Opensource, Security, Tools

Andiparos: Proxy

https://code.google.com/archive/p/andiparos/

Arachni: Penetration testing

http://www.arachni-scanner.com

BackTrack

http://www.backtrack-linux.org

Kali

http://kali.org

BeEF: Penetration testing

http://beefproject.com

Ettercap: MITM

http://ettercap.github.io/ettercap

GoLismero: Web Secutiry testing

http://www.golismero.com

Google hacking database (GHDB)

https://www.exploit-db.com/google-hacking-database

Google application security tools

https://www.google.com/about/appsecurity/tools

Grabber: Web application scanner

http://rgaucher.info/beta/grabber

Grendel: Web application scanner

https://sourceforge.net/projects/grendel

Keyczar: Cryptographic toolkit

https://github.com/google/keyczar

Kismet: Wireless network detector

http://kismetwireless.org

Metasploit

http://metasploit.com

ModSecurity: WAF

http://modsecurity.org

Nikto2: Web server testing

http://cirt.net/nikto2

Nmap

http://nmap.org

OpenVAS

http://openvas.org

OSSEC

http://ossec.github.io

OWASP

https://www.owasp.org/index.php/Appendix_A:_Testing_Tools

Packet Storm

http://packetstormsecurity.org/files/tags/scanner

Paros Proxy

http://www.testingsecurity.com/paros_proxy

Qubes OS

https://www.qubes-os.org/

Snort

http://snort.org

SonarQube: Manage code quality

https://github.com/SonarSource/sonarqube

SQLMap

http://sqlmap.org

Tcpdump

http://tcpdump.org

Vega: Web vulnerability scanner

https://subgraph.com/vega

W3AF: SQL injection, cross-site scripting detection tool

http://w3af.org

Wapiti: Web vulnerability scanner

http://wapiti.sourceforge.net

Wireshark

http://wireshark.org

Wfuzz: Brute force GET and POST

http://code.google.com/p/wfuzz

SensePost: Vulnerability tools (autoDANE, reGeorg, Jack)

http://sensepost.com

Telekomlabs

https://telekomlabs.github.io/