Tools

Security tools and developer resources

Tools I build and use — from firewalls to crypto libraries. Plus curated resources to help developers think about security.

Built by 0xRafaSec

rfirewall

User-centric firewall for Linux

A lean, modern firewall built in Rust. Designed for top-tier security with an exceptional user experience — minimal overhead, intuitive interface, and seamless integration with your Linux environment. In active development.

RustIn development

ecies-bls12381

ECIES encryption with BLS12381

Go package for keypair generation, encryption, and decryption using ECIES with the BLS12381 elliptic curve. Leverages Kyber for secure operations. Suitable for proxy re-encryption and secure data sharing.

GoAvailable

More tools coming as I build them.

Projects we love

Top-tier open-source security tools worth knowing. Not affiliated — just projects I use and recommend.

Nuclei

Fast, template-based vulnerability scanner

ProjectDiscovery. Thousands of CVE templates. Scan infra, web apps, cloud. Essential for security assessments.

Trivy

Comprehensive security scanner

Aqua Security. Containers, IaC, SBOM, secrets. Scans Docker, Kubernetes, Terraform. Fits in CI/CD.

Semgrep

Static analysis for security

Find bugs and vulns in code. 2000+ rules. Fast. Works with any language. Free for open source.

Gitleaks

Detect secrets in git

Find API keys, passwords, tokens before they leak. Scans commits, branches, diffs. Easy CI integration.

Ffuf

Fast web fuzzer

Directory discovery, parameter fuzzing, vhost discovery. Written in Go. Blazing fast.

Nmap

Network discovery and security auditing

The classic. Port scanning, service detection, OS fingerprinting. 25+ years, still the standard.

Developer resources

Essential references for security-aware development.