Free Security Software

Evil Exacts a High Price. Fighting it Can Be Free.

Why are we giving away valuable free tools like Redline^®?

Because we believe that the information the security community gains from this software is so important that it deserves to be in as many hands as possible. We’re committed to giving our community the day-in, day-out ability to fight evil. That’s why we make Redline—and other invaluable tools—available at no cost. When hosts are suspected of being compromised or infected Redline acts like cyber security adrenaline, rapidly accelerating the triage process while simultaneously supporting in-depth, real-time memory analysis.

We believe that because security is a shared threat, it’s best fought with a combination of innovation and shared intelligence. Some things are too important to charge for.

Analysis Tools

Redline

Redline

Redline® is a free utility that accelerates the process of triaging hosts suspected of being compromised or infected while supporting in-depth live memory analysis.

Memoryze

Memoryze

Memoryze™ is free memory forensic software that helps incident responders find evil in live memory.

Highlighter

Highlighter

Highlighter™ is a free utility designed primarily for security analysts and system administrators.

Research Tools

ApateDNS

ApateDNS

ApateDNS™ is a tool for controlling DNS responses though an easy-to-use GUI.

PdbXtract

PdbXtract

PdbXtract™ enables you to explore symbolic type information as extracted from Microsoft programming database files.

Heap Inspector

Heap Inspector

Heap Inspector™ is a heap visualization and analysis tool that collects a process’ heaps using both API and raw methods.

Indicator of Compromise (IOC) Tools

IOC Editor

IOC Editor

IOC Editor is a free tool that provides an interface for managing data.

IOC Finder

IOC Finder

IOC Finder is a free tool for collecting host system data and reporting the presence of IOCs.

IOC Writer

IOC Writer

IOC Writer provide a python library that allows for basic creation and editing of OpenIOC objects.

Open Source Tools

Reversing

Reversing

Reversing ia a free repository containing a collection of IDA Pro scripts and plugins.

RProxy

RProxy

RProxy is a free reverse proxy server written with performance and scale in mind.

ShimCacheParser

ShimCacheParser

ShimCacheParser is a proof-of-concept tool for reading the Application Compatibility Shim Cache stored in the Windows registry.

Audit Parser

Audit Parser

Audit Parser was designed to convert the raw XML output generated by Redline or IOC Finder into tab-delimited text files.