Best Free IT Security Software - Page 32
View:
Compare the Top Free IT Security Software as of June 2026 - Page 32
Sort By:
-
1
Shuffle
Shuffle
Shuffle is an open-source Security Orchestration, Automation, and Response (SOAR) platform designed to help security teams automate incident response and integrate security tools using visual workflows and APIs. It enables faster alert triage, consistent playbook execution, and centralized security automation across cloud and on-premise environments. Key features include a no-code workflow builder, an integrated App Creator for rapid API integration, and multi-tenancy support for MSSPs. It follows the Unix philosophy of "Do One Thing and Do It Well," focusing on being the glue between your existing security stack (SIEM, EDR, firewalls, etc.)Starting Price: Free -
2
GPT-5.5-Cyber
OpenAI
GPT-5.5 with Trusted Access for Cyber is OpenAI’s identity and trust-based framework for helping ensure enhanced cyber capabilities are placed in the right hands. It makes GPT-5.5 more useful for verified defenders working on authorized defensive tasks while continuing to restrict requests that could enable real-world harm. For most teams, GPT-5.5 with Trusted Access for Cyber is OpenAI’s strongest broadly useful model for legitimate defensive work, with more precise safeguards for workflows such as secure code review, vulnerability identification and triage, malware analysis, binary reverse engineering, detection engineering, and patch validation. Approved defenders receive lower classifier-based refusals for authorized cybersecurity workflows, but safeguards continue to block malicious activity such as credential theft, stealth, persistence, malware deployment, or exploitation of third-party systems. -
3
Keyshade
Keyshade
Keyshade is a secret and configuration manager designed for developers teams and infra. It helps you avoid hardcoding secrets, eliminate sharing your .env manually, and keep environment variables in sync across local setups, CI/CD pipelines, and production. Whether you're solo or working with a team, Keyshade fits into your workflow with minimal setup and maximum security.Starting Price: $7.99/month -
4
Headwind MDM
Headwind MDM
Headwind MDM is an open-source Mobile Device Management (MDM) platform purpose-built for Android. It helps companies of any size manage corporate phones, tablets, rugged devices, handheld scanners, kiosks, digital signage, TV boxes, and custom Android hardware from a single web-based admin panel.Unlike cloud-only MDM tools, Headwind MDM runs on your own infrastructure — including fully air-gapped networks with no internet access. The mobile agent can be signed with platform keys and preinstalled into device firmware, making it ideal for OEMs and custom ROM builds.The Community edition is free and open-source on GitHub. Premium and Enterprise editions add kiosk mode, unattended remote control, web traffic filtering, lost-device management, Samsung Knox integration, and premium support — all with a one-time perpetual license, not a per-device subscription.Starting Price: $19/month -
5
DMARCTrust
DMARCTrust
DMARCTrust is a DMARC monitoring service built for SMBs that don't have an email security expert in-house. Add your domain, get a dedicated reporting address, paste it into your DNS... and we take it from there: reports are parsed automatically, you see every source sending as your domain, with SPF/DKIM alignment and failures that matter. We also watch your DMARC, SPF and BIMI records every 5 minutes and alert you on changes, and we host MTA-STS policies for inbound protection. Built by an ex-Mailjet deliverability engineer, sysadmin since 2005, who got tired of reading aggregate XML by hand for consulting clients. Free for 1 domain, then simple per-domain pricing: no enterprise UI, no pricing traps.Starting Price: Free for 1 domain -
6
KaitoSec
KaitoSec GmbH
KaitoSec is a resilience platform for security teams in mid-sized enterprises and the public sector who bear real regulatory obligations without having enterprise budgets. The platform combines ISMS, BCMS, DSMS, and AI governance into a unified data model: one control, all frameworks. ISO 27001, BSI IT-Grundschutz++, NIS2, DORA, and GDPR are mapped and deduplicated, allowing requirements to be written once and fulfilled everywhere. Evidence collection runs continuously, not annually. Built for teams that are still juggling Excel, Jira, and outdated Java interfaces today. Made & hosted in Germany.Starting Price: $199/month -
7
TridentStack Control
TridentStack
