Security
Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.
- GitHub: https://github.com/topics/security
- Wikipedia: https://en.wikipedia.org/wiki/Computer_security
- Aliases: security-tools, security-vulnerability, security-audit,
- Last updated: 2026-02-02 00:28:49 UTC
- JSON Representation
https://github.com/print3m/dllshimmer
Weaponize DLL hijacking easily. Backdoor any function in any DLL.
backdoor dll-hijacking dll-sideloading golang initial-access malware pentesting persistence redteam security security-tools windows windows-security
Last synced: 03 Sep 2025
https://github.com/WMAL/Linux-Kodachi
Linux Kodachi is a security-focused operating system designed for users who value privacy, anonymity, and a secure computing experience. Developed by Warith Al Maawali, Kodachi provides all the tools necessary for anonymous online activities while maintaining ease of use.
cyber-security cybersecurity cybersecurity-education cybersecurity-tools linux privacy security
Last synced: 13 Mar 2025
https://github.com/ezekg/git-hound
Git plugin that prevents sensitive data from being committed.
cli git git-plugin golang regular-expression security
Last synced: 10 Apr 2025
https://github.com/adysec/cf-mirror
AdySec CF拉平镜像站 | 官方源可信度和稳定性最高,但国内访问速度较慢,通过众生平等Cloudflare,利用全球的边缘节点,将用户请求转发到离用户距离最近的节点,同时缓存静态内容加速,减少网络延迟和下载速度,使用Cloudflare Workers配置反代实现
archlinux centos cloudflare cloudflare-workers docker-ce fedora kali mirror mirrors openwrt pip pypi security serverless ubuntu worker
Last synced: 18 Mar 2025
https://github.com/cloudflare/gortr
The RPKI-to-Router server used at Cloudflare
bgp cisco cloudflare cryptography juniper prometheus rpki security
Last synced: 06 Apr 2025
https://github.com/Rizer0/Log-killer
Clear all your logs in [linux/windows] servers 🛡️
hacking logs security server-management web-security
Last synced: 07 Apr 2025
https://github.com/disclose/research-threats
Collection of legal threats against good faith Security Researchers; vulnerability disclosure gone wrong. A continuation of work started by @attritionorg
advisories cybersecurity legal news security vulnerability
Last synced: 17 Jan 2026
https://github.com/redcanaryco/chain-reactor
Chain Reactor is an open source framework for composing executables that simulate adversary behaviors and techniques on Linux endpoints.
adversary-simulation elf linux mitre mitre-attack security security-testing
Last synced: 16 May 2025
https://github.com/gellin/TeamViewer_Permissions_Hook_V1
A proof of concept injectable C++ dll, that uses naked inline hooking and direct memory modification to change your TeamViewer permissions.
cplusplus cpp dll-injection hooking memory-hacking penetration-testing security teamviewer x86
Last synced: 12 Mar 2025
https://github.com/lwindolf/lzone-cheat-sheets
A collection of sysadmin / DevOps / system architecture cheat sheets hosted on https://lzone.de
architecture automation cheatsheet cloud devops kubernetes linux security sysadmin
Last synced: 30 Dec 2025
https://github.com/google/kafel
A language and library for specifying syscall filtering policies.
linux seccomp-filter security syscalls
Last synced: 04 Apr 2025
https://github.com/root4loot/rescope
A scope generation tool for Burp Suite & ZAP
bugbounty burp burpsuite enumeration go golang infosec pentesting scope security security-tools websec zap
Last synced: 07 Apr 2025
https://github.com/liyupi/ceshiya
免费的交互式网络安全自学网,助你成为网络安全达人!纯前端实现,简单易学~
ant-design ant-design-pro css frontend html javascript network programmer security typescript web
Last synced: 25 Dec 2025
https://github.com/hbaniecki/adversarial-explainable-ai
💡 Adversarial attacks on explanations and how to defend them
adversarial adversarial-attacks adversarial-examples adversarial-machine-learning attacks counterfactual deep defense evaluation explainability explainable-ai iml interpretability interpretable interpretable-machine-learning model responsible-ai robustness security xai
Last synced: 27 Jan 2026
https://github.com/l3yx/jdwp-codeifier
基于 jdwp-shellifier 的进阶JDWP漏洞利用脚本(动态执行Java/Js代码并获得回显)
Last synced: 17 Jan 2026
https://github.com/rizer0/log-killer
Clear all your logs in [linux/windows] servers 🛡️
hacking logs security server-management web-security
Last synced: 02 Apr 2025
https://github.com/imranr98/apps.obtainium.imranr.dev
Collection of suggested apps for Obtainium.
