Best Free IT Security Software - Page 31
View:
Compare the Top Free IT Security Software as of June 2026 - Page 31
Sort By:
-
1
C-Prot Threat Intelligence Portal is a powerful web service for providing access to information about cyber threats. C-Prot Threat Intelligence Portal offers the possibility to check different types of suspicious threat indicators such as files, file signatures, IP addresses, or web addresses. In this way, institutions are informed about potential threats and can take necessary precautions. Detect advanced threats using our advanced detection technologies, including dynamic, static, and behavioral analysis, and our global cloud reputation system with the C-Prot Threat Intelligence Portal. Access detailed information on specific malware indicators, as well as the tools, tactics, and attack types used by cyber attackers. Check for different indicators of suspicious threats such as IP address and web address. Understand threat trends and anticipate specific attacks with complete knowledge of your threat environment.Starting Price: Free
-
2
C-Prot Device Fingerprint
C-Prot
C-Prot Device Fingerprint is a solution developed to securely identify users and analyze web traffic on websites. This solution aims to provide high-level security and enhance user experience by uniquely identifying users. Combine security and advanced analytics in your industry, identify users with C-Prot Device Fingerprint, analyze their behaviors, and prevent fraud by providing top-level security in your organization. Detect potential identity theft or attempts to modify device identity information. Detect malicious users quickly and accurately by identifying mismatched time zones, usage of private browsing mode, and proxy-related features. Manage all your endpoints from anywhere using C-Prot Remote Administrator, which can be used in both cloud-based and on-premises environments. It detects if users appear in a different location in terms of the country, city, and time zone compared to their previous logins.Starting Price: Free -
3
Casbin
Casbin
Casbin is an open-source authorization library that supports various access control models, including Access Control Lists (ACL), Role-Based Access Control (RBAC), and Attribute-Based Access Control (ABAC). It is implemented in multiple programming languages such as Golang, Java, C/C++, Node.js, JavaScript, PHP, Laravel, Python, .NET (C#), Delphi, Rust, Ruby, Swift (Objective-C), Lua (OpenResty), Dart (Flutter), and Elixir, providing a consistent API across different platforms. Casbin abstracts access control models into configuration files based on the PERM metamodel, allowing developers to switch or upgrade authorization mechanisms by simply modifying configurations. It offers flexible policy storage options, supporting various databases like MySQL, PostgreSQL, Oracle, MongoDB, Redis, and AWS S3. The library also features a role manager to handle RBAC role hierarchies and supports filtered policy management for efficient enforcement.Starting Price: Free -
4
Meraki Systems Manager
Cisco
Cisco Meraki Systems Manager is a cloud-based mobile device management (MDM) solution that enables organizations to remotely secure devices with agility and ease. It integrates endpoint, network, and application security into a single platform, laying the foundation for a zero-trust security model through Meraki and Cisco security integrations. This allows for dynamic access adjustments and enforcement of network security policies based on device compliance. Systems Manager offers intelligent automation, automatically importing configurations from security applications and deploying changes to thousands of devices with minimal effort. It supports various platforms, providing comprehensive security and management capabilities across diverse device ecosystems. The solution facilitates seamless and secure remote management, enabling IT teams to monitor and troubleshoot devices in real time using tools like remote desktops. -
5
Protect your users and business with seamless Account Takeover (ATO) prevention. Enzoic’s REST API integrates effortlessly into your login, account setup, and password reset workflows, providing real-time detection of compromised credentials from third-party breaches. This allows you to take immediate action, like requiring a password reset or enabling step-up authentication, to keep accounts secure. With Enzoic, you gain the benefits of proactive protection without disrupting the user experience. Our solution reduces fraud and unauthorized access by using a constantly updated database of billions of compromised credentials. Whether the threat is from a recent breach or an older one, Enzoic identifies unsafe credentials and neutralizes risks. Designed for flexibility and ease of use, Enzoic empowers your organization to stay ahead of account takeover threats while maintaining smooth operations.Starting Price: $0
-
6
TrustCloud
TrustCloud Corporation
