Curated recommendations

Recommended cybersecurity tools, apps & services

Explore third-party tools, learning platforms, lab environments, password managers, and professional software — curated for ethical hacking, SOC, Linux, cloud, and GRC workflows.

Compare options, read our notes, and use affiliate links where noted to support the platform.

Editor picks
Category filters
Compare tools
Affiliate transparency

Browse catalog Compare products

Some links are affiliate links. Recommendations are based on learning value and practitioner fit — not sponsorship alone.

Learning Labs Security SW All

Editor highlights

Labs · Learning

TryHackMe

Top pick B

Web security

Burp Suite

Featured 1

Identity

1Password Teams

GRC pick

50+: Products; Curated catalog
8: Categories; Tools to services
Honest: Reviews; Practitioner-first

Browse by category

Third-party tools, applications, services, and software — filter by category or search the catalog.

Loading products…

How we select recommendations

Practical Usefulness

We prioritize tools that solve real learning, security, infrastructure, compliance, or professional workflow problems.

Relevance to Cybersecurity

We avoid unrelated products and focus on tools that support cybersecurity learning, ethical hacking, SOC, Linux, cloud, DevSecOps, compliance, or IT operations.

Beginner Accessibility

Where possible, we include tools that are understandable for learners and provide free or affordable options.

Frequently asked questions

Are these PentesterWorld products?

No. This page mainly lists third-party tools, platforms, software, books, and services recommended by PentesterWorld. Some links may be affiliate links.

Do you earn commission from these recommendations?

Some links may generate affiliate commission at no extra cost to you. We disclose affiliate links clearly and aim to recommend tools that are relevant and useful.

Are all tools free?

No. Some tools are free, some have free versions, and some are paid. We try to mention whether a tool has a free plan, trial, community edition, or paid version.

Which tools should a beginner start with?

A beginner can start with TryHackMe, PortSwigger Web Security Academy, VirtualBox, Ubuntu Server, Kali Linux, Burp Suite Community, OWASP ZAP, Nmap, Wireshark, and Bitwarden.