Недавно наткнулся на полезную подборку " 20+ best FREE security tools ". Сохраню ссылки у себя в блоге, пригодятся.
- Maltego - http://www.paterva.com/web6/products/download2.php
- OWASP Zed Attack Proxy (ZAP) - https://blog.mozilla.org/security/2012/09/13/owasp-zap-the-firefox-of-web-security-tools
- Samurai Web Testing Framework - http://sourceforge.net/projects/samurai
- BackTrack - http://www.backtrack-linuх.org
- Cain & Abel - http://www.majorgeeks.com/Cain_and_Abel_d5062.html
- Fierce Domain Scan - http://ha.ckers.org/fierce
- The Harvester - http://www.social-engineer.org/framework/Computer_Based_Social_Engineering_Tools:_The_Harvester
- Hping - http://www.hping.org
- John the Ripper - http://www.openwall.com/john
- MobiSec - http://mobisec.secureideas.net
- Nessus - http://www.tenable.com/products/nessus
- NMap - http://nmap.org
- OpenVPN - http://openvpn.net
- Ophcrack - http://ophcrack.sourceforge.net
- Python Security - http://www.pythonsecurity.org
- Wireshark - http://www.wireshark.org
- ModSecurity - http://www.modsecurity.org/projects/modsecurity
- ThreadFix - http://code.google.com/p/threadfix
- Burp Suite - http://www.portswigger.net/burp
- Stormpath - http://www.stormpath.com
- Metasploit - http://www.metasploit.com
От себя еще добавлю несколько бесплатных сервисов Qualys - https://www.qualys.com/free-tools-trials/security-at-your-fingertips
И еще от Microsoft - http://blogs.technet.com/b/security/archive/2012/10/04/microsoft-s-free-security-tools-summary.aspx