Don’t struggle with 1000s of vulnerability smoke signals from your security tools. Aggregate feeds from your cloud, on-premises, and bespoke apps, and combine them with feeds from your security tools, to continuously measure the control effectiveness and operational status of your entire IT environment. Map control assurance to business impact to assess which gaps to prioritize and remediate. Use AI and API-driven automation to accelerate and simplify first-party, third-party, and nth-party risk assessments. Automate document analysis and receive contextual, reliable information. Run frequent, programmatic risk assessments on all your internal and third-party applications to eradicate the risk of one-time or point-in-time evaluations. Take your risk register from manual spreadsheets to programmatic, predictive risk assessments. Monitor and forecast your risks in real-time, enable IT risk quantification to prove financial impact to the board, and prevent risk instead of managing it. -
7
Trueguard
Trueguard
Trueguard identifies suspicious and fake emails at signup. Identify if the user's email is suspicious or temporary by detecting email quality, checking against our domain database & AI matching. Analyze your user's IP addresses to determine if they originate from suspicious sources like a VPN or proxy. Trueguard features: - Email Intelligence - Proxy & VPN Detection - Device Fingerprinting - AI Scoring - Geolocation - Rules EngineStarting Price: $12.99/month -
8
Proxed.AI
Proxed.AI
Proxed.AI is the fastest way to secure AI APIs in iOS. AI-powered iOS apps face a major security challenge - how to protect API keys and prevent unauthorized usage. If your API keys are exposed, they can be stolen, leading to huge costs, data breaches, and service abuse. Proxed.AI solves this in seconds. Unlike traditional security methods requiring an SDK or backend, Proxed.AI lets you protect AI API keys with just a simple URL and key change: no extra code to install, no infrastructure, no maintenance.Starting Price: $10/month -
9
SACT (Self-Assessment Compliance Toolkit) by SwiftSafe is a comprehensive tool designed to help organizations stay compliant with major cybersecurity regulations like GDPR, HIPAA, PCI DSS, and ISO 27001. The platform simplifies compliance management by offering hassle-free assessments, real-time reporting, and automated updates on regulatory changes. SACT helps businesses generate instant audit reports, track security improvements, and maintain compliance without the need for costly consultations. With its user-friendly interface and 24/7 support, SACT streamlines the process, making it easy for businesses to meet their compliance obligations efficiently.Starting Price: $150
-
10
Ulaa Enterprise
Zoho
Ulaa Enterprise is a browser purpose-built for modern businesses, with security, compliance, and performance at its core. It provides a secure, compliant, and AI-powered browsing environment with built-in data loss prevention (DLP), granular policy controls, and native security tools. This proactive approach helps organizations prevent threats before they occur, rather than reacting after a breach. Key Features: Centralized Management: IT teams gain full visibility and control over browser activity through a central admin console. This allows real-time monitoring, policy enforcement, and consistent compliance across all endpoints. Data Loss Prevention (DLP): Built-in DLP features help prevent the exposure of sensitive information through downloads, clipboard use, or screen captures. These protections work seamlessly within the browser to support secure workflows. Native Security Tools: Ulaa Enterprise includes phishing protection, zero-trust access, and AI-driven threatStarting Price: $1 per device per month -
11
OpenCTI
Filigran
OpenCTI is an open source threat intelligence platform developed by Filigran, designed to help organizations collect, correlate, and leverage threat data at strategic, operational, and tactical levels. It provides a consolidated view of threat data from multiple sources, transforming raw data into actionable insights. It features a sophisticated knowledge hypergraph database, fully compliant with STIX standards, enabling deep context and relationships within threat intelligence. OpenCTI offers comprehensive visualizations and analytics, facilitating comparison and investigation within the knowledge graph. It integrates both technical and non-technical information into a unified system, linking each piece of threat intelligence to its original source for a complete analytical perspective. It also includes powerful case management capabilities, enhancing threat detection and response by centralizing incident-related data and fostering real-time collaboration. -
12
OpenBAS
Filigran
