Security
Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.
- GitHub: https://github.com/topics/security
- Wikipedia: https://en.wikipedia.org/wiki/Computer_security
- Aliases: security-tools, security-vulnerability, security-audit,
- Last updated: 2026-02-02 00:28:49 UTC
- JSON Representation
https://github.com/GrapheneOS/platform_manifest
Repo manifest for the GrapheneOS mobile privacy and security hardening project.
android grapheneos privacy security
Last synced: 11 Jul 2025
https://github.com/SAP/credential-digger
A Github scanning tool that identifies hardcoded credentials while filtering the false positive data through machine learning models :lock:
credentials machine-learning python regex scanner secret security security-tools
Last synced: 11 Jul 2025
https://github.com/LyleMi/papers
Academic papers and articles that I read related to web hacking, fuzzing, etc. / 阅读过的Web安全方向、模糊测试方向的一些论文与阅读笔记
awesome fuzzing papers read-papers reading-notes security
Last synced: 11 Jul 2025
https://github.com/Skiller9090/Lucifer
A Powerful Penetration Tool For Automating Penetration Tasks Such As Local Privilege Escalation, Enumeration, Exfiltration and More... Use Or Build Automation Modules To Speed Up Your Cyber Security Life
automation automation-framework cyber-security cybersec cybersecurity enumeration exfiltration framework hacking hacking-framework hacking-tool modular modules pentest-tool pentesting privilege-escalation python security security-tools
Last synced: 12 Jul 2025
https://github.com/wolfssl/wolfssh
wolfSSH is a small, fast, portable SSH implementation, including support for SCP and SFTP.
c cryptography embedded iot iot-security portable scp scp-example scp-support security sftp sftp-example ssh ssh-client ssh-client-library ssh-library ssh-server ssh-server-library sshv2 wolfssl
Last synced: 06 Jan 2026
https://github.com/wolfSSL/wolfssh
wolfSSH is a small, fast, portable SSH implementation, including support for SCP and SFTP.
c cryptography embedded iot iot-security portable scp scp-example scp-support security sftp sftp-example ssh ssh-client ssh-client-library ssh-library ssh-server ssh-server-library sshv2 wolfssl
Last synced: 30 Mar 2025
https://github.com/mosajjal/dnsmonster
Passive DNS Capture and Monitoring Toolkit
dns dns-server dns-traffic golang nsm passive-dns passivedns pcap security security-tools
Last synced: 24 Jan 2026
https://github.com/ParetoSecurity/pareto-mac
Automatically audit your Mac for basic security hygiene.
endpoint-security macos security swift swiftui
Last synced: 12 Mar 2025
https://github.com/jpcertcc/toolanalysisresultsheet
Tool Analysis Result Sheet
Last synced: 09 Apr 2025
https://github.com/grapheneos/platform_manifest
Repo manifest for the GrapheneOS mobile privacy and security hardening project.
android grapheneos privacy security
Last synced: 09 Jan 2026
https://github.com/vectra-ai-research/MAAD-AF
MAAD Attack Framework - An attack tool for simple, fast & effective security testing of M365 & Entra ID (Azure AD).
adversary-emulation azuread cloud-administration cloud-security entra-id identity-access-management microsoft microsoft-azure-security microsoft-graph microsoft365 mitre powershell red-team security security-testing ttp
Last synced: 15 Apr 2025
https://jpcertcc.github.io/ToolAnalysisResultSheet/
Tool Analysis Result Sheet
Last synced: 24 Mar 2025
https://github.com/ahussam/url-tracker
Change monitoring app that checks the content of web pages in different periods.
