Security
Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.
- GitHub: https://github.com/topics/security
- Wikipedia: https://en.wikipedia.org/wiki/Computer_security
- Aliases: security-tools, security-vulnerability, security-audit,
- Last updated: 2026-02-06 00:29:49 UTC
- JSON Representation
https://github.com/aspnetrun/run-aspnet-identityserver4
Secure microservices with using standalone Identity Server 4 and backing with Ocelot API Gateway. Protect our ASP.NET Web MVC and API applications with using OAuth 2 and OpenID Connect in IdentityServer4. Securing your web application and API with tokens, working with claims, authentication and authorization middlewares and applying policies.
aspnet aspnetcore identityserver4 microservices oauth2 ocelot-gateway openid-connect security
Last synced: 25 Jan 2026
https://github.com/FuzzingLabs/thoth
Cairo/Starknet security toolkit (bytecode analyzer, disassembler, decompiler, symbolic execution, SBMC)
analysis cairo-lang callflow cfg decompiler disassembler reversing security sierra starknet symbolic-execution
Last synced: 18 Apr 2025
https://github.com/six2dez/burp-ai-agent
Burp Suite extension that adds built-in MCP tooling, AI-assisted analysis, privacy controls, passive and active scanning and more
ai appsec bugbounty burp burp-extensions burp-plugin burp-suite hacking kotlin llm mcp pentesting security web-security
Last synced: 03 Feb 2026
https://github.com/nielsing/yar
Yar is a tool for plunderin' organizations, users and/or repositories.
golang infosec osint reconnaissance secrets security tool trufflehog yar
Last synced: 14 Jan 2026
https://github.com/sublime-security/sublime-platform
A free and open platform for detecting and preventing email attacks like BEC, malware, and credential phishing. Gain visibility and control, hunt for advanced threats, collaborate with the community, and write detections-as-code.
detection-rules email-security phishing phishing-detection security security-tools
Last synced: 18 Jan 2026
https://github.com/ATpiu/asset-scan
asset-scan是一款适用甲方企业的外网资产周期性扫描监控系统
golang network-discovery nmap port-scanner security service-discovery vulnerability-detection
Last synced: 11 Jul 2025
https://github.com/rog3rsm1th/frelatage
Coverage-based fuzzer for python applications
fuzz-testing fuzzer fuzzing python python3 security testing
Last synced: 11 Sep 2025
https://github.com/dbarzin/deming
Management tool for the information security management system / Outil de gestion du système de management de la sécurité de l'information
27001 27002 controls grc isms nis2 nis2directive security smsi
Last synced: 19 Jan 2026
https://github.com/nullarray/intrec-pack
Intelligence and Reconnaissance Package/Bundle installer.
automation bash enumeration install-script installer linux osint pentest pentesting recon reconnaissance security security-tools threatintel
Last synced: 10 Apr 2025
https://github.com/dschadow/JavaSecurity
Java web and command line applications demonstrating various security topics
appsec cryptography csp csrf esapi google-tink java java-security java-web owasp security security-topics spring spring-boot spring-security xss
Last synced: 09 Aug 2025
https://github.com/webarx-security/wpbullet
A static code analysis for WordPress (and PHP)
cyber-security security static-code-analysis wordpress wordpress-development
Last synced: 01 Aug 2025
https://github.com/mozilla/eslint-plugin-no-unsanitized
Custom ESLint rule to disallows unsafe innerHTML, outerHTML, insertAdjacentHTML and alike
Last synced: 14 May 2025
https://github.com/EtherDream/js-port-knocking
Web 端口敲门的奇思妙想
ddos-mitigation javascript portknocking security
Last synced: 20 Mar 2025
https://github.com/vet-run/vet
vet is a command-line tool that acts as a safety net for the risky curl | bash pattern. It lets you inspect, diff against previous versions, and lint remote scripts before asking for your explicit approval to execute. Promoting a safer, more transparent way to handle remote code execution.
bash cli command-line curl developer-tools devops-tools pipe-security security security-hardening shell shell-script shellcheck sysadmin-tools vet wget
Last synced: 04 Jul 2025
https://github.com/Grunny/zap-cli
A simple tool for interacting with OWASP ZAP from the commandline.
owasp penetration-testing pentesting python security security-audit zap
Last synced: 10 May 2025
https://github.com/ernw/AndroTickler
Penetration testing and auditing toolkit for Android apps.