android apk apk-update apk-updater app-updater automation foss github github-apk-updater gitlab obtainium privacy repository security update-checker updater
Last synced: 16 May 2025
https://github.com/valpackett/freepass
[DEPRECATED] password manager thing
masterpassword password password-manager security ssh
Last synced: 19 Mar 2025
https://github.com/mozillasecurity/grizzly
A cross-platform browser fuzzing framework
automated-testing automation framework fuzz-testing fuzzing python security stability test-framework testcase-reducer testing
Last synced: 12 Apr 2025
https://github.com/adysec/mirror
AdySec CF拉平镜像站 | 官方源可信度和稳定性最高,但国内访问速度较慢,通过众生平等Cloudflare,利用全球的边缘节点,将用户请求转发到离用户距离最近的节点,同时缓存静态内容加速,减少网络延迟和下载速度,使用Cloudflare Workers配置反代实现
archlinux centos cloudflare cloudflare-workers docker-ce fedora kali mirror mirrors openwrt pip pypi security serverless ubuntu worker
Last synced: 28 Nov 2025
https://github.com/dheerajydv19/Google-Dorks-Simplified
Best Resource for learning Google Dorks
cybersecurity dorking dorks google googlehack googlehacking hacking infosec osint security
Last synced: 20 Apr 2025
https://github.com/EdOverflow/megplus
Automated reconnaissance wrapper — TomNomNom's meg on steroids. [DEPRECATED]
bugbounty infosec recon reconnaissance security
Last synced: 10 May 2025
https://github.com/google/gcp_scanner
A comprehensive scanner for Google Cloud
automation gcp google-cloud-platform scanning-tool security
Last synced: 19 Apr 2025
https://github.com/mc2-project/mc2
A Platform for Secure Analytics and Machine Learning
analytics cloud machine-learning privacy secure-analytics secure-learning security
Last synced: 15 Jan 2026
https://github.com/spatie/ssl-certificate-chain-resolver
SSL certificate chain resolver
certificate certificate-authority php security ssl trust-chain
Last synced: 12 Apr 2025
https://github.com/ispras/casr
Collect crash (or UndefinedBehaviorSanitizer error) reports, triage, and estimate severity.
afl aflplusplus apport appsec coredump crash crash-reporting devsecops dynamic-analysis exploitable fuzzing gdb libfuzzer rust sdl security ssdlc testing triage vulnerability-management
Last synced: 12 Apr 2025
https://github.com/patrickfav/armadillo
A shared preference implementation for confidential data in Android. Per default uses AES-GCM, BCrypt and HKDF as cryptographic primitives. Uses the concept of device fingerprinting combined with optional user provided passwords and strong password hashes.
aes-encryption aes-gcm android authenticated-encryption bcrypt crypto cryptography hkdf security sharedpreferences
Last synced: 05 Apr 2025
https://github.com/entysec/hatsploit
Modular penetration testing platform that enables you to write, test, and execute exploit code.
android entysec exploit exploit-database exploit-development exploitation exploitation-framework exploits hacking-tool infosec payload post-exploitation privilege-escalation python remote-access-tool remote-control security windows windows-hacking
Last synced: 16 May 2025
https://github.com/mercedes-benz/sechub
SecHub provides a central API to test software with different security tools.
api appsec build client continuous-integration dast k8s orchestration rest sast sdlc secdevops sechub security security-automation security-scanner security-testing security-tools server vulnerability-scanners
Last synced: 16 May 2025
https://github.com/cert-manager/trust-manager
trust-manager is an operator for distributing trust bundles across a Kubernetes cluster.
go golang hacktoberfest kubernetes security tls
Last synced: 14 Apr 2025
https://github.com/jonasgeiping/breaching
Breaching privacy in federated learning scenarios for vision and text
decentralized-learning federated-learning machine-learning privacy-audit pytorch security
Last synced: 06 Nov 2025
https://github.com/pumpbin/pumpbin
🎃 PumpBin is an Implant Generation Platform.