TridentStack Control is a patch management, vulnerability detection, and compliance automation platform for managing Windows, macOS, and Linux endpoints. It provides one agent for operating system updates, third-party application patches, CVE scanning, network exposure monitoring, policy enforcement, and compliance tracking. The platform includes intelligent update filtering, approval workflows, deployment rings, pre-staging, CVE enrichment, and phased rollouts to help teams patch systems safely. TridentStack Control also manages third-party application updates with package manager integration, silent deployments, version targeting, configuration profiles, and application inventory. Its vulnerability tools detect CVEs across the fleet, prioritize issues by CVSS severity, and support exception management with expiration dates. With compliance frameworks such as CIS, DISA STIG, Microsoft Security Baselines, and NIST controls, TridentStack Control helps IT and security teams automate endpStarting Price: $0 -
8
Syslog-ng
Balabit
Syslog-ng is a reliable, scalable, secure central log management solution. With syslog-ng, IT teams can collect and centralize log data in regards to user activity, performance metrics, network traffic, and more. This helps remove data silos and lets teams gain full-stack visibility in to their log data. Syslog-ng features secure transfer and storage of data, scalable architecture, flexible log routing, real time transformation, and more. The platform is available in open source and enterprise editions. -
9
iionLife
iionHealth
iionLife by iionHealth is a free patient portal specifically created for behavioral health professionals. This effiicent and fully HIPAA secure system enables users to extend the care they deliver outside of their office. iionLife offers standardized assessment tools (i.e. PHQ-9) and a range of features for longitudinal tracking of patient results, patient journaling, activity tracking, secure email messaging, and so much more. The solution also includes Community of Care, Care Plan, Reference Library, Accounting, among others. -
10
minFraud
MaxMind
minFraud is a data return service that helps businesses prevent online fraud by providing risk scoring and risk data related to online transactions. Learn more about whether the minFraud service is right for your organization. The riskScore is generated in under half a second based on machine learning models and human review of network-wide fraud patterns. The data that feeds the riskScore consists of over 3 billion online transactions that the minFraud service screens annually for thousands of online businesses. When evaluating some types of online activity such as account logins, affiliate or incentivized traffic, or app installs, an IP address may be all you have. In these cases, the IP Risk Score allows you to check the IP risk to prevent bad activity. We recommend implementing our device tracking functionality to improve IP risk scoring. -
11
Vade
Vade Secure
Vade is a global leader in predictive email defense, protecting 1 billion mailboxes in 76 countries. We help MSPs and SMBs protect their Microsoft 365 users from advanced email security threats, including phishing, spear phishing, and malware. ISPs, MSPs, and SMBs choose Vade's email security solutions to protect their users and their businesses from advanced cybersecurity threats, including phishing, spear phishing, and malware. Whether we’re protecting consumers through leading ISPs, or business through our MSP partners, our AI-based email security solutions are designed to detect the undetectable. Block dynamic phishing attacks that bypass traditional solutions. Block targeted spear phishing & business email compromise attacks. Block evasive polymorphic and zero-day malware attacks. -
12
A tidal wave of vulnerabilities, but you can’t fix them all. Rely on extensive threat intel and patented prioritization to cut costs, save time, and keep your teams efficiently focused on reducing the biggest risks to your business. This is Modern Risk-Based Vulnerability Management. We created Risk-Based Vulnerability Management software and now we’re defining the modern model. Show your security and IT teams which infrastructure vulnerabilities they should remediate, when. Our latest version reveals exploitability can be measured, and accurately measuring exploitability can help you minimize it. Cisco Vulnerability Management (formerly Kenna.VM) combines real-world threat and exploit intelligence and advanced data science to determine which vulnerabilities pose the highest risk and which you can deprioritize. Spoiler alert: Your mega-list of “critical vulnerabilities” will shrink faster than a woolen sweater-vest in a hot cycle.
