🐧

Kali Linux

The industry-standard Debian-based OS for **penetration testing** and security auditing. Comes pre-installed with hundreds of tools.

Focus: Offensive Security, Auditing
Get Official ISO
🔍

Nmap (Network Mapper)

Free and open-source utility for **network discovery**, security auditing, and inventory. Often used with Zenmap (GUI).

Focus: Network Reconnaissance, Port Scanning
Go to Nmap.org
📈

Wireshark

The world's foremost **network protocol analyzer**. Essential for deep packet inspection, forensics, and troubleshooting.

Focus: Network Forensics, Traffic Analysis
Get Wireshark
🌐

Burp Suite Community/Pro

A leading platform for **web application security testing**. Includes an intercepting proxy and scanner to find vulnerabilities.

Focus: Web Application Penetration Testing
Download Burp
🔌

Npcap (Packet Capture Library)

The required **packet capture library** for Windows, necessary for tools like Nmap and Wireshark to function correctly.

Focus: Network Sniffing, Windows Support
Get Npcap
💣

Metasploit Framework

The world's most used **penetration testing framework** for exploiting and validating vulnerabilities across various systems.

Focus: Exploitation, Post-Exploitation
Download MSF
🚨

Snort (IDS/IPS)

An open-source **Network Intrusion Detection System (IDS)** used for real-time traffic analysis and logging. Essential for Blue Teams.

Focus: Blue Team, Threat Detection
Go to Snort.org
🔑

HashiCorp Vault

A tool for securely **accessing and managing secrets** (tokens, passwords, API keys) in modern development environments.

Focus: DevSecOps, Secrets Management
Get Vault
💾

Volatility Framework

An advanced, open-source framework for **memory forensics** to analyze digital evidence in volatile RAM dumps.

Focus: Digital Forensics and Incident Response (DFIR)
Get Volatility