bugbounty change-monitoring recon reconnaissance security
Last synced: 10 Mar 2025
https://github.com/wecooperate/iMonitorSDK
The world's most powerful System Activity Monitor Engine · 一款功能强大的终端行为采集防御开发套件 ~ 旨在帮助EDR、零信任、数据安全、审计管控等终端安全软件可以快速实现产品功能, 而不用关心底层驱动的开发、维护和兼容性问题,让其可以专注于业务开发
access-control defender edr endpoint-security etw kernel monitoring-tool procmon security sysmon zero-trust
Last synced: 11 Jul 2025
https://github.com/feross/safe-buffer
Safer Node.js Buffer API
buffer javascript nodejs safe security
Last synced: 13 Apr 2025
https://github.com/xyfir/ptorx
📩🛡 Email privacy. Anonymously send and receive with alias forwarding. (Abandoned)
alias aliases email email-forwarding forward forwarding mail mail-server msa mta pgp privacy proxy security smtp spam-filtering
Last synced: 15 Apr 2025
https://github.com/paloaltonetworks/rbac-police
Evaluate the RBAC permissions of Kubernetes identities through policies written in Rego
kubernetes kubernetes-rbac kubernetes-security prisma-cloud rbac security
Last synced: 16 May 2025
https://github.com/robthree/twofactorauth.net
.Net library for Two Factor Authentication (TFA / 2FA)
csharp dotnet multi-factor qrcode security totp two-factor twofactorauth
Last synced: 16 May 2025
https://github.com/RobThree/TwoFactorAuth.Net
.Net library for Two Factor Authentication (TFA / 2FA)
csharp dotnet multi-factor qrcode security totp two-factor twofactorauth
Last synced: 04 May 2025
https://github.com/hgascon/pulsar
Protocol Learning and Stateful Fuzzing
fuzzing networking protocol-learning security simulation vulnerability-identification
Last synced: 02 Apr 2025
https://github.com/sap/credential-digger
A Github scanning tool that identifies hardcoded credentials while filtering the false positive data through machine learning models :lock:
credentials machine-learning python regex scanner secret security security-tools
Last synced: 15 May 2025
https://github.com/cea-sec/usbsas
Tool and framework for securely reading untrusted USB mass storage devices.
Last synced: 16 May 2025
https://github.com/palkeo/pakala
Offensive vulnerability scanner for ethereum, and symbolic execution tool for the Ethereum Virtual Machine
ethereum ethereum-virtual-machine security security-scanner symbolic-execution
Last synced: 13 Dec 2025
https://github.com/mageni/mageni
Open-source vulnerability scanner
cloud cybersecurity laravel linux macos networking opensource penetration-testing pentesting php security security-audit security-tools vulnerability-assessment vulnerability-detection vulnerability-management vulnerability-scanner vulnerability-scanners vulnerability-scanning windows
Last synced: 30 Mar 2025
https://github.com/ztosec/hunter
Hunter作为中通DevSecOps闭环方案中的一环,扮演着很重要的角色,开源之后希望能帮助到更多企业。
Last synced: 11 Jul 2025
https://github.com/dymmond/esmerald
Esmerald framework - Highly scalable, performant, easy to learn, easy to code and for every sizeable and complex application
api async asyncio framework json json-schema openapi openapi3 pydantic python python-types python3 redoc rest security starlette swagger swagger-ui uvicorn web
Last synced: 15 May 2025
https://github.com/joswha/Secure-Coding-Handbook
Web Application Secure Coding Handbook resource.
appsecurity blueteam owasp secure-coding secure-coding-practices security webappsecurity
Last synced: 14 Apr 2025
https://github.com/kac89/vulnrepo
VULNRΞPO - Free vulnerability report generator and repository end-to-end encrypted. Complete templates of issues, CWE, CVE, MITRE ATT&CK, PCI DSS, issues import Nmap/Nessus/Burp/OpenVAS/Bugcrowd/Trivy, Jira export, TXT/JSON/MARKDOWN/HTML/PDF report, attachments, automatic changelog, statistics, vulnerability management, methodologies and much more!