-
13
indeni
indeni
Indeni’s security infrastructure automation platform monitors firewall health and auto-detects issues like misconfigurations or expired licenses before they affect network operations. It automatically prioritizes issues so you only receive the most important alerts. Indeni protects your cloud environment by taking a snapshot of it before it’s built. Our cloud security analysis tool, Cloudrail, reviews your infrastructure-as-code files so you can identify violations earlier in development when they’re easier to fix. Constant detection of HA unreadiness from cross-device inconsistencies in security policies, forwarding tables, and other configurations and state. Consistent measurement of device configuration skew against locally-defined organizational standards. Collect relevant performance and configuration data from leading firewalls, load balancers, and other security infrastructure. -
14
Votiro
Votiro
The only file security solution that ensures all files coming into your enterprise are completely safe. Unlike detection-based file security solutions that scan for suspicious elements and block files, Positive Selection singles out only the safe elements of each file, ensuring every file that enters your organization is 100% safe. Any file, anywhere, anytime. With a deep, expert understanding of all types of files, Votiro’s Secure File Gateway eliminates threats from the widest possible range of files, no matter how they enter your organization. -
15
INKY
INKY Technology
INKY is an award-winning cloud-based email protection software. It blocks spam, malware, and most importantly — it protects businesses from phishing attacks like no other email security solution can. INKY uses domain-specific machine learning and computer vision to identify and block zero-day phishing emails that get through legacy email systems. Warning banners directly in the email offer guidance for suspicious emails. Integrates into Office 365 organization-wide within minutes. Safe/Unusual/Malicious warnings let users know how to treat the email. Our advanced dashboard gives you complete visibility and tracking into the threats being blocked. INKY’s email protection software places user-friendly warnings directly into the email, offering specific guidance to both protect and educate your users. Safe/Unusual/Malicious warnings with details guide the user to take a closer look or proceed cautiously. One of our clients’ favorite features is the ability to Report an Email with a click. -
16
Stytch
Stytch
The authentication platform for developers. Onboard, authenticate, and engage your users with Stytch’s APIs. Improve security and user experience with flexible, passwordless authentication solutions. Let us build the infrastructure, so you can focus on your product. Our SDKs offer flexible templates that can be tailored to your colors, fonts, and logo, so you can easily create seamless onboarding and authentication experiences that delight users and complement your brand—without the trouble of building UI from the ground up. For even more control over your user experience, choose our direct API integration, which considers both developer and user experience to ensure fast, safe, and easy passwordless authentication flows. We make the integration quick and painless, with clear and comprehensive documentation. -
17
SISA RA
SISA Information Security
Soaring cyber-attacks emphasize the need for organizations to look forward and see what is coming ahead. A formal Risk Assessment helps entities to disclose vulnerabilities and build a robust security architecture. While assessing risks is highly recommended for organizations to gain insights into the evolving cyber threats, automated risk assessment tools simplify the job for businesses. With the right Risk Assessment tool, organizations can save 70 – 80% of efforts to conduct risk-related activities and concentrate on critical tasks. SISA being a PCI Risk and Compliance expert for more than a decade, identified the challenges faced by organizations in anticipating risks and built SISA Risk Assessor, an intuitive Risk Assessment solution. SISA’s Risk Assessor is the first PCI Risk Assessment tool in the market, built based on world-renowned security methodologies, including NIST, OCTAVE, ISO 27001, and PCI DSS risk assessment guidelines. -
18
NetVizura NetFlow Analyzer
Soneco
NetFlow Analyzer is an easy solution for net admins to better understand bandwidth consumption, traffic trends, applications, hosts and traffic anomalies, by visualising the traffic by network devices, interfaces and subnets, traffic segments and end users. NetFlow Analyzer utilizes Cisco® NetFlow, IPFIX, NSEL, sFlow and compatible netflow-like protocols to help net admins with bandwidth monitoring, network traffic investigation, analyses and reporting. This way, companies can optimise networks and applications, plan network expansion, minimize time spent on troubleshooting and diagnostics, and improve security. NetVizura allows you to define custom traffic to be monitored based on IP subnets and traffic characteristics like protocol and service used. Monitor specific traffic for each organisational unit in your network such as departments, remote sites and collections of regional offices by identifying them with IP subnets. -
