Tools starting with J

Looking for new tools to extend your tool box? The top 100 list of best security tools is a great start.


Jackhammer is a collaboration tool to get security and developer teams together. Focus is on static code analysis and dynamic analysis vulnerability discovery.


Jak is a security tool to encrypt and decrypt sensitive data in Git repositories, like application secrets.


Jawfish is a security tool to test web applications. It can find related exploits and update according to an internal database.

JBoss Autopwn

JBoss Autopwn is an exploitation tool for JBoss installations. To deploy its payload, the tool uses Metasploit, Netcat, and cURL.


Jchroot defines isolation capabilities like chroot with a more granular set of permissions. It can be used to secure and restrict the resources of a process.


JexBoss is a security tool to verify and exploit vulnerabilities in JBoss applications. It can be used for security assignments and pentests.

John the Ripper

John the Ripper is a mature password cracker to find weak or known passwords.


JoomScan is an open source project written in Perl. It can detect Joomla CMS vulnerabilities helps to analyze them.


JShielder is a security tool for Linux systems to make them more secure by adding system hardening measures.

jSQL Injection

jSQL Injection is a security tool to test web applications. It can be used to discover if an application is vulnerable to SQL injection attacks.

RSS feed icon for Linux security tools

Recently reviewed

  • Wapiti (vulnerability scanner for web applications)
  • Vuls (agentless vulnerability scanner)
  • Cppcheck (static code analyzer)
  • Zeek (network security monitoring tool)
  • XSStrike (XSS detection and exploitation suite)
  • Decentraleyes (local CDN emulation for privacy)
  • RootHelper (script to retrieve exploitation tools)
  • graudit (static code analysis tool)
  • Suhosin7 (Suhosin security extension for PHP 7.x)
  • gosec (Golang security checker)
  • siemstress (basic SIEM solution)
  • Malice (VirusTotal clone)
  • CMSeeK (CMS detection and exploitation)
  • Bleach (sanitizing library for Django)
  • Hash Buster (find cleartext of hash)
  • BDA (vulnerability scan for Hadoop and Spark)
  • tlsenum (enumeration tool for TLS)
  • radare2 (reverse engineering tool and binary analysis)
  • hBlock (ad blocking and tracker/malware protection)
  • massh-enum (OpenSSH user enumeration)
  • Cutter (graphical user interface for radare2)
  • CMSmap (reconnaissance tool for popular CMS frameworks)
  • SQLMate (a friend of SQLMap with additional features)
  • SubFinder (subdomain scanner)
  • Termineter (smart meter security framework)