angular bugbounty burpsuite cve cwe end-to-end-encryption mitre-attack nessus nmap openvas pci-dss pentesting security security-team security-tool trivy vulnerability-assessment vulnerability-management vulnerability-report vulnerability-research
Last synced: 03 Apr 2025
https://github.com/tarraschk/richelieu
List of the most common French passwords
audit bruteforce-wordlist cybersecurity dictionary security
Last synced: 24 Dec 2025
https://github.com/invariantlabs-ai/invariant
Guardrails for secure and robust agent development
Last synced: 12 Jan 2026
https://github.com/Aabyss-Team/awsKeyTools
AWS云平台 AccessKey 泄漏利用工具
accesskey accesskeysecret aws cloud-native-security cloud-security cloud-security-tools security security-tools
Last synced: 11 May 2025
https://github.com/splx-ai/agentic-radar
A security scanner for your LLM agentic workflows
agentic-ai agentic-framework agentic-workflow ai ai-red-teaming ai-security cli devsecops generative-ai llm llm-security red-teaming security security-tools
Last synced: 01 Apr 2025
https://github.com/puliczek/cve-2022-0337-poc-google-chrome-microsoft-edge-opera
🎩 🤟🏻 [P1-$10,000] Google Chrome, Microsoft Edge and Opera - vulnerability reported by Maciej Pulikowski - System environment variables leak - CVE-2022-0337
bugbounty bugbounty-writeups bugbountytips cve cve-2022-0337 cybersecurity exploit hacking payload pentest pentesting red-team security security-writeups writeups
Last synced: 27 Jan 2026
https://github.com/andreiverse/grc2
grim reaper c2
command-and-control infosec redteam security security-tools
Last synced: 08 Nov 2025
https://github.com/inquest/omnibus
The OSINT Omnibus (beta release)
iocs osint python security security-automation threat-intelligence
Last synced: 17 Jan 2026
https://github.com/googlecloudplatform/security-analytics
Community Security Analytics provides a set of community-driven audit & threat queries for Google Cloud
audit-logs bigquery chronicle cloud-security-command-center gcp google-cloud log-analytics logging network-analysis network-logs security security-operations threat-detection
Last synced: 05 Apr 2025
https://github.com/MarkoH17/Spray365
Spray365 makes spraying Microsoft accounts (Office 365 / Azure AD) easy through its customizable two-step password spraying approach. The built-in execution plan features options that attempt to bypass Azure Smart Lockout and insecure conditional access policies.
enumeration password-spray pentest python3 security
Last synced: 12 Jul 2025
https://github.com/Quillhash/QuillAudit_Reports
QuillAudits Smart Contracts, deFi, NFT, tokens,Dao , Dex and DApps Audit Reports
audit-reports bep20 binance-smart-chain blockchain bockchain dapps erc20 erc721 nft penetration-testing polygon security security-audit security-vulnerabilities smartcontract-dapp solana solidity tron vulnerability
Last synced: 24 Mar 2025
https://github.com/sanix-darker/antiddos-system
🛡️⚔️ Protect your web app from DDOS attack or the Dead Ping + CAPTCHA VERIFICATION in one line!
captcha captcha-breaking captcha-image connection-frequency ddos ddos-attacks hack hacking php protected protection protector robot secure secure-access secured security security-tools verification web
Last synced: 06 Jul 2025
https://github.com/cloudogu/k8s-diagrams
A collection of kubernetes-related diagrams
authc authn container deployment k8s kubernetes node pod podsecuritypolicies psp rbac security
Last synced: 16 May 2025
https://github.com/e-m-b-a/embark
EMBArk - The firmware security scanning environment
data-analysis django embedded-linux embedded-systems firmware firmware-analysis firmware-tools hacking iot linux penetration-testing pentesting scanner security security-automation security-scanner security-testing security-tools ubuntu-server vulnerability-scanners
Last synced: 16 May 2025
https://github.com/tonybaloney/pycharm-security
Finds security holes in your Python projects from PyCharm and GitHub
devsecops hacktoberfest-accepted security security-automation static-analysis vulnerability
Last synced: 04 Apr 2025
https://github.com/d4rckh/grc2
grim reaper c2
command-and-control infosec redteam security security-tools
Last synced: 07 Apr 2025
https://github.com/GoogleCloudPlatform/security-analytics
Community Security Analytics provides a set of community-driven audit & threat queries for Google Cloud
audit-logs bigquery chronicle cloud-security-command-center gcp google-cloud log-analytics logging network-analysis network-logs security security-operations threat-detection
Last synced: 31 Mar 2025
https://github.com/scottyab/safetynethelper
SafetyNet Helper wraps the Google Play Services SafetyNet.API and verifies Safety Net API response with the Android Device Verification API.