19
Teleport
Teleport
The Teleport Infrastructure Identity Platform modernizes identity, access, and policy for infrastructure, for both human and non-human identities, improving engineering velocity and resiliency of critical infrastructure against human factors and/or compromise. Teleport is purpose-built for infrastructure use cases and implements trusted computing at scale, with unified cryptographic identities for humans, machines and workloads, endpoints, infrastructure assets, and AI agents. Our identity-everywhere approach vertically integrates access management, zero trust networking, identity governance, and identity security into a single platform, eliminating overhead and operational silos. -
20
vArmour
vArmour
Legacy perimeters are irrelevant in modern cloud-based, remotely accessed, 24/7 enterprises. Hybrid environments are complex. People work from anywhere, at any time. But you still don’t know where all your applications, infrastructure, people, and data are, or the millions of dynamic interconnections among them. vArmour lets you automate, analyze, and act. Now. Based on what is happening currently or what happened last week. With no new agents. No new infrastructure. You are up and running fast with full coverage across your enterprise. Complete visibility means you create business and security policies to secure your assets and your business, significantly decreasing risk, ensuring compliance and building resiliency. Enterprise-wide protection built for the world of today, not yesterday. -
21
FireMon
FireMon
Maintaining a strong security and compliance posture requires comprehensive visibility across your entire network. See how you can gain real-time visibility and control over your complex hybrid network infrastructure, policies and risk. Security Manager provides real-time visibility, control, and management for network security devices across hybrid cloud environments from a single pane of glass. Security Manager provides automated compliance assessment capabilities that help you validate configuration requirements and alert you when violations occur. Whether you need audit reports ready out-of-the-box or customizable reports tailored to your unique requirements, Security Manager reduces the time you spend configuring policies and gives you the confidence that you’re ready to meet your regulatory or internal compliance audit demands. -
22
Optelcon Global View
Optelcon
Optelcon’s team all have an average of 21 years of industry experience before joining Optelcon. We know what goes on behind the carrier curtain. We know the tricks of the trade, how special pricing gets approved, margins, commissions, where they hide billing errors, special custom contract terms, operations, rate plans, equipment pricing, and virtually every aspect of how mobile carriers interact with their clients. Optelcon’s team has addressed billions in telecom and mobile contracts and has saved companies hundreds of millions of dollars. We have never failed to save a client money and our average savings exceed 42%. They say, “you don’t know what you don’t know”. Our team has seen it all. In other words, we are the team you want on your side of the table when dealing with your carriers. Optelcon manages all aspects of our client’s mobility spend. Our experienced team knows how to achieve maximum savings. -
23
Privatoria
Privatoria
If уоu аrе соnсеrnеd аbоut уоur оnlіnе ѕаfеtу, you ѕhоuld trу ѕоmе methods that wіll hide уоur identity. The mоѕt widely uѕеd today аrе thоѕе that hide the ір. Such methods іnсludе the use оf рrоxу servers and software рrоgrаmѕ. VPN is a good tool to keep you safe and anonymous at the same time. It creates a secure and encrypted connection between you and accessed website. When you connect to a VPN server all your traffic goes through an encrypted tunnel and none can see it until it exits the tunnel and accesses a public internet. If you are connecting to websites with HTTPS encryption, your personal data stays secure even when it exits the tunnel. VPN protects information and allows to leave no footprints while surfing the web.Starting Price: $2.74 per user per month -
24
LogonBox
LogonBox
Discover the LogonBox Advantage with our innovative solutions for the modern Enterprise. LogonBox is an independent software vendor that develops software to help organizations manage and secure user identities and credentials. LogonBox solutions reduce helpdesk tickets, increase productivity, secure access across heterogeneous enterprises, and protect network resources by extending authentication beyond the password. -
25
midPoint
Evolveum
