Security
Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.
- GitHub: https://github.com/topics/security
- Wikipedia: https://en.wikipedia.org/wiki/Computer_security
- Aliases: security-tools, security-vulnerability, security-audit,
- Last updated: 2026-01-30 00:28:55 UTC
- JSON Representation
https://github.com/blabla1337/skf-flask
Security Knowledge Framework (SKF) Python Flask / Angular project
owasp-skf secure-by-default secure-coding security security-audit security-framework security-hardening security-knowledge security-requirements security-standards security-training
Last synced: 03 Apr 2025
https://github.com/phasehq/console
Application secrets and configuration management for developers.
devops django docker dotenv end-to-end-encryption environment-variables nextjs open-source python react secret-management secrets secrets-management security security-tools self-hosting typescript
Last synced: 16 Jan 2026
https://github.com/simpleidserver/simpleidserver
OpenID, OAuth 2.0, SCIM2.0, UMA2.0, FAPI, CIBA & OPENBANKING Framework for ASP.NET Core
ciba dotnet-core fapi identity oauth2 openid openid-providers scim2 security uma2
Last synced: 15 May 2025
https://github.com/Zeyad-Azima/Offensive-Resources
A Huge Learning Resources with Labs For Offensive Security Players
api api-security cloud-security cybersecurity hack hacking infrastructure learning mobile mobile-security offensive offensive-security owasp owasp-top-10 red-team red-teaming redteam security web web-security
Last synced: 11 Jul 2025
https://github.com/enkidevs/curriculum
👩🏫 👨🏫 The open-source curriculum of Enki!
ai algorithms blockchain chatgpt computer-science css curriculum data-science education enki git gpt4 html java javascript learn-to-code linux python security sql
Last synced: 15 May 2025
https://github.com/chromium/hstspreload.org
:lock: Chromium's HSTS preload list submission website.
chrome chromium hsts hstspreload https security
Last synced: 13 Apr 2025
https://github.com/octarinesec/kube-scan
kube-scan: Octarine k8s cluster risk assessment tool
cloud-native devops devsecops k8s kubernetes security security-audit security-scanner security-scanners security-tools
Last synced: 18 Jan 2026
https://github.com/legit-labs/legitify
Detect and remediate misconfigurations and security risks across all your GitHub and GitLab assets
ci devops devsecops github gitlab golang sdlc-security security security-scanner supply-chain-security
Last synced: 15 May 2025
https://github.com/prateek147/DVIA-v2
Damn Vulnerable iOS App (DVIA) is an iOS application that is damn vulnerable. Its main goal is to provide a platform to mobile security enthusiasts/professionals or students to test their iOS penetration testing skills in a legal environment. This project is developed and maintained by @prateekg147. The vulnerabilities and solutions covered in this app are tested up to iOS 11. The current version is writen in Swift and has the following vulnerabilities.
ios-swift jailbreak mobile-app security
Last synced: 12 Jul 2025
https://github.com/tankerhq/sdk-js
Tanker client-side encryption SDK for JavaScript
cryptography encryption end-to-end javascript privacy sdk security tanker
Last synced: 14 May 2025
https://github.com/darkarp/chromepass
Chromepass - Hacking Chrome Saved Passwords
av-detection chromepass computer-engineering cookies google-chrome hack hacking hacking-chrome hacking-tool hacks hacktoberfest hacktoberfest-accepted hacktoberfest2021 password password-cracker passwords phishing python security
Last synced: 07 May 2025
https://github.com/Legit-Labs/legitify
Detect and remediate misconfigurations and security risks across all your GitHub and GitLab assets
ci devops devsecops github gitlab golang sdlc-security security security-scanner supply-chain-security
Last synced: 01 Apr 2025
https://github.com/jvoisin/snuffleupagus
Security module for php7 and php8 - Killing bugclasses and virtual-patching the rest!