android rootchecker safetynet-api safetynet-helper security
Last synced: 05 Apr 2025
https://github.com/Puliczek/CVE-2022-0337-PoC-Google-Chrome-Microsoft-Edge-Opera
🎩 🤟🏻 [P1-$10,000] Google Chrome, Microsoft Edge and Opera - vulnerability reported by Maciej Pulikowski - System environment variables leak - CVE-2022-0337
bugbounty bugbounty-writeups bugbountytips cve cve-2022-0337 cybersecurity exploit hacking payload pentest pentesting red-team security security-writeups writeups
Last synced: 02 Apr 2025
https://github.com/PalindromeLabs/STEWS
A Security Tool for Enumerating WebSockets
penetration-testing penetration-testing-tools security web-application-security websocket websocket-security websockets websockets-security
Last synced: 10 May 2025
https://github.com/chemidy/smallest-secured-golang-docker-image
Create the smallest and secured golang docker image based on scratch
distroless docker go golang hacktoberfest security
Last synced: 09 Apr 2025
https://github.com/wmal/linux-kodachi
Linux Kodachi is a security-focused operating system designed for users who value privacy, anonymity, and a secure computing experience. Developed by Warith Al Maawali, Kodachi provides all the tools necessary for anonymous online activities while maintaining ease of use.
cyber-security cybersecurity cybersecurity-education cybersecurity-tools linux privacy security
Last synced: 16 May 2025
https://github.com/johackim/docker-hacklab
My personal hacklab, create your own.
Last synced: 06 Apr 2025
https://github.com/OpenCSPM/opencspm
Open Cloud Security Posture Management Engine
aws cloud cspm gcp kubernetes security security-audit
Last synced: 04 Apr 2025
https://github.com/casvisor/casvisor
An open-source security log auditing & RDP, VNC, SSH bastion platform, online demo: https://door.casvisor.com
audit auditing bastion casdoor casvisor database dbgate guacamole jumpbox jumpserver log logging rdp remote-control remote-desktop security ssh telnet vnc
Last synced: 05 Apr 2025
https://github.com/boostsecurityio/poutine
boostsecurityio/poutine
ci cli devops devsecops gh-extension github github-actions golang security security-scanner supply-chain supply-chain-security
Last synced: 21 Oct 2025
https://github.com/MindPointGroup/cloudfrunt
A tool for identifying misconfigured CloudFront domains
aws cloudfront security security-tools vulnerability-detection
Last synced: 23 Apr 2025
https://github.com/ilpianista/arch-audit
A utility like pkg-audit for Arch Linux. Based on Arch Security Team data.
Last synced: 06 Apr 2025
https://github.com/soxoj/counter-osint-guide-en
Comprehensive Counter OSINT and privacy guide (initially for CIS countries)
cis counter-osint guide osint privacy runet security
Last synced: 28 Jan 2026
https://github.com/fabston/little-snitch-blocklist
🛡 A malicious URL blocklist that protects you from advertisements, malwares, spams, statistics & trackers on both web browsing and applications.
adblocker ads blocklist littlesnitch mac malicious networking security spam
Last synced: 12 May 2025
https://github.com/InQuest/omnibus
The OSINT Omnibus (beta release)
iocs osint python security security-automation threat-intelligence
Last synced: 27 Mar 2025
https://github.com/ant4g0nist/susanoo
A REST API security testing framework.