adversarial-attacks application bypass-antivirus c2 command-and-control cybersecurity iced implant linux macos offensive-security redteam rust security security-tools shellcode shellcode-injection shellcode-injector shellcode-loader windows
Last synced: 06 Apr 2025
https://github.com/codeintelligencetesting/jazzer.js
Coverage-guided, in-process fuzzing for Node.js
fuzzer fuzzing javascript nodejs security testing typescript
Last synced: 15 May 2025
https://github.com/opticfusion1/mcantimalware
Anti-Malware for minecraft
anti-malware anti-virus antimalware antivirus bukkit bungee bungeecord hacktoberfest java malware-analysis malware-detection malware-protection maven minecraft minecraft-server protection security spigot spigot-server
Last synced: 16 May 2025
https://github.com/step-security/secure-repo
Orchestrate GitHub Actions Security
actions github github-actions golang security security-tools supply-chain-security workflow
Last synced: 17 Jan 2026
https://github.com/SELinuxProject/refpolicy
SELinux Reference Policy v2
access-control policy rbac security security-hardening security-policy selinux
Last synced: 30 Mar 2025
https://github.com/gaprogman/owaspheaders.core
Inject OWASP recommended HTTP Headers for increased security in a single line
application-security aspnetcore http-header middleware nuget owasp security
Last synced: 14 May 2025
https://github.com/j256/two-factor-auth
Two Factor Authentication Java code implementing the Time-based One-time Password Algorithm
Last synced: 05 Apr 2025
https://github.com/CodeIntelligenceTesting/jazzer.js
Coverage-guided, in-process fuzzing for Node.js
fuzzer fuzzing javascript nodejs security testing typescript
Last synced: 07 May 2025
https://github.com/edoverflow/megplus
Automated reconnaissance wrapper — TomNomNom's meg on steroids. [DEPRECATED]
bugbounty infosec recon reconnaissance security
Last synced: 02 Apr 2025
https://github.com/ivan-sincek/powershell-reverse-tcp
PowerShell scripts for communicating with a remote host.
bind-shell bind-tcp bug-bounty defensive-security ethical-hacking networking offensive-security penetration-testing powershell red-team-engagement reverse-shell reverse-tcp security tcp
Last synced: 07 Apr 2025
https://github.com/mihirdilip/aspnetcore-authentication-apikey
Easy to use and very light weight Microsoft style API Key Authentication Implementation for ASP.NET Core. It can be setup so that it can accept API Key in Header, Authorization Header, QueryParams or HeaderOrQueryParams.
api-key-authentication apikey apikey-authentication apikeyauthentication asp-net-core asp-net-core-apikey-authentication asp-net-core-authentication aspnetcore aspnetcore-apikey-authentication aspnetcore-authentication authentication authentication-scheme net50 netstandard netstandard20 security
Last synced: 16 May 2025
https://github.com/dotboris/vuejs-serverside-template-xss
Demo of a Vue.js app that mixes both clientside templates and serverside templates leading to an XSS vulnerability
security vue vue2 vuejs vuejs2 xss xss-vulnerability
Last synced: 31 Jan 2026
https://github.com/10up/safe-svg
Enable SVG uploads and sanitize them to stop XML/SVG vulnerabilities in your WordPress website.
file graphic hacktoberfest image media mime sanitize security svg svg-upload upload vector wordpress
Last synced: 14 May 2025
https://github.com/MozillaSecurity/grizzly
A cross-platform browser fuzzing framework
automated-testing automation framework fuzz-testing fuzzing python security stability test-framework testcase-reducer testing
Last synced: 09 Jul 2025
https://github.com/GaProgMan/OwaspHeaders.Core
Inject OWASP recommended HTTP Headers for increased security in a single line
application-security aspnetcore http-header middleware nuget owasp security
Last synced: 16 Mar 2025
https://github.com/noraj/rawsec-cybersecurity-inventory
An inventory of tools and resources about CyberSecurity that aims to help people to find everything related to CyberSecurity.
cyber cyber-security cyberdefense cybersecurity hacktoberfest infosec inventory ressources security security-tools tools
Last synced: 16 May 2025
https://github.com/arcaneiceman/kraken
Kraken: A multi-platform distributed brute-force password cracking system
bruteforce-password-cracker hashcat kraken kraken-client password-cracker security security-tools wpa2-cracking
Last synced: 01 Apr 2025
https://github.com/nextcloud/twofactor_totp
🔑 Second factor TOTP (RFC 6238) provider for Nextcloud
2fa otp rfc-6238 security totp two-factor two-factor-authentication
Last synced: 16 May 2025
https://github.com/ossf/scorecard-action
Official GitHub Action for OpenSSF Scorecard.
github github-actions openssf-scorecard security supply-chain
Last synced: 15 May 2025
https://github.com/zishanadthandar/pentest
Pentesting and Bug Bounty Notes, Cheetsheets and Guide for Ethical Hacker, Whitehat Pentesters and CTF Players.
activedirectory cheetsheet cyber-security cybersecurity cybersecurity-tool ethical-hacking hacking hacking-tool infosec penetration-testing penetration-testing-tools pentest pentesting powershell redteam redteaming security web-application-penetration-testing web-application-security whitehat-hacker
Last synced: 16 May 2025
https://github.com/ameenmaali/qsfuzz
qsfuzz (Query String Fuzz) allows you to build your own rules to fuzz query strings and easily identify vulnerabilities.