c elephant hardening php php-module php7 security security-hardening
Last synced: 07 Jan 2026
https://github.com/TankerHQ/sdk-js
Tanker client-side encryption SDK for JavaScript
cryptography encryption end-to-end javascript privacy sdk security tanker
Last synced: 23 Mar 2025
https://github.com/0xbug/SQLiScanner
Automatic SQL injection with Charles and sqlmap api
autoscan scanner security security-audit security-vulnerability sqlmap sqlmap-webui sqlmapapi
Last synced: 02 Apr 2025
https://github.com/netheril96/securefs
Filesystem in userspace (FUSE) with transparent authenticated encryption
authentication cloud crypto cryptography encryption filesystem filesystems fuse fuse-filesystem security
Last synced: 21 Oct 2025
https://github.com/firefart/stunner
Stunner is a tool to test and exploit STUN, TURN and TURN over TCP servers.
exploit misconfiguration security stun testing tool turn webrtc
Last synced: 15 May 2025
https://github.com/jiaoxianjun/btle
Bluetooth Low Energy (BLE) packet sniffer and transmitter for both standard and non standard (raw bit) based on Software Defined Radio (SDR).
angle-of-arrival baseband bladerf ble bluetooth-low-energy dsp hackrf indoor-positioning packet-sniffer protocol-analyser protocol-parser rf sdr security sniffer software-defined-radio wireless-communication wireless-security wireless-sensor-networks
Last synced: 15 May 2025
https://github.com/skiff-org/skiff-apps
Privacy-first, end-to-end encrypted Mail, Pages, Drive, and Calendar.
calendar collaboration component-library cryptography email end-to-end-encryption file-storage productivity productivity-app security typescript workspace
Last synced: 14 May 2025
https://github.com/snyk/zip-slip-vulnerability
Zip Slip Vulnerability (Arbitrary file write through archive extraction)
Last synced: 27 Jan 2026
https://github.com/google/paranoid_crypto
Paranoid's library contains implementations of checks for well known weaknesses on cryptographic artifacts.
Last synced: 18 Apr 2025
https://github.com/mspnp/cloud-design-patterns
Sample implementations for cloud design patterns found in the Azure Architecture Center.
azure cloud cost-optimization design-patterns operational-excellence performance-efficiency reliability security
Last synced: 08 Jul 2025
https://github.com/gui774ume/ebpfkit
ebpfkit is a rootkit powered by eBPF
ebpf kernel linux linux-kernel linux-kernel-hacking rootkit runtime-security security
Last synced: 04 Apr 2025
https://github.com/kernc/logkeys
:memo: :keyboard: A GNU/Linux keylogger that works!
cyber-security cybersecurity hacking keyboard keyboard-events keyboard-listeners keylogger keylogging keymap linux linux-keylogger logkeys security
Last synced: 12 Apr 2025
https://github.com/fO-000/bluing
An intelligence gathering tool for hacking Bluetooth
android ble bluetooth bluetooth-classic br-edr hacking hacking-tool intelligent-gathering iot linux python scanner security spoofing
Last synced: 06 Apr 2025
https://github.com/mojtabatajik/robber
Robber is open source tool for finding executables prone to DLL hijacking
candidate-dlls delphi dll-hijacking dlls security vulnerability-scanners
Last synced: 27 Jan 2026
https://github.com/JiaoXianjun/BTLE
Bluetooth Low Energy (BLE) packet sniffer and transmitter for both standard and non standard (raw bit) based on Software Defined Radio (SDR).
angle-of-arrival baseband bladerf ble bluetooth-low-energy dsp hackrf indoor-positioning packet-sniffer protocol-analyser protocol-parser rf sdr security sniffer software-defined-radio wireless-communication wireless-security wireless-sensor-networks
Last synced: 04 Apr 2025
https://github.com/mikesplain/openvas-docker
A Docker container for Openvas
docker docker-container openvas scan security shell
Last synced: 10 Jan 2026
https://github.com/dradis/dradis-ce
Dradis Framework: Collaboration and reporting for IT Security teams
collaboration dradis dradis-framework infosec penetration-testing pentesting security security-audit
Last synced: 24 Jan 2026
https://github.com/hahwul/jwt-hack
🔩 jwt-hack is tool for hacking / security testing to JWT. Supported for En/decoding JWT, Generate payload for JWT attack and very fast cracking(dict/brutefoce)
bugbounty cracking hacking hacktoberfest jwt payload-generator security testing-tools tool
Last synced: 26 Jan 2026
https://github.com/0xZDH/o365spray
Username enumeration and password spraying tool aimed at Microsoft O365.