pentest-tool pentesting python rest-api security security-tools
Last synced: 02 Apr 2025
https://github.com/enlightn/security-checker
A PHP dependency vulnerabilities scanner based on the Security Advisories Database.
php security security-scanner vulnerability-scanner vulnerability-scanning
Last synced: 15 May 2025
https://github.com/lc/secretz
secretz, minimizing the large attack surface of Travis CI
hacktoberfest osint secrets security travis-ci
Last synced: 07 Apr 2025
https://github.com/brexhq/substation
Substation is a toolkit for routing, normalizing, and enriching security event and audit logs.
automation aws logging monitoring observability security
Last synced: 16 May 2025
https://github.com/paretoSecurity/pareto-mac
Automatically audit your Mac for basic security hygiene.
endpoint-security macos security swift swiftui
Last synced: 18 Apr 2025
https://github.com/fkie-cad/friTap
Simplifying SSL/TLS traffic analysis for researchers by making SSL decryption effortless.
android android-https-capture binary-analysis frida hooking https linux network-analysis network-capture network-forensics security security-audit ssl ssldump tcpdump tls
Last synced: 27 Mar 2025
https://github.com/6abd/horus
An OSINT / digital forensics tool built in Python
api crypto cryptocurrency cybersecurity decryption digital-forensics encryption forensics hacktoberfest investigation investigations location osint python requests security security-tools steganography tool tools
Last synced: 27 Sep 2025
https://github.com/jofpin/temcrypt
Evolutionary encryption framework based on scalable complexity over time
cryptography encryption javascript mechanism nodejs privacy security temcrypt
Last synced: 06 Apr 2025
https://github.com/koukyosyumei/aijack
Security and Privacy Risk Simulator for Machine Learning (arXiv:2312.17667)
adversarial-attacks adversarial-examples adversarial-machine-learning dbms deep-learning differential-privacy evasion-attack federated-learning homomorphic-encryption k-anonymity machine-learning membership-inference model-inversion-attacks paillier paillier-cryptosystem poisoning-attacks privacy security
Last synced: 04 Apr 2025
https://github.com/zaproxy/action-baseline
A GitHub Action for running the ZAP Baseline scan
actions dast devsecops github-actions security
Last synced: 10 Apr 2025
https://github.com/ant4g0nist/Susanoo
A REST API security testing framework.
pentest-tool pentesting python rest-api security security-tools
Last synced: 13 Mar 2025
https://github.com/admyral-technologies/admyral
🤖 Admyral enables continuous control monitoring for any custom control
ai-assistant automation compliance-as-code compliance-automation compliance-platform control copilot cybersecurity gpt grc llm nextjs open-source python security security-automation security-compliance soar typescript workflow
Last synced: 13 Dec 2025
https://github.com/disclose/resources
Tools, data, and contact lists relevant to The disclose.io Project.
bug-bounty bugbounty certs infosec security vulnerability-disclosure
Last synced: 17 Jan 2026
https://github.com/jagaapple/next-secure-headers
Sets secure response headers for Next.js.