android auditing java pentesting security
Last synced: 11 Jul 2025
https://github.com/buttercup/buttercup-browser-extension
:earth_asia: Buttercup browser extension
buttercup chrome chrome-extension firefox hacktoberfest login login-automation password-manager password-store password-vault security
Last synced: 06 Apr 2025
https://github.com/marcobellaccini/pyaescrypt
A Python 3 module and script that uses AES256-CBC to encrypt/decrypt files and streams in AES Crypt file format (version 2).
aes aes-256 aes-encryption cryptography python3 security
Last synced: 06 Apr 2025
https://github.com/rastating/shiva
An Ansible playbook to provision a host for penetration testing and CTF challenges
ansible ansible-playbook ctf ctf-tools security
Last synced: 03 Aug 2025
https://github.com/wkovacs64/pwned
A command-line tool for querying the 'Have I been pwned?' service.
breach dump hack hacktoberfest haveibeenpwned hibp passwords pastes pwned security
Last synced: 06 Apr 2025
https://github.com/zoicware/RemoveWindowsAI
Force Remove Copilot, Recall and More in Windows 11
ai copilot debloat generative-ai image-creator powershell privacy recall rewrite security windows
Last synced: 24 Sep 2025
https://github.com/aviggiano/theauditorbook
The Auditor Book
audit security security-audit solidity
Last synced: 26 Jul 2025
https://github.com/Stratus-Security/Subdominator
The Internets #1 Subdomain Takeover Tool
bug-bounty infosec penetration-testing penetration-testing-tools pentesting security subdomain subdomain-takeover
Last synced: 27 Sep 2025
https://github.com/droe/xnumon
monitor macOS for malicious activity
agent endpoint-security macos process-monitoring security security-monitoring
Last synced: 04 Apr 2025
https://github.com/grunny/zap-cli
A simple tool for interacting with OWASP ZAP from the commandline.
owasp penetration-testing pentesting python security security-audit zap
Last synced: 04 Apr 2025
https://github.com/Feysh-Group/corax-community
Corax for Java: A general static analysis framework for java code checking.
abstract-interpretation code-analysis cwe flowdroid java owasp program-analysis sarif sast security security-audit software-analysis soot static-analysis static-code-analysis taint-analysis vulnerability
Last synced: 27 Feb 2025
https://github.com/vmfunc/sif
the blazing-fast pentesting suite.
attack-surface cve-scanner cve-scanning cybersecurity directory-enumeration dirlist dns-enumeration hacktoberfest infosec pentest pentest-scripts pentest-tool pentesting security vulnerability-detection vulnerability-scanners
Last synced: 06 Jan 2026
https://github.com/jetstack/paranoia
Inspect certificate authorities in container images
certificate-authority container-security containers security tls
Last synced: 09 Apr 2025
https://github.com/bongochong/combinedprivacyblocklists
Ad-blocking hosts files, IP block lists, PAC filters, ABP / uBO / ADG subscriptions, and a whole lot more. All merged from multiple reputable sources, combined with my own research. Also, script-based utilities to help you create such things yourself. Updated at least once every two weeks, often more frequently.
ad-blocking ancient-truths bash bittorrent blocklists bromite cygwin dns file-sharing foss freedom gnu hosts linux mac p2p pihole privacy security shell-scripting
Last synced: 04 Apr 2025
https://github.com/houarizegai/spygen
Trojan :snake: (keylogger, take screenshots, open your webcam) :unlock:
hacking-tool java keylogger open-camera screenshot-generator security security-tool security-tools spyware spyware-generator
Last synced: 07 May 2025
https://github.com/owenrumney/squealer
Telling tales on you for leaking secrets!
aws code-scanning devsecops git-tool go golang hacktoberfest leak-detection leaking-secrets sarif-report secrets security security-tools static-analysis
Last synced: 14 May 2025
https://github.com/wKovacs64/pwned
A command-line tool for querying the 'Have I been pwned?' service.
