStrike (XSS detection and exploitation suite)
  • Decentraleyes (local CDN emulation for privacy)
  • RootHelper (script to retrieve exploitation tools)
  • graudit (static code analysis tool)
  • Suhosin7 (Suhosin security extension for PHP 7.x)
  • gosec (Golang security checker)
  • siemstress (basic SIEM solution)
  • CMSeeK (CMS detection and exploitation)
  • Malice (VirusTotal clone)
  • Bleach (sanitizing library for Django)
  • SQLMate (a friend of SQLMap with additional features)
  • Termineter (smart meter security framework)
  • tlsenum (enumeration tool for TLS)
  • hBlock (ad blocking and tracker/malware protection)
  • Malscan (malware scanner for web servers)
  • massh-enum (OpenSSH user enumeration)
  • BDA (vulnerability scan for Hadoop and Spark)
  • SubFinder (subdomain scanner)
  • Prowler (AWS benchmark tool)
  • GitMiner (Git data miner)
  • Hash Buster (find cleartext of hash)