Tools starting with Y
A - B - C - D - E - F - G - H - I - J - K - L - M - N - O - P - Q - R - S - T - U - V - W - X - Y - Z
Looking for new tools to extend your tool box? The top 100 list of best security tools is a great start.
YARA is a security tool to help malware researchers to identify and classify malware samples. For example by defining malware families based on patterns.
Latest release: 3.7.1 [Jan. 16, 2018]
The yarGen utility helps with creating YARA rules for malware detection. It can combine both 'goodware' and 'malware', to properly craft the right rules.
Latest release: 0.18.0 [Aug. 14, 2017]
YASAT describes itself as another simple stupid audit tool to test Linux systems. It has many tests for checking the security configuration of the system.
yasca (Yet Another Source Code Analyzer)
Yasca is a tool to perform code analysis and linting. It can be used by developers and security professionals to evaluate the code quality.
Yasuo is a Ruby script that scans for vulnerable and exploitable third-party web applications.
Yersinia is a framework to perform layer 2 attacks. It can be used for pentests and security assessments to test network safeguards.
Latest release: 0.8.2 [Aug. 24, 2017]
Yosai is security framework for Python applications and adds authentication, authorization, and session management capabilities.
- Heralding (honeypot to catch credentials)
- ZGrab (banner grabbing tool)
- testssl.sh (TLS/SSL configuration scanner)
- WhatWeb (website fingerprinter)
- vallumd (distributed ipset blacklist for iptables)
- Nikto (web application scanner)
- sslcaudit (auditing tool for SSL/TLS clients)
- SCUTUM (ARP filtering)
- VHostScan (virtual host scanner)
- OpenSSL (TLS and SSL toolkit)
- SSHsec (SSH configuration scanner)
- not24get (password quality checker)
- swap_digger (data excavation tool for Linux swap)
- Trawler (data collection framework for phishing results)
- VulnFeed (vulnerability feed parser)
- Metagoofil (information gathering tool)
- Certigo (certificate validator tool)
- Exploit Pack (penetration testing framework)
- Oscanner (Oracle assessment framework)
- Dionaea (honeypot)
- Kube-Bench (security benchmark testing for Kubernetes)
- Thug (low-interaction honeyclient)
- NoSQLMap (database enumeration and exploitation)