bugbounty fuzz infosec security vulnerability-detection
Last synced: 02 Apr 2025
https://github.com/security-checklist/php-security-check-list
PHP Security Check List [ EN ] 🌋 ☣️
bugbounty checklist php php-framework php-library php-security php-security-checker security security-audit security-checklist security-research security-researcher security-testing web-application web-application-framework web-application-security webapplication
Last synced: 30 Mar 2025
https://github.com/tpm2-software/tpm2-pkcs11
A PKCS#11 interface for TPM2 hardware
crypto cryptography pkcs11 security signing tpm tpm2
Last synced: 08 Apr 2025
https://github.com/p3nt4/Invoke-Piper
Forward local or remote tcp ports through SMB pipes.
Last synced: 01 Apr 2025
https://github.com/p3nt4/invoke-piper
Forward local or remote tcp ports through SMB pipes.
Last synced: 09 Apr 2025
https://github.com/smarttang/w3a_SOC
元豚科技 - 基于日志安全分析做切入,做最好用的「云原生安全运维工作台」
anaylsis golang hacker java mybatis-plus security security-tools springboot vue
Last synced: 27 Apr 2025
https://github.com/slok/agebox
Age based repository file encryption gitops tool
age blackbox encryption git-crypt gitops repository-secrets secrets secrets-management security security-tools sops
Last synced: 16 Oct 2025
https://github.com/dm-zharov/swift-security
Modern Swift framework for Keychain API. Supports iOS, macOS, watchOS, tvOS and visionOS
certificate cryptokit identity keychain pkcs12 security swift swiftui x509
Last synced: 17 Jun 2025
https://github.com/aabysszg/open-source-information-leakage
开源项目信息泄露笔记
information-leakage intelligence open-source osint osint-tools security
Last synced: 01 Jul 2025
https://github.com/rams3sh/Aaia
AWS Identity and Access Management Visualizer and Anomaly Finder
aws graph iam neo4j pentesting security security-tools
Last synced: 01 Apr 2025
https://github.com/rams3sh/aaia
AWS Identity and Access Management Visualizer and Anomaly Finder
aws graph iam neo4j pentesting security security-tools
Last synced: 06 Apr 2025
https://github.com/chriskalix/hades
Hades is a Host-Based Intrusion Detection System based on eBPF(mainly)
agent ebpf ebpf-programs ebpf-sec golang hids libbpf linux netlink runtime-security rust security
Last synced: 16 May 2025
https://github.com/aquasecurity/traceeshark
Deep Linux runtime visibility meets Wireshark
epbf linux malware-analysis runtime-security security tracee tracing wireshark
Last synced: 13 Oct 2025
https://github.com/AabyssZG/Open-Source-Information-Leakage
开源项目信息泄露笔记
information-leakage intelligence open-source osint osint-tools security
Last synced: 05 Apr 2025
https://github.com/nextcloud/end_to_end_encryption
:closed_lock_with_key: Server API to support End-to-End Encryption
encryption end-to-end-encryption security
Last synced: 16 May 2025
https://github.com/SpamScope/spamscope
Fast Advanced Spam Analysis Tool
ansible ansible-playbook apache-storm application-security dialect docker docker-image mail-analyzer outlook python security smtp spam-analyzer spamscope streamparse
Last synced: 05 May 2025
https://github.com/spamscope/spamscope
Fast Advanced Spam Analysis Tool
ansible ansible-playbook apache-storm application-security dialect docker docker-image mail-analyzer outlook python security smtp spam-analyzer spamscope streamparse
Last synced: 04 Apr 2025
https://github.com/Extravi/araa-search
A privacy-respecting, ad-free, self-hosted Google metasearch engine with strong security that offers full API support and utilizes Qwant for images, and DuckDuckGo for auto-complete.
ad-free api api-support autocomplete foss google-api metasearch metasearch-engine osint privacy privacy-search python search search-engine search-results security security-tools self-hosted tor
Last synced: 14 Mar 2025
https://github.com/moqui/moqui-framework
Use Moqui Framework to build enterprise applications based on Java. It includes tools for databases (relational, graph, document), local and web services, web and other UI with screens and forms, security, file/resource access, scripts, templates, l10n, caching, logging, search, rules, workflow, multi-instance, and integration.
