Portspoof alternatives

Looking for an alternative tool to replace Portspoof? During the review of Portspoof we looked at other open source tools. Based on their category, tags, and text, these are the ones that have the best match.

Top 3

  1. ArpON (MitM defense tool)
  2. DBShield (database security shield)
  3. MongoSanitizer (defense against MongoDB injection attacks)

These tools are ranked as the best alternatives to Portspoof.

Alternatives (by score)

63

ArpON

Introduction

ArpOn protects a system by running as a daemon and guard against a Man in the Middle (MitM) attack due to ARP spoofing, cache poisoning, or an ARP poison routing attack.

The tool works by using three types of inspection to detect a related attack.

  • SARPI (Static ARP Inspection), statically configured networks (without DHCP)
  • DARPI (Dynamic ARP Inspection), dynamically configured networks (with DHCP)
  • HARPI (Hybrid ARP Inspection), statically and dynamically configured networks (with DHCP)

Project details

ArpON is written in C.

Strengths and weaknesses

  • + The source code of this software is available

    ArpON review

    74

    DBShield

    Introduction

    This tool is typically used by developers and system administrators to protect their database against common database attacks. One of them is the SQL injection attack, that tries to bypass checks, resulting in data leakage. By using this tool, another level of security defense is implemented.

    Project details

    DBShield is written in Golang.

    Strengths and weaknesses

    • + The source code of this software is available

      Typical usage

      • Database security

      DBShield review

      60

      MongoSanitizer (python-mongo-sanitizer)

      Introduction

      Typically this type of tool would be used as an additional defense layer to prevent injection attacks from reaching the database.

      Project details

      MongoSanitizer is written in Python.

      Strengths and weaknesses

      • + The source code of this software is available

        Typical usage

        • Application security
        • Database security

        MongoSanitizer review

        97

        OpenSnitch

        Introduction

        OpenSnitch is a tool based on Little Snitch, a macOS application level firewall. All outgoing connections are monitored and the user is alerted when a new outgoing connection occurs. This allows the user to detect and block any unwanted connections.

        Project details

        OpenSnitch is written in Golang.

        Strengths and weaknesses

        • + More than 3000 GitHub stars
        • + The source code of this software is available
        • - No releases on GitHub available

        Typical usage

        • Network traffic filtering

        OpenSnitch review

        85

        django-axes

        Introduction

        This tool may be used by developers that work with the Django framework. It adds a security layer on top of the application by looking at login attempts and track them.

        Project details

        django-axes is written in Python.

        Strengths and weaknesses

        • + More than 50 contributors
        • + The source code of this software is available

          Typical usage

          • Application security

          django-axes review

          85

          django-defender (Django Defender)

          Introduction

          Django-defender is a reusable app for Django that blocks people from performing brute forcing login attempts.

          Project details

          django-defender is written in Python.

          Strengths and weaknesses

          • + More than 10 contributors
          • + The source code of this software is available

            Typical usage

            • Application security

            django-defender review

            60

            Leviathan Framework

            Introduction

            Leviathan is a security tool to provide a wide range of services including service discovery, brute force, SQL injection detection, and exploit capabilities. The primary reason to use this tool is to do massive scans on many systems at once. For example to include a huge network range, country-wide scan, or even full internet scan.

            Project details

            Leviathan Framework is written in Python.

            Strengths and weaknesses

            • + More than 500 contributors
            • + The source code of this software is available

              Typical usage

              • Penetration testing
              • Security assessment
              • Service exploitation

              Leviathan Framework review

              60

              Masscan

              Introduction

              Masscan can be compared with other tools like Nmap. Due to its focus on high performance, this tool can be used when many systems have to be scanned at once. It can scan all internet hosts on IPv4 within 5 minutes. This impressive statistic makes the tool loved by those that do security research.

              Project details

              Masscan is written in C.

              Strengths and weaknesses

              • + More than 25 contributors
              • + More than 8000 GitHub stars
              • + The source code of this software is available

                Typical usage

                • Network scanning

                Masscan review

                64

                QuickScan

                Introduction

                Although there are many port scanning utilities, sometimes it is specific functionality that makes a tool really powerful. For example, QuickScan saves the results of a scan, which then can be processed later for follow-up.

                Project details

                QuickScan is written in Python.

                Strengths and weaknesses

                • + Very low number of dependencies
                • + The source code of this software is available
                • - No releases on GitHub available
                • - Full name of author is unknown

                Typical usage

                • Network scanning

                QuickScan review

                63

                Zenmap

                Introduction

                Zenmap is a graphical user interface (GUI) for Nmap. It can be of great help to start a network scan by simply selecting the options you want. Besides Linux, it also runs on Microsoft Windows, macOS, BSD, and other flavors of Unix.

                One of the strengths of Zenmap is the ability to store profiles, which can be reused for later scans. The command creator is another one, which helps interactively create the right nmap commands. Recent scans are stored in a searchable database and scan results can be saved and compared.

                Project details

                Zenmap is written in Python.

                Strengths and weaknesses

                • + The source code of this software is available
                • + Well-known tool

                  Typical usage

                  • Network scanning
                  • Penetration testing
                  • Port scanning
                  • Security assessment

                  Zenmap review

                  64

                  portSpider

                  Introduction

                  portSpider is a security tool to scan network ranges and find open ports. The goal of the tool is to find vulnerable services.

                  Project details

                  portSpider is written in Python.

                  Strengths and weaknesses

                  • + The source code of this software is available

                    Typical usage

                    • Network scanning
                    • Vulnerability scanning

                    portSpider review

                    Some relevant tool missing as an alternative to Portspoof? Please contact us with your suggestion.