Non-profit cyber security support for SMBs

Practical cyber security help that pushes you straight to the tools.

Security Aid is a non-profit providing free tools, guidance and practical support for SMBs, meaning small and medium-sized businesses. Aid+ premium services fund the free side of the mission and the longer-term aim of running managed security services for SMBs at little or no cost.

Free Tools

Start with the public tools.

Threat analysis, malware review, SIEM costing, query translation, supplier assurance and more.

Open tool directory
Services

Use the free support first.

Free awareness support, community sessions and the first 4 hours free for advisory-led services.

See service lines
Aid+

Premium work that funds the mission.

Assessment Aid+, Containment Aid+ and Asset Aid+ cover the deeper review and platform workflows.

View Aid+ platforms
Featured Services

Free help and premium support in one view.

Free

Security Awareness Training

Reduce everyday risk with free role-aware training guidance that turns security advice into practical habits.

View service
Free

Cyber Security Talks & Workshops

Free practical cyber security talks and workshops for SMBs, students and community groups.

View service
Aid+

Supplier & Third-Party Security Reviews

Third-party and supplier security reviews with 4 free advisory hours before deeper review and evidence analysis moves into Aid+.

View service
Aid+

Incident Response Planning

Prepare your business to respond calmly and effectively when an incident occurs, starting with 4 free hours of planning and review.

View service
Aid+

Microsoft Security Reviews

Improve Microsoft 365, Entra ID and Defender configurations with 4 free review hours before deeper assessment and reporting moves into Aid+.

View service
Aid+

Security Architecture & Roadmaps

Security architecture, roadmap and control design work, with the first 4 hours free before moving into paid Aid+ delivery.

View service
Free Tools

Popular public workflows.

Free Tool

Webusa

Stream large web access or error logs locally, flag suspicious requests, align activity to likely findings and review the output in filterable tables and timeline views.

Open Tool
Free Tool

HAR Threat Analysis Tool

Drop in a HAR file to highlight suspicious requests, injected JavaScript patterns, external infrastructure pivots and investigation priorities.

Open Tool
Free Tool

Malware Secret Scanner Audit Tool

Upload or paste suspicious package malware to recover targeted secret locations, environment variables, file paths, process targets and visible exfiltration indicators without scanning the visitor device.

Open Tool
Free Tool

Cyber Sous Chef

Paste encoded payloads, obfuscated code or suspicious snippets and get the best next CyberChef recipe to try without executing the sample.

Open Tool
Free Tool

SIEM Cost Estimator

Estimate log ingestion, retention strategy and likely monthly or annual cost for Sentinel, Splunk and other SIEM platforms.

Open Tool
Free Tool

Supplier Security Assurance Checklist

Generate a practical cyber security questionnaire to send to suppliers, SaaS providers and outsourced IT partners.

Open Tool
Aid+ Platforms

Premium platform workflows funding the free mission.

Aid+ Open Beta

Asset Aid+

Critical external asset discovery for internet-facing domains, infrastructure, exposed admin surfaces and newly discovered public assets.

  • Domain and subdomain discovery
  • DNS, IP and ASN correlation
  • Asset typing for VPNs, admin panels and exposed apps
  • Scheduled rescans and new asset change tracking

The gated commercial flow is temporarily disabled while the platform tooling is being completed.

Open Platform
Aid+ Open Beta

Assessment Aid+

One premium assessment platform where you choose the assessment you need and complete the relevant control review in one Aid+ workspace.

  • Cyber Essentials Assessment
  • SIEM Gap Assessment
  • Microsoft Defender Suite Assessment
  • Microsoft Purview Assessment

The gated commercial flow is temporarily disabled while the platform tooling is being completed.

Open Platform
Aid+ Open Beta

Containment Aid+

Premium containment and mass-compromise review delivery for Azure/M365, Okta and Salesforce environments.

  • Azure and M365 Containment Check
  • Okta Containment Check
  • Salesforce Containment Check
  • Mass-compromise workflow design and reporting

The gated commercial flow is temporarily disabled while the platform tooling is being completed.

Open Platform
Latest Security News

Current cyber threats and defensive guidance.

The Hacker News

Public GitHub Issue Could Trick GitHub Agentic Workflows Into Leaking Private Repo Data

A public issue can trick GitHub Agentic Workflows into leaking the contents of an organization's private repositories, researchers at Noma Security have shown. The…

Read article
The Hacker News

Court Filing Reveals Windows Device ID Helped FBI Trace Alleged Scattered Spider Hacker

Open
The Hacker News

Writer AI Flaw Could Let Agent Previews Leak Session Tokens Across Tenants

Open
The Hacker News

What Changes When Your Software Supply Chain Includes AI Writing Your Code?

Open
The Hacker News

Suspected China-Aligned Hackers Exploit Roundcube Flaws Against Universities

Open
The Hacker News

CERT/CC Warns of Hidden Admin Backdoor in Tenda Router Firmware

Open