Tools
Security tools and developer resources
Tools I build and use — from firewalls to crypto libraries. Plus curated resources to help developers think about security.
Built by 0xRafaSec
rfirewall
User-centric firewall for Linux
A lean, modern firewall built in Rust. Designed for top-tier security with an exceptional user experience — minimal overhead, intuitive interface, and seamless integration with your Linux environment. In active development.
ecies-bls12381
ECIES encryption with BLS12381
Go package for keypair generation, encryption, and decryption using ECIES with the BLS12381 elliptic curve. Leverages Kyber for secure operations. Suitable for proxy re-encryption and secure data sharing.
More tools coming as I build them.
Projects we love
Top-tier open-source security tools worth knowing. Not affiliated — just projects I use and recommend.
Nuclei
Fast, template-based vulnerability scanner
ProjectDiscovery. Thousands of CVE templates. Scan infra, web apps, cloud. Essential for security assessments.
Trivy
Comprehensive security scanner
Aqua Security. Containers, IaC, SBOM, secrets. Scans Docker, Kubernetes, Terraform. Fits in CI/CD.
Semgrep
Static analysis for security
Find bugs and vulns in code. 2000+ rules. Fast. Works with any language. Free for open source.
Gitleaks
Detect secrets in git
Find API keys, passwords, tokens before they leak. Scans commits, branches, diffs. Easy CI integration.
Ffuf
Fast web fuzzer
Directory discovery, parameter fuzzing, vhost discovery. Written in Go. Blazing fast.
Nmap
Network discovery and security auditing
The classic. Port scanning, service detection, OS fingerprinting. 25+ years, still the standard.
Developer resources
Essential references for security-aware development.