enumeration password-spray pentest pentesting-tools python python3 security security-tools
Last synced: 12 May 2025
https://github.com/frankmorgner/vsmartcard
umbrella project for emulation of smart card readers or smart cards
android c ccid emulation nfc pcsc python security smartcard smartcard-reader tizen-wearable
Last synced: 14 May 2025
https://github.com/webdigi/aws-vpn-server-setup
Setup your own private, secure, free* VPN on the Amazon AWS Cloud in 10 minutes. CloudFormation
aws aws-cloud cloudformation encryption ipsec ipsec-vpn l2tp lono security ssh-tunnel vpn vpn-client vpn-server vpn-service
Last synced: 08 Jul 2025
https://github.com/flosell/trailscraper
A command-line tool to get valuable information out of AWS CloudTrail
aws aws-cloudformation aws-cloudtrail cloud cloudtrail cloudtrail-consumer cloudtrail-log-analytics hacktoberfest heuristic iam iam-actions security security-automation
Last synced: 08 Apr 2025
https://github.com/coreos/vault-operator
Run and manage Vault on Kubernetes simply and securely
kubernetes operator operators security vault
Last synced: 29 Mar 2025
https://github.com/google/turbinia
Automation and Scaling of Digital Forensics Tools
cloud dfir forensics security security-automation
Last synced: 02 Apr 2025
https://github.com/accrescent/accrescent
A novel Android app store focused on security, privacy, and usability
android appstore jetpack-compose kotlin material-design material3 privacy security
Last synced: 16 May 2025
https://github.com/tpm2-software/tpm2-tools
The source repository for the Trusted Platform Module (TPM2.0) tools
Last synced: 14 May 2025
https://github.com/doxx/darkflare
DarkFlare Firewall Piercing (TCP over CDN)
censorship-circumvention firewall-piercing golang proxy-server security security-tools tcpocdn tunnel-client tunnel-server tunneling vpns
Last synced: 21 Jul 2025
https://github.com/allo-/ffprofile
A tool to create firefox profiles with personalized defaults.
django firefox privacy security
Last synced: 06 Aug 2025
https://github.com/aquasecurity/chain-bench
An open-source tool for auditing your software supply chain stack for security compliance based on a new CIS Software Supply Chain benchmark.
cis devsecops go golang misconfiguration open-policy-agent security security-tools software-supply-chain software-supply-chain-security vulnera
Last synced: 13 Oct 2025
https://github.com/Gui774ume/ebpfkit
ebpfkit is a rootkit powered by eBPF
ebpf kernel linux linux-kernel linux-kernel-hacking rootkit runtime-security security
Last synced: 14 Mar 2025
https://github.com/suyashkumar/ssl-proxy
:lock: Simple zero-config SSL reverse proxy with real autogenerated certificates (LetsEncrypt, self-signed, provided)
autogenerated-certificates certificate certificate-generation certificates go golang letsencrypt letsencrypt-certificates nginx proxies-https-traffic proxy reverse-proxy security self-signed-certificate ssl ssl-cert ssl-certificates ssl-proxy tls tls-proxy
Last synced: 15 May 2025
https://github.com/byt3bl33d3r/witnessme
Web Inventory tool, takes screenshots of webpages using Pyppeteer (headless Chrome/Chromium) and provides some extra bells & whistles to make life easier.
chromium headless-chrome osint python3 reconnaissance screenshots security security-tools web-inventory
Last synced: 16 May 2025
https://github.com/mhaskar/Octopus
Open source pre-operation C2 server based on python and powershell
c2 pentesting powershell python redteam security
Last synced: 24 Mar 2025
https://github.com/byt3bl33d3r/WitnessMe
Web Inventory tool, takes screenshots of webpages using Pyppeteer (headless Chrome/Chromium) and provides some extra bells & whistles to make life easier.