OpenBAS is an open source breach and attack simulation (BAS) platform developed by Filigran, designed to help organizations plan, schedule, and conduct cyber adversary simulation campaigns and tests. It enables the creation of dynamic attack scenarios, ensuring accurate, timely, and effective responses during real-world incidents. With over 800 GitHub stars and more than 10 injectors, OpenBAS allows for customizable simulations tailored to various industry needs, evaluating both technical and human aspects of security posture. It integrates threat intelligence from OpenCTI, enabling dynamic customization based on the latest cyber threat insights, used techniques, and relevant adversary behaviors. OpenBAS facilitates team and technology evaluations regarding actual cyber threats and collaborative feedback on scenarios within the platform, enabling detailed analysis for a comprehensive review process. -
13
Veille
Veille
Veille is an advanced security platform designed to protect applications from AI-driven fraud, malicious bots, account takeovers, and automated attacks in real time. Its intelligent verification API helps stop suspicious signups and unauthorized access by analyzing multiple risk factors while maintaining a seamless user experience. Veille offers comprehensive features like device fingerprinting, bot detection, AI risk scoring, email intelligence, and behavioral analysis to safeguard platforms against abuse. The system is easy to integrate with just a few lines of code and continuously updates to counter emerging threats. With high uptime and a proven track record processing over 200 million requests, Veille ensures reliable and effective protection. Its flexible pricing plans cater to startups, growing teams, and large enterprises.Starting Price: $99/month -
14
Trapster
Ballpoint
Trapster is a complete Deceptive Security platform that uncovers intrusions by deploying convincing decoy systems within your network, luring attackers into revealing their presence. Its powerful detection capabilities are built on three key components: 1) Network-Based Honeypot Server: launches virtual machines on your Hypervisor or Cloud, supporting 15+ protocols. It detects scans and lateral movements, delivering real-time alerts via email, dashboard, webhooks, syslog, or API. Effortlessly auto-configured and maintenance-free for seamless integration. 2) Lures (Honeytokens): plants deceptive files, URLs, API keys, or database entries to trap attackers early. 3) External Login Panel: mimics authentic login interfaces to expose credential leaks before they’re exploited. Unlike traditional security tools, Trapster proactively identifies threats that evade conventional detection, empowering organizations to stay one step ahead.Starting Price: $1000/year -
15
Allthenticator
Allthenticate
Allthenticator is a passwordless authentication platform designed to unify digital and physical access through a single smartphone-based identity. It enables proximity-based login to computers, websites, and servers, while also unlocking physical doors with the same device—eliminating passwords, tokens, and keycards. The platform supports SSH key signing, passkey logins, OTP management, and native integrations with identity providers like Azure AD and Okta. Admins manage everything from a centralized dashboard with role-based access and audit logs. Allthenticator also offers a decentralized credential recovery system, allowing users to back up identities with trusted peers instead of the cloud. Organizations using Allthenticator have reported 94% fewer password resets, 76% less time spent on access management, and up to 96% employee satisfactionStarting Price: $12/month/user -
16
SOCLabs
SOCLabs
SOCLabs is an interactive cybersecurity training platform for security operations teams, detection engineers, and blue team defenders. It transforms theory into practical skills by providing realistic environments, authentic threat data, and hands-on exercises. Key features include the world’s first Detection Challenge module, where users write and test rules using real attack datasets. It supports major SIEM query languages such as Sigma, Splunk, Elastic, and OpenSearch, with one‑click validation and accuracy checks based on the MITRE ATT&CK framework. The Learning System offers step‑by‑step courses, from basic defense tools to enterprise‑level architecture, with interactive labs and scenario challenges. The DetectionHub enables continuous log analysis and query testing, while the Collaborative Ecosystem connects global experts to share data, contribute rules, and solve threats together.Starting Price: $10/month -
17
Tesseral
Tesseral
Tesseral is the open source platform for managing identity and access in business software. It provides enterprise-grade capabilities, including SAML single sign-on, SCIM provisioning, role-based access control, managed API keys, and audit logs, implemented in just a few lines of code. Tesseral unifies access management for employees, customers, services, and AI agents, giving organizations the flexibility to adapt to any deployment model and the authority to enforce security policies with precision. You can learn more by reading our docs or by checking out our GitHub.Starting Price: $0 -
18
InterceptSuite
InterceptSuite