application-framework crm database-access ecommerce entity erp framework freemarker groovy java moqui moqui-framework rest security server service web
Last synced: 15 May 2025
https://github.com/nitrokey/nitrokey-app
Nitrokey's Application (Win, Linux, Mac)
c-plus-plus cross-platform debian-packages encrypted-store libusb linux nitrokey one-time-passwords otp password-manager password-store password-vault qt5 security ubuntu-linux
Last synced: 06 Apr 2025
https://github.com/restran/fomalhaut
🚀 A Simple API Gateway for Building Security and Flexible Microservices.
api-gateway microservice python security tornado waf
Last synced: 09 May 2025
https://github.com/0x4D31/deception-as-detection
Deception based detection techniques mapped to the MITRE’s ATT&CK framework
deception detection honeypot honeytoken security
Last synced: 24 Mar 2025
https://github.com/op7ic/EDR-Testing-Script
Test the accuracy of Endpoint Detection and Response (EDR) software with simple script which executes various ATT&CK/LOLBAS/Invoke-CradleCrafter/Invoke-DOSfuscation payloads
att edr edr-solutions incident-response mitre security security-audit
Last synced: 12 Apr 2025
https://github.com/duo-labs/isthislegit
Dashboard to collect, analyze, and respond to reported phishing emails.
infosec phishing phishing-reports security security-automation security-tools
Last synced: 07 Apr 2025
https://github.com/0x4d31/deception-as-detection
Deception based detection techniques mapped to the MITRE’s ATT&CK framework
deception detection honeypot honeytoken security
Last synced: 02 Jan 2026
https://github.com/stevenaldinger/decker
Declarative penetration testing orchestration framework
automation decker docker framework go golang hacking hcl kali linux orchestration penetration security testing
Last synced: 02 Apr 2025
https://github.com/hahwul/droid-hunter
(deprecated) Android application vulnerability analysis and Android pentest tool
android hacking scanner security vulnerability
Last synced: 26 Mar 2025
https://github.com/lyshark/LyScript
A powerful automatic disassembly control module developed for x64dbg improves the efficiency of reverse analysis.
debugging dissassembler hacktoberfest security x64dbg x64dbg-plugin x64dbg-theme x86-64
Last synced: 12 Jul 2025
https://github.com/dev-sec/puppet-os-hardening
This puppet module provides numerous security-related configurations, providing all-round base protection.
hardening linux puppet security
Last synced: 23 Nov 2025
https://github.com/warpnet/ms-rpc-fuzzer
Gain insights into MS-RPC implementations that may be vulnerable using an automated approach and make it easy to visualize the data. By following this approach, a security researcher will hopefully identify interesting RPC services in such a time that would take a manual approach significantly more.
exploit internals research rpc security vulnerability windows
Last synced: 04 Sep 2025
https://github.com/apache/syncope
Apache Syncope
access-management api-gateway api-management authentication authorization enforce-policies identity-governance identity-management identity-provider identity-provisioning microservices oauth2 openidconnect proxy request-routing saml2 scim security service-mesh sso
Last synced: 15 May 2025
https://github.com/burpheart/PHPAuditGuideBook
《PHP代码审计入门指南》 这本指南包含了我在学习PHP代码审计过程中整理出的一些技巧和对漏洞的一些理解
Last synced: 11 Jul 2025
https://github.com/tailscale/security-policies
Security policies for Tailscale
Last synced: 18 Oct 2025
https://github.com/reposaur/reposaur
Open source compliance tool for development platforms.
audit compliance git github github-actions gitlab go golang golang-tools opa rego report security
Last synced: 17 Jan 2026
https://github.com/spring-projects/spring-vault
Provides familiar Spring abstractions for HashiCorp Vault
encryption framework java secrets security spring vault
Last synced: 29 Apr 2025
https://github.com/ZacharyZcR/SecGPT
A Test Project for a Network Security-oriented LLM Tool Emulating AutoGPT
ai autogpt cybersecurity langchain llm secgpt security
Last synced: 04 Apr 2025
https://github.com/zacharyzcr/secgpt
A Test Project for a Network Security-oriented LLM Tool Emulating AutoGPT
ai autogpt cybersecurity langchain llm secgpt security
Last synced: 06 Apr 2025
https://github.com/CervantesSec/cervantes
Cervantes is an open-source, collaborative platform designed specifically for pentesters and red teams. It serves as a comprehensive management tool, streamlining the organization of projects, clients, vulnerabilities, and reports in a single, centralized location.
audit burpsuite collaboration collaboration-platform collaborative cve hacking nessus nmap penetration-testing penetration-testing-tools pentesters pentesting red-team red-teaming report reporting security vulnerability vulnerability-management
Last synced: 11 Jul 2025