Last synced: 12 Apr 2025
https://github.com/padok-team/yatas
:owl::mag_right: A simple tool to audit your AWS/GCP infrastructure for misconfiguration or potential security issues with plugins integration
account assessment audit aws best-practices cli cloud configuration devsecops gcp hardening security
Last synced: 12 Jan 2026
https://github.com/RealEnder/dwpa
Distributed WPA PSK auditor
handshake hashcat john-the-ripper php pmkid python security wireless wpa wpa-cracker wpa2 wpa2-cracker
Last synced: 07 Apr 2025
https://github.com/jaeles-project/jaeles-signatures
Default signature for Jaeles Scanner
bugbounty jaeles jaeles-signatures security vulnerability-scanner
Last synced: 19 Oct 2025
https://github.com/sirAndros/KeePassWinHello
Quick unlock KeePass 2 database using biometrics with Windows Hello
biometrics keepass password-manager plugin security unlock windows-hello winhello
Last synced: 07 May 2025
https://github.com/mkalioby/django-mfa2
A Django app that handles MFA, it supports TOTP, U2F, FIDO2 U2F (Webauthn), Email Token and Trusted Devices
conda django django-packages django-web fido2 mfa python security totp webauthn
Last synced: 16 May 2025
https://github.com/MayankPandey01/Jira-Lens
Fast and customizable vulnerability scanner For JIRA written in Python
bugbounty jira jira-rest-api python3 scanner security security-tools vulnerability-scanners
Last synced: 12 Jul 2025
https://github.com/cleanunicorn/karl
Monitor smart contracts deployed on blockchain and test against vulnerabilities with Mythril. It was presented at DEFCON 2019.
blockchain defcon defcon27 ethereum security smt symbolic-execution
Last synced: 12 Jan 2026
https://github.com/ivan-sincek/invoker
Penetration testing utility and antivirus assessment tool.
access-token bytecode-injection c-plus-plus dll-injection dump-memory ethical-hacking hook-procedure malware offensive-security penetration-testing process-ghosting process-hollowing red-team-engagement reverse-tcp security sticky-keys system-calls task-scheduler windows windows-penetration-testing
Last synced: 07 Apr 2025
https://github.com/x011/secretpixel
SecretPixel is a cutting-edge steganography tool designed to securely conceal sensitive information within images. It stands out in the realm of digital steganography by combining advanced encryption, compression, and a seeded Least Significant Bit (LSB) technique to provide a robust solution for embedding data undetectably.
aes-256 aes-encryption cipher compression cryptography data-exfiltration encryption hacking hacking-tool hide-files hide-files-in-image image-steganography lsb-steganography privacy rsa-cryptography security security-tools steganography steganography-algorithms stego
Last synced: 16 May 2025
https://github.com/adamyordan/cve-2019-1003000-jenkins-rce-poc
Jenkins RCE Proof-of-Concept: SECURITY-1266 / CVE-2019-1003000 (Script Security), CVE-2019-1003001 (Pipeline: Groovy), CVE-2019-1003002 (Pipeline: Declarative)
cve cve-2019-1003000 exploit groovy information-security jenkins poc rce security security-1266
Last synced: 13 Oct 2025
https://github.com/lydiahallie/advanced-web-dev-quiz
🔥 Repo related to my FrontendMasters course. An Advanced Web Dev Quiz that covers a wide range of the things web devs get to deal with on a daily basis.
csrf css html javascript performance rendering security web xss
Last synced: 06 Apr 2025
https://github.com/Symbo1/wsltools
Web Scan Lazy Tools - Python Package
crawling-framework package python-package scanner-web security security-audit security-automation security-scanner security-tool security-tools spider spider-framework web-vulnerability-scanner
Last synced: 11 Jul 2025
https://github.com/cruise-automation/daytona
A Vault client, but for containers and servers.
aws gcp go kubernetes secrets secrets-management security vault
Last synced: 16 May 2025
https://github.com/vixentael/my-talks
List of my talks and workshops: security engineering, applied cryptography, secure software development
cryptography data-protection encryption infosec ios ios-swift mobile-development security security-engineering usability-engineering
Last synced: 28 Jul 2025
https://github.com/tijme/angularjs-csti-scanner
Automated client-side template injection (sandbox escape/bypass) detection for AngularJS v1.x.
angularjs angularjs-csti-scanner angularjs-sandbox-escape exploit sandbox-escape security tool vulnerability-scanners xss xss-scanners
Last synced: 06 Apr 2025
https://github.com/print3m/dllshimmer
Weaponize DLL hijacking easily. Backdoor any function in any DLL.
backdoor dll-hijacking dll-sideloading golang initial-access malware pentesting persistence redteam security security-tools windows windows-security
Last synced: 03 Sep 2025