InterceptSuite is a comprehensive MITM proxy and TLS interception tool designed for security professionals, developers, system administrators, and network engineers. It features advanced SOCKS5 proxy capabilities with Python extension support, allowing users to write custom protocol dissectors and analysers for any TLS-encrypted protocol. The platform offers cross-platform compatibility across Windows, macOS, and Linux, with both free open-source and professional editions available. Key features include TLS packet interception, Universal TLS Upgrade Detection for protocols like SMTPS, IMAP, PostgreSQL TLS, and STARTTLS, plus PCAP file export for analysis with external tools like Wireshark.Starting Price: $10/month -
19
DarQ Intel
DarQ Security
DarQ Intel is a cybersecurity platform that helps organizations better understand and manage their digital risks. It uses AI-driven analysis to highlight potential vulnerabilities, monitor network and cloud environments, and provide actionable security recommendations. DarQ Intel is designed to simplify security workflows and give teams clearer visibility into their infrastructure. Deployment is simple and agent-free, making it easy to get started quickly. The platform integrates with major cloud providers and popular security tools to help centralize insights. It also includes supply chain risk visibility, allowing businesses to identify areas that may need attention. Whether for a small business or a large enterprise, DarQ Intel aims to deliver clear, data-driven security insights that evolve with your organization’s needs. DarQ Security offers a LiTE version for Small Business, and an Enterprise / Government version with enhanced capabilities based on your needs and budget.Starting Price: $4.99/month -
20
Modat Magnify
Modat
Founded in 2024, Modat is a European, research-driven, privacy-aware cybersecurity company focused on strengthening resilience for individuals, companies, and governments. Our flagship platform, Modat Magnify, accelerates threat intelligence by precisely identifying, monitoring, and tracking internet-connected infrastructure. Using the world’s largest Internet device dataset, we fingerprint and catalog devices, creating unique profiles that enable proactive security. Designed for both offensive and defensive operations, Magnify combines speed, accuracy, and usability through an intuitive interface built on real-world security expertise. By delivering contextualized data and predictive insights, Modat empowers the security community to outpace threats and close the growing gap between attacks and resilience. Outpace to outlast.Starting Price: €18 -
21
Passwd
Passwd
Passwd.team is a team password manager designed for organizations using Google Workspace. It enables secure storage, sharing, and management of passwords, access keys, and other sensitive data within a company environment. The platform integrates directly with Google Workspace users and groups, making access control automatic and efficient. All data is encrypted and can be stored in your own Google Cloud environment, ensuring full ownership and compliance with security standards. Passwd.team simplifies onboarding and offboarding, supports detailed access permissions, activity audits, and offers browser extensions for easy password autofill and management.Starting Price: $20/month -
22
MailArmor
Protecte Technologies
MailArmor delivers enterprise-grade email security with cutting-edge AI technology, 5-minute Microsoft 365 integration, and complete CERT-In & DPDP compliance-all at SMB-friendly pricing.Starting Price: ₹150 -
23
Azure SRE Agent
Microsoft
Azure SRE Agent is an AI-powered reliability assistant designed to automate site reliability engineering tasks and help teams maintain the health and performance of cloud environments. It continuously monitors Azure resources, detects anomalies, and uses AI to recommend or execute mitigations that reduce downtime and operational toil. It integrates with Azure services and external systems, enabling end-to-end automation of operational workflows while improving system uptime and consistency. Through a natural-language chat interface, engineers can investigate incidents, receive troubleshooting guidance, and approve automated remediation actions before they are applied. The agent analyzes logs, metrics, and telemetry to accelerate root cause analysis and can execute predefined fixes such as scaling resources or restarting services. -
24
Tuurio ID
Tuurio GmbH
Tuurio ID is a white-label identity and authentication platform designed for developers, agencies, and SaaS companies that want to implement secure login systems quickly. The platform allows teams to build and deploy branded authentication flows—including passkeys, multi-factor authentication, and social logins—without maintaining their own identity infrastructure. With EU-hosted data, GDPR compliance, and multi-tenant architecture, Tuurio ID enables organizations to create secure login systems on their own domains while maintaining full control over branding and user management.Starting Price: 39€/month (up to 5000 users) -
