Skip to content

Firewall testing checklist and cyber security tools

homepage-banner

Firewall testing checklist

  1. Port scanning Tool: Nmap (https://nmap.org/)
  2. OS fingerprinting Tool: Xprobe2 (http://xprobe.sourceforge.net/)
  3. Firewall rule testing Tool: Firewalk (https://github.com/defunkt/firewalk)
  4. Packet fragmentation evasion Tool: Fragroute (https://github.com/plitex/fragroute)
  5. IP spoofing Tool: Hping3 (https://github.com/antirez/hping)
  6. Protocol-specific evasion Tool: Metasploit Framework (https://www.metasploit.com/)
  7. ICMP tunneling Tool: ICMPTX (http://thomer.com/icmptx/)
  8. DNS tunneling Tool: Dns2tcp (https://github.com/alex-sector/dns2tcp)
  9. HTTP tunneling Tool: HITPTunnel (https://github.com/larsbrinkhoff/httptunnel)
  10. IPv6 tunneling Tool: Teredo (https://tools.ietf.org/html/rfc4380)
  11. ARP spoofing: Tool: Ettercap (https://www.ettercap-project.org/)
  12. SSL/TLS interception: Tool: SSLstrip (https://github.com/moxie0/ssIstrip)
  13. SSL/TLS decryption: Tool: Wireshark (https://www.wireshark.org/)
  14. SSH tunneling Tool: OpenSSH (https://www.openssh.com/)
  15. Proxy server evasion Tool: Proxychains (https://github.com/roflOr/proxychains-ng)
  16. TOR network evasion Tool: Tor Browser (https://www.torproject.org/)
  17. Web application firewall (WAF) testing Tool: Wafwoof (https://github.com/EnableSecurity/wafw00f)
  18. Session hijacking Tool: Cookie Cadger (https://github.com/cookiecadger/CookieCadger)
  19. Man-in-the middle attack Tool: Bettercan (https://www.bettercap.org/)
  20. VPN detection: Tool lodine (https://github.com/varrick/iodine)
  21. Firewall evasion using encrypted payloads Tool: Veil-Evasion (https://github.com/NeilFramework/Veil)
  22. Application-level evasion using SQL injection Tool: SOLMap (https://sqlmap.org/)
  23. Application level evasion using Cross-Site Scripting (XSS) Tool: XSSer. (https://github.com/epsylon/xsser)
  24. File type and extension evasion Tool: FuzzDB (https://github.com/fuzzdb-project/fuzzdb)

Open Source cyber security tools

Top 26 Open Source cyber security tools

  1. Zeek: (https://zeek.org/) - Network Security Monitoring
  2. ClamAV: (https://www.clamav.net/) - Antivirus
  3. OpenVAS: (https://www.openvas.org/) - Vulnerability Scanner
  4. TheHive: (https://thehive-project.org/) - Incident Response
  5. PFSense: (https://www.pfsense.org/) - Security appliance (firewall/VPN/router)
  6. Elastic: (https://www.elastic.co/) - Analytics
  7. Osquery: (https://www.osquery.io/) - Endpoint visibility
  8. Arkime: (https://arkime.com/) - Packet capture and search
  9. Wazuh: (https://wazuh.com/) - XDR and SIEM
  10. Alien Vault Ossim: (https://cybersecurity.att.com/) - SIEM
  11. Velociraptor: (https://docs.velociraptor.app/) - Forensic and IR
  12. MISP project: (https://www.misp-project.org/) - Information sharing and Threat Intelligence
  13. Kali: (https://www.kali.org/) - Security OS
  14. Parrot: (https://www.parrotsec.org/) - Security OS
  15. OpenIAM: (https://www.openiam.com/) - IAM
  16. Yara: (https://virustotal.github.io/yara/) - Patterns
  17. Wireguard: (https://www.wireguard.com/) - VPN
  18. OSSEC: (https://www.ossec.net/) - HIDS
  19. Suricata: (https://suricata.io/) - IDS/IPS
  20. Shuffler: (https://shuffler.io/) - SOAR
  21. Phish Report: (https://phish.report/) - Anti Phishing
  22. Graylog: (https://www.graylog.org/products/source-available/) - Logmanagement
  23. Trivy: (https://www.aquasec.com/products/trivy/) - DevOps/IaC Scanning
  24. OpenEDR: (https://openedr.com/) - EDR
  25. Metasploit: (https://www.metasploit.com/) - Pentest
  26. NMAP: (https://nmap.org/) - Old but gold

Disclaimer
  1. License under CC BY-NC 4.0
  2. Copyright issue feedback me#imzye.com, replace # with @
  3. Not all the commands and scripts are tested in production environment, use at your own risk
  4. No personal information is collected.
Feedback