Non-profit cyber security support for SMBs

Practical cyber security support for SMBs

Security Aid is a non-profit providing free assessments, guidance, tools and resources for SMBs, meaning small and medium-sized businesses. Security Aid does not charge for any of its services.

Explore Tools Latest Security News
82Readiness
Identity controlsStrong
Detection coverageImproving
Incident readinessAction needed
Featured Services

Free security support without enterprise complexity.

Web App Penetration Testing

Free high-level web application testing guidance to help SMBs understand common risks such as broken access control, insecure login flows and exposed data.

View service

Vulnerability Assessments

Find exploitable weaknesses before attackers do, with free non-profit remediation guidance for small and medium-sized businesses.

View service

Security Advisory

Free cyber security guidance for leadership, IT teams, and growing businesses without a full-time security function.

View service

Security Awareness Training

Reduce everyday risk with free role-aware training guidance that turns security advice into practical habits.

View service

Cyber Security Talks & Workshops

Free practical cyber security talks and workshops for SMBs, students and community groups.

View service

Incident Response Planning

Prepare your business to respond calmly and effectively when an incident occurs.

View service

Supplier & Third-Party Security Reviews

Free guidance to help SMBs understand supplier, SaaS and outsourced IT security risks.

View service

Microsoft Security Reviews

Improve Microsoft 365, Entra ID, Defender, and endpoint protection configurations with free practical hardening advice.

View service

SIEM & Detection Engineering Reviews

Understand whether your logs, alerting, and detections cover the threats that matter most.

View service
Featured Tools

Assess your current posture in minutes, at no cost.

Assessment Tools

Flick through the free tools

Free Tool

Cyber Essentials Assessment

Check identity, devices, patching, malware protection, backups, network exposure and data protection against Cyber Essentials-style controls.

Open Tool
Free Tool

SIEM Gap Assessment

Map identity, endpoint, cloud, SaaS, network, email, server and detection controls to identify visibility gaps and maturity priorities.

Open Tool
Free Tool

SIEM Cost Estimator

Estimate log ingestion, retention strategy and likely monthly or annual cost for Sentinel, Splunk and other SIEM platforms.

Open Tool
Free Tool

SIEM Query Translator

Translate common hunting queries between KQL, Splunk, OpenSearch, LogScale, SentinelOne-style syntax and other SIEM query languages.

Open Tool
Free Tool

Incident Response Plan Generator

Generate a structured incident response playbook with scenario-specific flow diagrams, procedures and stakeholder templates.

Open Tool
Free Tool

Microsoft Defender Suite Assessment

Assess Defender XDR, Endpoint, ASR, Identity, Office 365, Cloud Apps, Servers, Cloud, IoT, mobile and KQL data coverage.

Open Tool
Free Tool

Microsoft Purview Assessment

Assess Microsoft Purview information protection, sensitivity labels, DLP coverage, alerting and governance controls.

Open Tool
Free Tool

Zscaler DLP Assessment

Assess Zscaler DLP inspection scope, policy attachment, match quality, incident handling and operational tuning.

Open Tool
Free Tool

BeyondTrust PAM Assessment

Assess BeyondTrust Password Safe, endpoint privilege management, session control and PAM governance coverage.

Open Tool
Free Tool

HAR Threat Analysis Tool

Drop in a HAR file to highlight suspicious requests, injected JavaScript patterns, external infrastructure pivots and investigation priorities.

Open Tool
Free Tool

Code Reverse Engineering Helper

Paste suspicious or malicious code to auto-detect the language, reconstruct common obfuscation patterns, decode string resolvers and break down functions, strings, IOCs and deobfuscation priorities without executing it.

Open Tool
Free Tool

Malware Secret Scanner Audit Tool

Upload or paste suspicious package malware to recover targeted secret locations, environment variables, file paths, process targets and visible exfiltration indicators without scanning the visitor device.

Open Tool
Free Tool

SASSAT Repo

Download the authorised SASSAT Python responder scripts and usage guide after entering the shared password.

Open Tool
Free Tool

Supplier Security Assurance Checklist

Generate a practical cyber security questionnaire to send to suppliers, SaaS providers and outsourced IT partners.

Open Tool
Latest Security News

Current cyber threats and defensive guidance.

View all news
The Hacker News

Ukraine Says Russian Intelligence Used Fake Support Texts to Steal Messaging Credentials

The Security Service of Ukraine (SSU) said it, together with the U.S. Federal Bureau of Investigation (FBI), uncovered a long-running campaign orchestrated by Russian…

Read article
The Hacker News

OpenAI Previews GPT-5.6 Sol With Restricted Access and Stronger Cyber Safeguards

OpenAI on Friday released three versions of GPT-5.6, called Sol, Terra, and Luna, as a limited preview to a small number of companies as…

Read article
The Hacker News

FBI Warns Russian Intelligence Hackers Target Signal Backup Recovery Keys

The FBI and CISA have updated their March warning about Russian intelligence phishing Signal accounts, and the operators have added a step: they now coax targets…

Read article
The Hacker News

New SharkLoader Malware Deploys Cobalt Strike in StrikeShark Cyberattacks

A newly discovered cyber attack campaign has been observed delivering a previously undocumented malware family called SharkLoader that acts as a loader for deploying…

Read article

Security shouldn't be expensive.

Security Aid is non-profit and does not charge for any of its services. Start with free assessments, practical guidance and clear remediation priorities built for small and medium-sized businesses.

Start a Free Assessment