25
Metoro
Metoro
Metoro is an AI SRE for Kubernetes based systems. It helps SREs, DevOps and Software Engineers handle production. Metoro autonomously monitors services and infrastructure to detect issues as they arise. Then it automatically root causes issues and fixes them by opening pull requests. It collects all telemetry required itself via eBPF - every container, service and host is instrumented at the kernel level at runtime - no code changes are needed. Users run one helm install to install Metoro into their clusters, then they're up and running. Set up is around 5 minutes.Starting Price: $20/host/month -
26
InCyan
InCyan
InCyan is an AI-powered digital content protection platform designed to help organizations safeguard and monetize their digital assets across the entire lifecycle. It enables businesses to discover, identify, and prevent unauthorized use of content through advanced monitoring, fingerprinting, and invisible watermarking technologies. The platform supports multiple content formats including images, video, audio, and text, ensuring comprehensive protection. With real-time tracking and analytics, InCyan provides actionable insights into content usage and performance. It helps brands reduce piracy risks while maximizing revenue opportunities from their digital assets.Starting Price: Free -
27
HookProbe
HookProbe
HookProbe is an open-source AI-native intrusion detection system (IDS/IPS) that runs on Raspberry Pi and edge devices. It combines eBPF/XDP kernel-level packet filtering with machine learning threat classification to deliver autonomous network security with zero cloud dependency. The stack includes NAPSE (AI packet inspection), HYDRA (threat intelligence pipeline), SENTINEL (ML classification engine), and AEGIS (autonomous defense orchestrator). In production, a single Raspberry Pi 5 processes 11M+ security events, classifies 177K ML verdicts, and tracks 11,800+ attacker IPs — all autonomously. Key features: - 5-minute install on Raspberry Pi 5 or any Linux device - eBPF/XDP wire-speed packet filtering and DDoS mitigation - ML-based threat classification (benign/suspicious/malicious) - Real-time QSecBit security posture scoring - Web dashboard with live threat visualisation - Post-quantum cryptography (Kyber KEM) - Collective mesh defense across nodesStarting Price: $9/month -
28
middleBrick
middleBrick
middleBrick is a zero-friction security scanner for APIs and AI models designed for high-performance engineering teams. Unlike traditional scanners that require complex agents or credentials, middleBrick delivers a comprehensive security audit in under 60 seconds by simply analyzing an endpoint URL. Coverage includes 14 critical security categories: Full OWASP API Top 10 (BOLA/IDOR, BFLA, Mass Assignment, SSRF). AI/LLM Security: 18 adversarial probes testing for prompt injection, jailbreaks, and leakage. Web3 & DeFi: Specialized scanning for JSON-RPC nodes (Ethereum, Solana, Cosmos) and price oracle integrity. Integrated for modern workflows with a GitHub Action, CLI, and an MCP server for Claude and Cursor. middleBrick provides prioritized findings with production-ready remediation steps to help you ship secure code today. It is the "smoke alarm" for your API infrastructure, always on, only alerting you when there is a fire.Starting Price: $99/month -
29
Shuffle
Shuffle
Shuffle is an open-source Security Orchestration, Automation, and Response (SOAR) platform designed to help security teams automate incident response and integrate security tools using visual workflows and APIs. It enables faster alert triage, consistent playbook execution, and centralized security automation across cloud and on-premise environments. Key features include a no-code workflow builder, an integrated App Creator for rapid API integration, and multi-tenancy support for MSSPs. It follows the Unix philosophy of "Do One Thing and Do It Well," focusing on being the glue between your existing security stack (SIEM, EDR, firewalls, etc.)Starting Price: Free -
30
GPT-5.5-Cyber
OpenAI
GPT-5.5 with Trusted Access for Cyber is OpenAI’s identity and trust-based framework for helping ensure enhanced cyber capabilities are placed in the right hands. It makes GPT-5.5 more useful for verified defenders working on authorized defensive tasks while continuing to restrict requests that could enable real-world harm. For most teams, GPT-5.5 with Trusted Access for Cyber is OpenAI’s strongest broadly useful model for legitimate defensive work, with more precise safeguards for workflows such as secure code review, vulnerability identification and triage, malware analysis, binary reverse engineering, detection engineering, and patch validation. Approved defenders receive lower classifier-based refusals for authorized cybersecurity workflows, but safeguards continue to block malicious activity such as credential theft, stealth, persistence, malware deployment, or exploitation of third-party systems.