chromium headless-chrome osint python3 reconnaissance screenshots security security-tools web-inventory
Last synced: 02 Apr 2025
https://github.com/Netflix/security-bulletins
Security Bulletins that relate to Netflix Open Source
Last synced: 12 Mar 2025
https://github.com/netflix/security-bulletins
Security Bulletins that relate to Netflix Open Source
Last synced: 27 Jan 2026
https://github.com/thesp0nge/dawnscanner
Dawn is a static analysis security scanner for ruby written web applications. It supports Sinatra, Padrino and Ruby on Rails frameworks.
codereview cybersecurity hanami padrino rails ruby security security-audit sinatra vulnerabilities
Last synced: 15 May 2025
https://github.com/0xNazgul/Blockchain-Security-Audit-List
A list of Blockchain Security audit companies, solo auditors and location of public audits.
Last synced: 30 Mar 2025
https://github.com/amnesica/kryptey
Android keyboard for secure E2EE communication through the signal protocol in any messenger. Communicate securely and independent, regardless of the legal situation or whether messengers use E2EE
android android-keyboard chat-control chatcontrol chatkontrolle chatkontrolle-stoppen e2ee e2ee-encryption end-to-end-encryption input-method java keyboard libsignal messenger privacy security signal-android signal-protocol stop-scanning-me
Last synced: 04 Apr 2025
https://github.com/amnesica/KryptEY
Android keyboard for secure E2EE communication through the signal protocol in any messenger. Communicate securely and independent, regardless of the legal situation or whether messengers use E2EE
android android-keyboard chat-control chatcontrol chatkontrolle chatkontrolle-stoppen e2ee e2ee-encryption end-to-end-encryption input-method java keyboard libsignal messenger privacy security signal-android signal-protocol stop-scanning-me
Last synced: 05 Apr 2025
https://github.com/curiefense/curiefense
Curiefense is a unified, open source platform protecting cloud native applications.
bot-management botmanagement cloud-native cncf ddos ddos-protection envoyproxy microservices rate-limiter security session waf
Last synced: 01 May 2025
https://github.com/Tencent/HaboMalHunter
HaboMalHunter is a sub-project of Habo Malware Analysis System (https://habo.qq.com), which can be used for automated malware analysis and security assessment on the Linux system.
dynamic-analysis elf linux malware-analysis security static-analysis
Last synced: 11 Jul 2025
https://github.com/tencent/habomalhunter
HaboMalHunter is a sub-project of Habo Malware Analysis System (https://habo.qq.com), which can be used for automated malware analysis and security assessment on the Linux system.
dynamic-analysis elf linux malware-analysis security static-analysis
Last synced: 12 Apr 2025
https://github.com/simpleidserver/SimpleIdServer
OpenID, OAuth 2.0, SCIM2.0, UMA2.0, FAPI, CIBA & OPENBANKING Framework for ASP.NET Core
ciba dotnet-core fapi identity oauth2 openid openid-providers scim2 security uma2
Last synced: 18 Apr 2025
https://github.com/werkamsus/lilith
Lilith - Foundational reverse engineering resource for cybersecurity entrepreneurs in C++
administration cplusplus cybersecurity entrepreneurship native security windows
Last synced: 04 Apr 2025
https://github.com/damienbod/AspNet6IdentityServer4AngularOidcFlows
OpenID Connect Code Flow PKCE / Implicit Flow with Angular and ASP.NET Core 6 IdentityServer4
angular aspnet-core aspnetcore authentication authorization identity identityserver4 oauth2 oidc openid security sqlite typescript
Last synced: 09 Apr 2025
https://github.com/damienbod/aspnet6identityserver4angularoidcflows
OpenID Connect Code Flow PKCE / Implicit Flow with Angular and ASP.NET Core 6 IdentityServer4
angular aspnet-core aspnetcore authentication authorization identity identityserver4 oauth2 oidc openid security sqlite typescript
Last synced: 12 Apr 2025
https://github.com/werkamsus/Lilith
Lilith - Foundational reverse engineering resource for cybersecurity entrepreneurs in C++
administration cplusplus cybersecurity entrepreneurship native security windows
Last synced: 15 Mar 2025
https://github.com/mhaskar/octopus
Open source pre-operation C2 server based on python and powershell
c2 pentesting powershell python redteam security
Last synced: 18 Jan 2026
https://github.com/usnistgov/oscal
Open Security Controls Assessment Language (OSCAL)
assessment authorization automation compliance json nist oscal schema security xml yaml
Last synced: 13 Apr 2025
https://github.com/purplei2p/i2pdbrowser
i2pd browser bundle
bundle crypto cryptography firefox i2p i2pd portable privacy security
Last synced: 27 Jan 2026
https://github.com/usnistgov/OSCAL
Open Security Controls Assessment Language (OSCAL)
assessment authorization automation compliance json nist oscal schema security xml yaml
Last synced: 11 Apr 2025
https://github.com/elesiuta/picosnitch
Monitor Network Traffic Per Executable, Beautifully Visualized
bandwidth-monitor ebpf intrusion-detection linux monitoring network-analysis network-monitor network-monitoring network-traffic network-visualization networking plotly privacy security
Last synced: 16 May 2025
https://github.com/cyb3rmik3/KQL-threat-hunting-queries
A repository of KQL queries focused on threat hunting and threat detecting for Microsoft Sentinel & Microsoft XDR (Former Microsoft 365 Defender).
