Tools starting with S

Looking for new tools to extend your tool box? The top 100 list of best security tools is a great start.

s3-fuzzer

s3-fuzzer is a security tool to find sensitive data stored in Amazon S3 buckets. It can be used during security assessments.

S3Scanner

S3Scanner helps with the discovery of S3 storage buckets on the platform of Amazon's AWS. Learn how the tool works with this review.

Safety

Safety is a security tool to scan software dependencies and see which ones are possibly vulnerable. See the review and how the tool works.


Latest release: 1.8.5 [Feb. 4, 2019]

salt-scanner

Salt-scanner is Linux vulnerability scanner based on Salt Open and Vulners audit API. It has Slack notifications and JIRA integration.

Samba

Makes Windows interoperability possible for systems running Linux or other flavors of Linux by sharing file and print services.


Latest release: tevent-0.10.1 [Sept. 4, 2019]

Samba-VirusFilter

On-access antivirus filter for Samba to detect malware threats and prevent them from investing file shares.

Samhain

Host-based intrusion detection system (HIDS) providing file integrity checking and log file monitoring

Sandmap

Sandmap is a security tool to perform network and system reconnaissance using the well-known Nmap engine.

ScanSSH

ScanSSH is a security tool to perform scans on SSH to detect open proxies and available services. It retrieves version information and related details.

Scapy

Scapy is an interactive packet manipulation program. It is able to forge or decode packets of a wide number of protocols and send and capture them.


Latest release: 2.4.3 [Aug. 6, 2019]

Scirius

Scirius is a web application to do Suricata ruleset management. There is both a community version as paid version available.


Latest release: scirius-3.0.1 [Nov. 30, 2018]

Scout2

Scout2 is a security tool to assess the security of an AWS environment. It can be used for system hardening and IT audits.

SCUTUM

SCUTUM is a security tool for Linux systems to filter network traffic. With this firewall functionality, it can allow only whitelisted network gateways.

SearchSploit

Exploit-DB's CLI search tool to find any exploits from the database. The tool is written in shell script and maintained by Offensive Security.

seccheck

Seccheck is a security scanner for Linux systems. It is originally written for SuSE Linux by Marc Heuse.

Seccubus

Seccubus automates vulnerability scanning with support for Nessus, OpenVAS, NMap, SSLyze, Medusa, SkipFish, OWASP ZAP, and SSLlabs.


Latest release: 2.52 [June 7, 2019]

Security Monkey

Security Monkey monitors AWS and GCP accounts for policy changes and alerts on insecure configurations.

seespee

Seespee is a tool that helps to create a Content Security Policy (CSP) for a website, based on crawling. Read the review and see how it works.

Seth

Seth is a security tool to perform a man-in-the-middle (MitM) attack and extract clear text credentials from RDP connections.

SFTPfuzzer (Simple FTP Fuzzer)

shcheck (Security Header Check)

Security header check (shcheck) is a security tool to scan web applications and their HTTP headers. It can help securing web applications or detect weaknesses.

shellbags

Shellbags is a script written in Python to parse the Windows Registry file. It extract related information from directories browsed by Explorer.

Shellharden

Shellharden is a tool to improve shell scripts when it comes to using variables and applying quotes properly. The tool can suggest and make the required changes.


Latest release: 4.1.1 [Aug. 4, 2019]

ShellPop

ShellPop is a security tool used by penetration testers during their assignments. It helps with generating both easy and more sophisticated reverse or bind shell commands.

Shellyzer

Shellyzer helps with static code analysis for both developers and security professionals, to test the quality of shell scripts. This is also known as linting.

shootback

Shootback is a tool create a reverse TCP tunnel. This may help with penetration testing to circumvent network traffic firewalls.

siemstress

Siemstress describes itself as a very basic Security Information and Event Management system (SIEM).

SIMP

SIMP is short for System Integrity Management Platform. It is a project maintained by the NSA and released as an open source project.


Latest release: 6.3.3 [May 24, 2019]

SIPVicious

SIPVicious suite is a set of tools that can be used to audit SIP based VoIP systems. It can be useful during penetrating testing and security assignments.

SMBMap

SMBMap is a security tool that allows users enumerating Samba shares and can be used during security assessments. Read the review and how it works.


Latest release: 1.1.0 [Oct. 7, 2019]

Sn1per

Sn1per is security scanner that can be used during a penetration test to enumerate and scan for vulnerabilities.


