Help & User Guides
Detailed, feature-by-feature documentation for every tool in the ITSecTools security validation suite. Select a guide below to learn how each feature works, what it tests, and how to interpret the results.
DLP Validator
File uploads (HTTP/HTTPS/FTP), download test documents, raw text POST, file metadata & label checker, regex creator & translator, advanced payload generator, nested JSON exfiltration (MCP/API payloads), and PDF validation report.
NGFW Validation
IPS signature tests (SQLi, XSS, Path Traversal), Advanced Evasion Techniques, C2 beacon simulation, Run All Tests, Network IP Flooder (30 attacks), IP shun cooldown, console output, and PDF security assessment report.
MITRE ATT&CK Simulator
Kill chain concept, T1190 Apache Struts RCE, T1059.004 ThinkPHP RCE, T1003.001 Pulse Secure VPN, T1048.003 Shellshock Exfiltration, results interpretation, and PDF kill chain report.
Threat Generation
EICAR standard test files, heuristic malware samples, ransomware simulator, and how to verify your endpoint or gateway AV blocked the download.
Network Pulse
Public IP detection, edge server identification, latency (RTT), jitter, packet loss, Path MTU discovery, AI security insights, and connection quality scoring.
Tool Comparisons
See how ITSecTools compares to other security testing tools — feature by feature.
Legacy DLP Testing Tools vs ITSecTools
Static files vs dynamic payloads, evasion testing, vendor regex, and MIP label scanning.
View comparison →NGFW & Firewall Tools
Port scanners vs attack payload validators — HackerTarget, Pentest-Tools, Nmap.
View comparison →Web Security Tools
Vulnerability scanners vs security control validators — OWASP ZAP, Burp Suite CE.
View comparison →ITSecTools Documentation & Getting Started
ITSecTools is a free, browser-based security validation suite that helps security teams, IT administrators, and compliance auditors test their network defenses without installing agents or purchasing subscriptions. Every tool runs directly in your browser — no downloads, no sign-ups, no data collection.
What Can You Test?
- Data Loss Prevention (DLP) — Upload sensitive test files, test nested JSON exfiltration for MCP/API payloads (Advanced DLP Tests — unique, no competitor offers this), inspect metadata labels, build vendor-specific regex, generate evasion payloads, and download scored PDF validation reports.
- Next-Generation Firewall (NGFW) — Send real SQLi, XSS, Log4j, Shellshock, and C2 beacon payloads to verify IPS signatures and evasion detection. Download a PDF security assessment with per-category scoring. Includes a 30-attack flood stress test.
- MITRE ATT&CK Kill Chain — Execute a sequential 4-stage attack and download a PDF kill chain report showing where your defenses break.
- Threat Protection — Download EICAR, heuristic malware, and ransomware test files to verify endpoint and gateway antivirus detection.
- Network Pulse — Identify your public IP, measure latency/jitter/packet loss, discover Path MTU, and get AI-generated security recommendations.
Who Is This For?
Security Operations Center (SOC) analysts, network engineers, compliance auditors, penetration testers, and anyone responsible for validating security controls. Whether you're testing a newly deployed firewall, verifying DLP policies after a vendor migration, or demonstrating security posture during an audit — ITSecTools provides the validation you need at zero cost.