Tools

Security tools and developer resources

Tools I build and use — from firewalls to crypto libraries. Plus curated resources to help developers think about security.

Built by 0xrafasec

rfirewall

User-centric firewall for Linux

A lean, modern firewall built in Rust. Designed for top-tier security with an exceptional user experience — minimal overhead, intuitive interface, and seamless integration with your Linux environment. In active development.

RustIn development

ecies-bls12381

ECIES encryption with BLS12381

Go package for keypair generation, encryption, and decryption using ECIES with the BLS12381 elliptic curve. Leverages Kyber for secure operations. Suitable for proxy re-encryption and secure data sharing.

GoAvailable

More tools coming as I build them.

Recon & Discovery

Tool	Description	Link
Subfinder	Passive subdomain enumeration. 100+ sources, blazing fast. Essential first step in any recon chain.
httpx	HTTP probing toolkit. Title, status, tech detection, follow redirects. Filters live hosts fast.
Katana	Next-gen web crawler. JS parsing, headless mode, scope control. Finds endpoints others miss.
Nmap	Network discovery classic. Port scanning, service detection, OS fingerprinting. 25+ years, still the standard.
Naabu	Fast port scanner in Go. SYN/CONNECT scans, service discovery. Designed for automation pipelines.
Amass	Attack surface mapping. DNS enumeration, ASN discovery, data sources integration. OWASP project.

Vulnerability Scanning

Tool	Description	Link
Nuclei	Template-based vuln scanner. 9000+ community templates. CVEs, misconfigs, exposures. The GOAT for automation.
Trivy	All-in-one security scanner. Containers, IaC, SBOM, secrets, licenses. CI/CD native. Aqua Security.
Semgrep	Find bugs and vulns in code. 2000+ rules. Fast. Works with any language. Free for open source.
Nikto	Web server scanner. Checks for dangerous files, outdated software, misconfigs. Classic but effective.

Web Application Testing

Tool	Description	Link
Burp Suite	Industry standard web proxy. Intercept, scan, exploit. Massive extensions ecosystem. PortSwigger.
Caido	Modern Burp alternative. Rust-based, lightweight, clean UI. 10 projects free. Rising fast in 2025-2026.
Ffuf	Directory discovery, parameter fuzzing, vhost discovery. Written in Go. Blazing fast.
SQLMap	Automated SQL injection. Detection and exploitation. Database takeover capabilities. The SQLi tool.
Dalfox	XSS scanner and parameter analysis. WAF bypass, DOM XSS detection. Modern and actively maintained.
Arjun	HTTP parameter discovery. Finds hidden GET/POST parameters. Essential for fuzzing prep.

Secrets & Credentials

Tool	Description	Link
Gitleaks	Find API keys, passwords, tokens before they leak. Scans commits, branches, diffs. Easy CI integration.
TruffleHog	Credential scanner. Git history, S3, filesystems. High entropy and regex detection.
Hashcat	Password recovery tool. GPU-accelerated cracking. Rules, masks, wordlists. Industry standard.
John the Ripper	Password cracker. Multiple formats, wordlist attacks, incremental mode. The classic.

Active Directory & Internal

Tool	Description	Link
BloodHound	AD attack path mapping. Graph-based privilege escalation discovery. CE v8 adds OpenGraph for cloud.
Impacket	Python network protocols. SMB, MSRPC, Kerberos attacks. GetNPUsers, secretsdump, psexec.
NetExec	CrackMapExec successor. SMB, WinRM, LDAP, MSSQL, SSH. Credential spraying, enumeration.
Certipy	AD Certificate Services attacks. ESC1-ESC8 exploitation. Find and abuse PKI misconfigs.
Rubeus	Kerberos abuse toolkit. Kerberoasting, AS-REP roasting, ticket manipulation. C# for Windows.
Responder	LLMNR/NBT-NS/MDNS poisoner. Credential capture on internal networks. Essential for internals.

Cloud Security

Tool	Description	Link
Prowler	AWS/Azure/GCP security assessments. CIS benchmarks, compliance checks. 300+ controls.
ScoutSuite	Multi-cloud security auditing. AWS, Azure, GCP, Alibaba, Oracle. Risk assessment reports.
Pacu	AWS exploitation framework. Post-compromise, privesc, persistence. Like Metasploit for AWS.
CloudBrute	Cloud infrastructure enumeration. Find company assets across AWS, Azure, GCP, DigitalOcean.

Exploitation & C2

Tool	Description	Link
Metasploit	Penetration testing framework. Exploit database, payloads, post-exploitation modules. The classic.
Sliver	Modern C2 framework. Open source Cobalt Strike alternative. mTLS, WireGuard, HTTP(S), DNS C2.
Havoc	Modern post-exploitation C2. Demon agent, BOFs support, cloud API abuse. Rising fast in 2025-2026.
Mythic	Flexible C2 platform. Web UI, multi-agent (Python/Go/.NET/Swift). Modular and extensible.

Network Analysis

Tool	Description	Link
Wireshark	Network protocol analyzer. Packet capture and deep inspection. Essential for traffic analysis.
mitm6	IPv6 attack tool. DNS takeover via DHCPv6. Combines with ntlmrelayx for relay attacks.
Bettercap	Network attack and monitoring. MITM, WiFi, BLE, HID. Swiss army knife for network hacking.

Smart Contract Security

Tool	Description	Link
Slither	Solidity static analyzer. 90+ detectors, inheritance graph, call graph. Trail of Bits.
Mythril	EVM bytecode analyzer. Symbolic execution, taint analysis. Find exploits in smart contracts.
Foundry	Smart contract dev toolkit. Forge (testing), Cast (interactions), Anvil (local node). Rust-based, fast.
Echidna	Ethereum smart contract fuzzer. Property-based testing. Find edge cases automatically.
Aderyn	Rust-based Solidity analyzer. Fast static analysis, custom detectors. Cyfrin.

Utility & Automation

Tool	Description	Link
Anew	Append lines to file if unique. Essential for deduping recon output. Tomnomnom.
qsreplace	Replace query string values. Useful for mass parameter testing. Tomnomnom.
gau	Fetch known URLs from AlienVault OTX, Wayback, Common Crawl. URL discovery gold.
waybackurls	Fetch URLs from Wayback Machine. Historical endpoint discovery. Tomnomnom.
unfurl	Parse and extract URL components. Domains, paths, params, values. Tomnomnom.

Developer resources

Essential references for security-aware development.