Go with the best. Join hundreds of organizations that have tried and trust midPoint, the open-source leader in Identity Governance and Administration. Choose what fits you: run midPoint in the cloud, the hybrid cloud or on-premise. Accelerate your security and efficiency with enhanced visibility, policing, synchronization, and identity management. Meet the requirements of the regulations with midPoint’s excellent accountability, record-keeping abilities, and data protection scope. Put users in control of their personal data managed by organizations through the implementation of advanced data protection and privacy mechanisms. Enhance the digital experience of the users by empowering them to enable self-service access requests, password resets, and profile management. Enjoy the scalability and comfort midPoint in the cloud brings. Save valuable time and human resources by engaging third-party experts to take care of the seamless operation. Get the most out of the synergy. -
26
Quest ControlPoint
Quest Software
Confidently secure and protect your SharePoint environment from internal and external threats by with comprehensive permissions management, auditing, reporting and governance policy enforcement. With Quest ControlPoint, you can manage, secure, automate and govern your entire SharePoint environment—whether it’s an on-premises, Microsoft 365 or hybrid SharePoint deployment. Ensure permission policy compliance and prevent security breaches and unauthorized access to sensitive content. Audit, clean up and manage SharePoint permissions and users from a single console across all sites, site collections or farms. Analyze and manage all aspects of permissions whether they are directly assigned, inherited or granted through Active Directory or SharePoint groups. -
27
Infiltrator
Infiltration Systems
Infiltrator is a free easy to use, intuitive network security scanner that can quickly audit your network computers for vulnerabilities, exploits, and information enumerations. Infiltrator can reveal and catalog a plethora of information on scanned computers - such as installed software, shares, users, drives, hotfixes, NetBios and SNMP information, open ports and much more! Infiltrator can audit each computer's password and security policies, alerting you when changes should be made to increase security. All results can be generated into sleek, easy to read report by the report generator. Infiltrator also comes with over 15 powerful network utilities for footprinting, scanning, enumerating and gaining access to machines. Included utilities are ping sweep, whois lookups, email tracing, brute force cracking tools, share scanning, network enumerating, and many more! -
28
A simple to use standalone encryption solution providing full remote control of endpoint encryption keys and security policy for files on hard drives, portable devices and emails. Patented technology to protect data for businesses of all sizes. ESET Endpoint Encryption is FIPS 140-2 validated with 256 bit AES encryption. ESET Endpoint Encryption requires no server for deployment and can seamlessly support remote users. Manage encryption on Windows machines and native macOS encryption (FileVault) from a single dashboard. ESET Endpoint Encryption gives companies enhanced ability to protect specific files, folders, virtual disks or archives. By encrypting emails and attachments, and restricting access to removable media for specific users, you can protect data in transit and prevent their leakage outside the company. Full control of licensing and software features, security policy and encryption keys from a dedicated ESET Endpoint Encryption console.
-
29
Tigera
Tigera
Kubernetes-native security and observability. Security and observability as code for cloud-native applications. Cloud-native security as code for hosts, VMs, containers, Kubernetes components, workloads, and services to secure north-south and east-west traffic, enable enterprise security controls, and ensure continuous compliance. Kubernetes-native observability as code to collect real-time telemetry, enriched with Kubernetes context, for a live topographical view of interactions between components from hosts to services. Rapid troubleshooting with machine-learning powered anomaly and performance hotspot detection. Single framework to centrally secure, observe, and troubleshoot multi-cluster, multi-cloud, and hybrid-cloud environments running Linux or Window containers. Update and deploy policies in seconds to enforce security and compliance or resolve issues. -
30
Pulsedive
Pulsedive
Pulsedive offers threat intelligence platform and data products to help any security team streamline their threat intelligence research, processing, management, and integration. Start by searching any domain, IP, or URL at pulsedive.com. Our community platform provides free capabilities to enrich and investigate indicators of compromise (IOCs), analyze threats, query across the Pulsedive database, and submit new IOCs in bulk. What we do differently: - Perform passive or active scanning on every ingested IOC, on-demand - Risk evaluation and factors shared with our users based on first-hand observations - Pivot off any data property or value - Analyze shared threat infrastructure and properties for different threats Our commercial API and Feed products support the automation and integration of our data within organization security environments. Check out our website for different tiers and offerings.