Latest release: 7.3 [Oct. 7, 2019]

snallygaster

Snallygaster is a security tool that looks for files on web servers that maybe shouldn't be public. Typical examples for such files include publicly accessible git repositories, backup files, database dumps, or configuration files.

SNARE

SNARE is a reactive honeypot for security research, detecting attacks, and respond to possible flaws within your environment. It is the successor of Glastopf.

Snort

Snort is a network intrusion detection system (NIDS) that runs on Linux and other platforms.

socat

The socat tool allows bi-directional data transfer between two independent data channels. This includes a file, pipe, device, socket, proxy connection, etc.

Social-Engineer Toolkit (SET)

The Social-Engineer Toolkit (SET) is an open source penetration testing framework. It helps with assignments that require social engineering.


Latest release: 8.0.1 [July 23, 2019]

Spaghetti

Spaghetti is a web vulnerability scanner to find flaws in common web applications and frameworks. It can perform fingerprinting and vulnerability discovery.

SpamScope

SpamScope is an advanced spam analysis tool to scan emails for unwanted messages. Read the review and see how it works.


Latest release: 2.8.0 [March 16, 2019]

SpiderFoot

SpiderFoot is an open source intelligence automation tool (OSINT). It automates the process of gathering intelligence, like IP addresses, domains, and networks.

sqhunter

Sqhunter performs threat hunting in your environment. It runs on the salt master node and queries open network sockets, among other information.

sqlmap

The sqlmap performs automatic SQL injection and can take over a database. It is a valued tool for pentesters and those who want to test their web applications.


Latest release: 1.3 [Jan. 5, 2019]

SQLMate

SQLMate is a security tool that calls itself a friend of SQLMap. It has similar functionality, yet comes with additional features like finding an admin panel and improved hash cracking. The tool can find possible vulnerable targets, with the option to save the results and feed it to others, like SQLMap.

ssh-audit

The ssh-audit tool helps to perform a security assessment of SSH servers and their configuration. It can be used for security testing and penetration tests.

sshesame

The sshesame tool provides an SSH honeypot. It accepts connections and then logs any commands that are tried to be executed on the host system.

SSHHiPot

SSHHiPot is a high-interaction SSH honeypot. It captures connections and commands that are to be performed, for the purpose of learning about possible threats.

SSH Honeypot

SSH Honeypot is as the name implies a honeypot to emulate the SSH service. It can be used to learn about threats and commands used by attackers.

sshLooter

The sshLooter tool is a PAM backdoor written in Python to steal passwords from SSH connections. It puts itself in the authentication stack of Linux systems and intercepts provided passwords by unknowing users.

SSH MITM

This security tool intercepts SSH connections to perform a so-called man-in-the-middle attack. It can be used for penetration testing and security assessments, to intercept traffic.


Latest release: 2.2 [Sept. 17, 2019]

ssh_scan

The ssh_scan utility is a SSH configuration and policy scanner maintained by the Mozilla Foundation. It helps to secure Linux systems running the OpenSSH.


Latest release: 0.0.42 [Aug. 27, 2019]

SSHsec

SSHsec scans a system running the SSH protocol and retrieves its configuration, host keys, and Diffie-Hellman groups.

RSS feed icon for Linux security tools

Recently reviewed

  • Wapiti (vulnerability scanner for web applications)
  • Vuls (agentless vulnerability scanner)
  • Cppcheck (static code analyzer)
  • Zeek (network security monitoring tool)
  • XSStrike (XSS detection and exploitation suite)
  • Decentraleyes (local CDN emulation for privacy)
  • RootHelper (script to retrieve exploitation tools)
  • graudit (static code analysis tool)
  • Suhosin7 (Suhosin security extension for PHP 7.x)
  • gosec (Golang security checker)
  • siemstress (basic SIEM solution)
  • CMSeeK (CMS detection and exploitation)
  • Malice (VirusTotal clone)
  • Bleach (sanitizing library for Django)
  • SQLMate (a friend of SQLMap with additional features)
  • Termineter (smart meter security framework)
  • tlsenum (enumeration tool for TLS)
  • hBlock (ad blocking and tracker/malware protection)
  • Malscan (malware scanner for web servers)
  • massh-enum (OpenSSH user enumeration)
  • BDA (vulnerability scan for Hadoop and Spark)
  • SubFinder (subdomain scanner)
  • Prowler (AWS benchmark tool)
  • GitMiner (Git data miner)
  • Hash Buster (find cleartext of hash)