kql kusto kusto-query kusto-query-language microsoft microsoft-365 microsoft-365-defender microsoft-365-security microsoft-security microsoft-sentinel microsoft-xdr microsoftxdr security securitycenter sentinel threat-detecting threat-detection threat-hunt threat-hunting
Last synced: 23 Sep 2025
https://github.com/leonlatsch/photok
Encrypted Gallery App for Android
android android-app app encryption image kotlin photos safe security
Last synced: 09 Oct 2025
https://github.com/TypeError/domained
Multi Tool Subdomain Enumeration
bugbounty enumeration infosec security subdomains
Last synced: 02 Apr 2025
https://github.com/PurpleI2P/i2pdbrowser
i2pd browser bundle
bundle crypto cryptography firefox i2p i2pd portable privacy security
Last synced: 30 Mar 2025
https://github.com/safe-graph/DGFraud
A Deep Graph-based Toolbox for Fraud Detection
anomaly-detection datamining datascience dblp-dataset financial-engineering fraud-detection fraud-prevention graph graph-algorithms graph-convolutional-networks graph-neural-networks graphneuralnetwork machine-learning opensource outlier-detection security security-tools spamdetection toolkit yelp-dataset
Last synced: 01 Apr 2025
https://github.com/safe-graph/dgfraud
A Deep Graph-based Toolbox for Fraud Detection
anomaly-detection datamining datascience dblp-dataset financial-engineering fraud-detection fraud-prevention graph graph-algorithms graph-convolutional-networks graph-neural-networks graphneuralnetwork machine-learning opensource outlier-detection security security-tools spamdetection toolkit yelp-dataset
Last synced: 04 Apr 2025
https://github.com/kabachook/k8s-security
Kubernetes security notes and best practices
attacker best-practices checklist kubernetes kubernetes-cluster kubernetes-security security vulnerabilities
Last synced: 13 Oct 2025
https://github.com/olacabs/jackhammer
Jackhammer - One Security vulnerability assessment/management tool to solve all the security team problems.
application-security dynamic-analysis mobile-security network-security penetration-testing penetration-testing-framework security security-scanner security-vulnerability-assessment source-code-analysis static-code-analysis vulnerability-assessment vulnerability-management vulnerability-scanners vulnerability-scanning webappsec wordpress-security
Last synced: 18 Mar 2025
https://github.com/ronin-rb/ronin
Ronin is a Free and Open Source Ruby Toolkit for Security Research and Development. Ronin also allows for the rapid development and distribution of code, exploits, payloads, etc, via 3rd-party git repositories.
