Skip to content
Breachfolio
Compare · Tool-by-tool

Security tooling, head to head.

Reproducible benchmarks of the offensive- and defensive-security tools practitioners actually argue about. Every score is versioned. Every test plan is published — no paid placement, ever.

Nmap vs Masscan comparison illustration
RECON
01/08
April 30, 20268 min read
Nmap vs Masscan

Nmap vs Masscan: accuracy versus raw throughput.

A /24 sweep, a /16 sweep, then a hostile /8. Where Nmap's service detection earns its seconds, and where Masscan stops being a footgun.

Burp Suite vs OWASP ZAP comparison illustration
WEB
02/08
April 22, 202610 min read
Burp Suite vs OWASP ZAP

Burp Suite vs OWASP ZAP: pays its rent?

Eight deliberately-broken apps, both proxies driven by the same playbook. Manual testing ergonomics, extension surface, and the price of 'free'.

Wireshark vs tcpdump comparison illustration
PACKETS
03/08
April 14, 20267 min read
Wireshark vs tcpdump

Wireshark vs tcpdump: pick the right tool.

When you reach for a GUI, when you reach for a CLI, and how to make them work together in real incident response.

Kali Linux vs Parrot OS comparison illustration
DISTRO
04/08
March 28, 20269 min read
Kali Linux vs Parrot OS

Kali Linux vs Parrot OS: the daily-driver test.

The boring choice that costs hours: which distro is least painful as a daily driver, not just for a CTF screenshot.

Metasploit vs Sliver comparison illustration
C2
05/08
March 14, 202611 min read
Metasploit vs Sliver

Metasploit vs Sliver: post-exploitation frameworks in 2026.

An ageing classic against the modern Go-native challenger. Exploit library, listener ergonomics, and how each one survives a tuned EDR.

Splunk vs Wazuh vs ELK comparison illustration
SIEM
06/08
July 08, 202610 min read
Splunk vs Wazuh vs ELK

Splunk vs Wazuh vs ELK: which SIEM fits your budget.

Three genuinely different cost models wearing the same "SIEM" label. The right pick depends on budget and team size, not a feature checklist.

Snort vs Suricata comparison illustration
IDS
07/08
July 08, 20269 min read
Snort vs Suricata

Snort vs Suricata: the other IDS debate.

Snort defined the rules format the whole industry still writes in. Suricata rebuilt the engine underneath it for modern multi-core hardware.

Nessus vs OpenVAS comparison illustration
SCANNERS
08/08
July 08, 20269 min read
Nessus vs OpenVAS

Tenable Nessus vs OpenVAS: scanners head to head.

A polished commercial plugin feed against a free, community-driven one. The real difference shows up in accuracy, setup time, and audits.