OSSEC is an Open Source Host-based Intrusion Detection System that performs log analysis, file integrity checking, policy monitoring, rootkit detection, real-time alerting and active response.

The Sleuth Kit® (TSK) is a library and collection of command line digital forensics tools that allow you to investigate volume and file system data. The library can be incorporated into larger digital forensics tools and the command line tools can be directly used to find evidence.

A network sniffer that logs all DNS server replies for use in a passive DNS setup

unix-like reverse engineering framework and commandline tools

Bro is a powerful network analysis framework that is much different from the typical IDS you may know. Official mirror of git.bro.org/bro.git .

SQL powered operating system instrumentation, monitoring, and analytics.

Distributed & real time digital forensics at the speed of the cloud

Moloch is a open source large scale IPv4 full PCAP capturing, indexing and database system.

OS X Auditor is a free Mac OS X computer forensics tool

MozDef: The Mozilla Defense Platform

The Browser Exploitation Framework Project

A static analyzer for Java, C and Objective-C

Alienvault Labs Projects Random Stuff

Cuckoo Sandbox is an automated dynamic malware analysis system

GRR Rapid Response: remote live forensics for incident response

A forensic evidence collection & analysis toolkit for OS X

Metasploit Framework

A static analysis security vulnerability scanner for Ruby on Rails applications

Ephemeral Docker jails for running untrusted Ruby code

Scumblr is a web application that allows performing periodic searches and storing / taking actions on the identified results.

Multi-snort and honeypot sensor management, uses a network of VMs, small footprint SNORT installations, stealthy dionaeas, and a centralized server for management.