cli console ctf-tool ctf-tools database hacking hacking-tools hacktoberfest infosec network-tools orm ronin ronin-rb ruby security security-tools
Last synced: 10 May 2025
https://github.com/agens-no/ellipticcurvekeypair
Sign, verify, encrypt and decrypt using the Secure Enclave
elliptic-curves ios keychain keypair macos secure-enclave-processor security
Last synced: 12 Apr 2025
https://github.com/agens-no/EllipticCurveKeyPair
Sign, verify, encrypt and decrypt using the Secure Enclave
elliptic-curves ios keychain keypair macos secure-enclave-processor security
Last synced: 08 Apr 2025
https://github.com/grapheneos/pdfviewer
Simple Android PDF viewer based on pdf.js and content providers. The app doesn't require any permissions. The PDF stream is fed into the sandboxed WebView without giving it access to content or files. CSP is used to enforce that the JavaScript and styling properties within the WebView are entirely static.
android grapheneos pdf pdf-viewer pdfjs security
Last synced: 15 May 2025
https://github.com/ghostsecurity/reaper
💀 Don't fear the Reaper 👻
agentic ai appsec automation bug-bounty fuzz fuzzing hacking owasp proxy security
Last synced: 12 Jan 2026
https://github.com/GossiTheDog/HiveNightmare
Exploit allowing you to read registry hives as non-admin on Windows 10 and 11
cybersecurity exploits security
Last synced: 20 Mar 2025
https://github.com/anaynayak/aws-security-viz
Visualize your aws security groups.
aws aws-cli ec2 graph graphviz json ruby security security-groups visualization viz
Last synced: 14 May 2025
https://github.com/aws-samples/aws-secure-environment-accelerator
The AWS Secure Environment Accelerator is a tool designed to help deploy and operate secure multi-account, multi-region AWS environments on an ongoing basis. The power of the solution is the configuration file which enables the completely automated deployment of customizable architectures within AWS without changing a single line of code.
accelerator aws aws-accelerator customizable customized-architectures landingzone networking security security-automation solution
Last synced: 11 Apr 2025
https://github.com/mehulj94/braindamage
Remote administration service which uses twitter as a command and control server
python remote-admin-tool security tool
Last synced: 02 Apr 2025
https://github.com/FloeDesignTechnologies/phpcs-security-audit
phpcs-security-audit is a set of PHP_CodeSniffer rules that finds vulnerabilities and weaknesses related to security in PHP code
php php-codesniffer phpcs security static-code-analysis
Last synced: 01 Apr 2025
https://github.com/mehulj94/BrainDamage
Remote administration service which uses twitter as a command and control server
python remote-admin-tool security tool
Last synced: 13 Mar 2025
https://github.com/DFIRKuiper/Kuiper
Digital Forensics Investigation Platform
artifacts dfir digital-forensics incident-response parser security
Last synced: 30 Mar 2025
https://github.com/dromara/mendmix-cloud
Mendmix定位是一站式分布式开发架构开源解决方案及云原生架构技术底座。Mendmix提供了数据库、缓存、消息中间件、分布式定时任务、安全框架、网关以及主流产商云服务快速集成能力。基于Mendmix可以不用关注技术细节快速搭建高并发高可用基于微服务的分布式架构。
cloud-native distributed framework kafka mybatis redis security spring-web springboot springcloud
Last synced: 16 May 2025
https://github.com/hexhive/retrowrite
RetroWrite -- Retrofitting compiler passes through binary rewriting
aarch64 assembly binary-rewriting disassembler reverse-engineering security x86-64
Last synced: 12 Apr 2025
https://github.com/nucypher/nucypher
Threshold Access Control (TACo) Node Runtime
access-control cryptography end-to-end-encryption security web3
Last synced: 14 May 2025
https://github.com/MrEmpy/mantra
「🔑」A tool used to hunt down API key leaks in JS files and pages
api bugbounty files hacking javascript js key leak leaked-secrets pentest security tool
Last synced: 20 Jun 2025
https://github.com/floedesigntechnologies/phpcs-security-audit
phpcs-security-audit is a set of PHP_CodeSniffer rules that finds vulnerabilities and weaknesses related to security in PHP code
php php-codesniffer phpcs security static-code-analysis
Last synced: 13 Sep 2025
https://github.com/gen0cide/gscript
framework to rapidly implement custom droppers for all three major operating systems
cli compiler golang javascript malware security
Last synced: 12 Jan 2026
