scanssh | | SSH remote version scanner |
scm-blackbox | | Safely store secrets in Git/Mercurial/Subversion |
scrypt | | Encrypt and decrypt files |
seahorse | | GNOME encryption interface |
seccure | | SECCURE Elliptic Curve Crypto Utility for Reliable Encryption |
secpanel | | GUI front-end for SSH |
signify | | Cryptographically sign and verify files, from OpenBSD |
skey | | Port of OpenBSD s/key implementation |
sleuthkit | | The Sleuth Kit (TSK) opensource forensic toolkit |
smaSHeM | | System V shared memory segment manipulator |
snallygaster | | Tool to scan for secret files on HTTP servers |
sniff | | Program to sniff logins and passwords |
snoopy | | Log every executed command to syslog |
snortsnarf | | Generate HTML report summaries from snort incident alerts |
snow | | Whitespace steganography program |
softhsm | | Cryptographic store accessible through a PKCS#11 interface |
softhsm2 | | Cryptographic store accessible through a PKCS#11 interface |
spiped | | Tool for creating symmetrically encrypted and authenticated pipes |
sqlmap | | Automatic SQL injection and database takeover tool |
srm | | Secure replacement for rm(1) |
ssdeep | | Program computing context triggered piecewise hashes (CTPH) |
ssh-askpass | | X11-based passphrase dialog for OpenSSH |
ssh-audit | | Tool for SSH server & client configuration auditing |
sshfp | | Print ssh host key fingerprint resource records |
sshguard | | Protect networked hosts from brute force attacks |
sshpass | | Non-interactive ssh password auth |
ssldump | | SSLv3/TLS network protocol analyzer |
sslproxy | | Small SSL proxy |
sslsplit | | Transparent and scalable SSL/TLS interception |
ssss | | Shamir's Secret Sharing Scheme |
starttls | | Simple wrapper program for STARTTLS on emacsen |
steghide | | Hides data (steganography) in audio or graphics files |
stegtunnel | | Provides a covert channel in the IPID and sequence number |
stunnel | | Universal SSL tunnel |
sudo | | Allow others to run commands as root |
tcl-tls | | TLS (aka SSL) Channel for the Tcl language |
tcp_wrappers | | Monitor and filter incoming requests for network services |
tct | | Programs to aid post-mortem after a break-in |
tkpasman | | Username and password manager that uses the Tk toolkit |
tlswrapper | | UCSPI/inetd-style TLS encryption wrapper |
tor-browser | | Tor Browser based on Firefox |
tor-browser-https-everywhere | | HTTPS Everywhere plugin for tor-browser |
tor-browser-noscript | | Noscript plugin for tor-browser |
tripwire | | File and directory integrity checker |
trufflehog | | Find credentials all over the place |
TweetNaCl | | World's first auditable high-security cryptographic library |
validns | | Validns, a high performance DNS/DNSSEC zone validator |
vault | | Tool for managing secrets |
vaultwarden | | Bitwarden compatible backend server |
volatility3 | | Advanced memory forensics framework |
wfuzz | | Web application fuzzer |
whisker (V) | | URL scanner used to search for known vulnerable CGIs on websites |
wolfssl | | Embedded SSL C-Library |
xca | | Certificate and key management |
xml-security-c | | XML Digital Signature specification implementation |
xmlsec1 | | XML signature and encryption library |
yafic | | File integrity checker |
yara | | Pattern matching swiss knife for malware researchers |
ykclient | | Libraries for online validation of Yubikey OTPs |
ykman | | Yubico YubiKey manager command-line tool |
ykpers | | Yubico's YubiKey re-programming toolkit |
zebedee | | Simple tunneling program for TCP or UDP with encryption |
zkt | | DNSSEC Zone Key Tool |
zoneminder | | Video camera security and surveillance solution |