breach dump hack hacktoberfest haveibeenpwned hibp passwords pastes pwned security
Last synced: 23 Mar 2025
https://github.com/paloaltonetworks/ansible-pan
Ansible modules for Palo Alto Networks NGFWs
ansible ansible-modules ngfw orchestration palo-alto-networks panw provisioning security
Last synced: 11 May 2025
https://github.com/justdomains/blocklists
Domain-ONLY Filter Lists (for use with DNS / Domain blocking tools)
blocklist blocklists dns domain-blocker filter-lists pi-hole-blocklists pihole pihole-blocklists security
Last synced: 07 May 2025
https://github.com/guardllamanet/guardllama
The Ultimate Open-Source VPN, Ad-blocker and DNS resolver :llama::shield:
adblock adguardhome dns firewall gateway privacy security vpn wireguard
Last synced: 30 Mar 2025
https://github.com/Tontonjo/proxmox_toolbox
A toolbox to get the firsts configurations of Proxmox VE / BS done in no time
backup notifications pbs proxmox pve restore security security-tools smart snmp swap update
Last synced: 07 Apr 2025
https://github.com/unknownhad/CloudIntel
This repo contains IOC, malware and malware analysis associated with Public cloud
aws azure exploit gcp malware-analysis security threat-intelligence threatintel
Last synced: 22 Aug 2025
https://github.com/Plazmaz/leaky-repo
Benchmarking repo for secrets scanning
benchmark entropy example scanning secrets secrets-detection security testing
Last synced: 22 Apr 2025
https://github.com/eshlomo1/microsoft-sentinel-secops
Microsoft Sentinel SOC Operations
azure azure-sentinel cloudsecurity hunting incident-response ir microsoft microsoft-sentinel secops security siem soc threat-hunting threat-intelligence
Last synced: 07 Oct 2025
https://github.com/lucasfrag/Kali-Linux-Tools-Interface
Graphical Web interface developed to facilitate the use of security information tools.
analysis attack bootstrap cybersecurity education hacking hacking-tools kali-linux pentesting php7 security ssh whitehat
Last synced: 11 Jul 2025
https://github.com/PaloAltoNetworks/ansible-pan
Ansible modules for Palo Alto Networks NGFWs
ansible ansible-modules ngfw orchestration palo-alto-networks panw provisioning security
Last synced: 09 May 2025
https://github.com/plazmaz/leaky-repo
Benchmarking repo for secrets scanning
benchmark entropy example scanning secrets secrets-detection security testing
Last synced: 06 Apr 2025
https://github.com/ethz-spylab/agentdojo
A Dynamic Environment to Evaluate Attacks and Defenses for LLM Agents.
benchmark large-language-models prompt-injection security
Last synced: 21 Aug 2025
https://github.com/fastify/secure-json-parse
JSON.parse() drop-in replacement with prototype poisoning protection
fastify-library json-parser security
Last synced: 14 May 2025
https://github.com/lunchcat/sif
the blazing-fast pentesting suite.
attack-surface cve-scanner cve-scanning cybersecurity directory-enumeration dirlist dns-enumeration hacktoberfest infosec pentest pentest-scripts pentest-tool pentesting security vulnerability-detection vulnerability-scanners
Last synced: 12 Apr 2025
https://github.com/BSI-Bund/RdpCacheStitcher
RdpCacheStitcher is a tool that supports forensic analysts in reconstructing useful images out of RDP cache bitmaps.
cybersecurity dfir digitalforensics forensics incident-response incident-response-tooling rdp security
Last synced: 10 Apr 2025
https://github.com/rahra/onioncat
Official repository of OnionCat, the VPN adapter for Tor and I2P.
anonymity counter-surveillance i2p ipv6 network-security security tor vpn vpn-adapter
Last synced: 21 Oct 2025
https://github.com/R4yGM/dorkscout
DorkScout - Golang tool to automate google dork scan against the entiere internet or specific targets
bug-bounty crawler ghdb golang google-dorks osint scraper security
Last synced: 11 Jul 2025
https://github.com/evilsocket/shieldwall
zero-trust remote firewall instrumentation
firewall firewall-manager hide security server
Last synced: 09 Apr 2025
https://github.com/madhavmehndiratta/dorkScanner
A typical search engine dork scanner scrapes search engines with dorks that you provide in order to find vulnerable URLs.
bing-dorking dork-scanner ethical-hacking google-dorking google-dorks hacking-tools kali-linux search-engines security vulnerability-scanner
Last synced: 11 Jul 2025
https://github.com/cioccarellia/ksprefs
Kotlin SharedPreferences wrapper & cryptographic android library.
aes android android-sharedpreferences base64 encryption keystore kotlin library maven security shared-preferences sharedpreferences sharedpreferences-wrapper wrapper xml
Last synced: 09 Apr 2025
https://github.com/dropbox/llm-security
Dropbox LLM Security research code and results
Last synced: 02 Aug 2025
https://github.com/jurelou/epagneul
Graph Visualization for windows event logs
blueteam dfir-automation evtx forensics forensics-tools hunting security security-tools threat-hunting
Last synced: 12 Jul 2025
https://github.com/FuzzAnything/Hopper
Hopper is a tool for generating fuzzing test cases for libraries automatically using interpretative fuzzing.
afl api-testing binary fuzz-driver fuzzer fuzzing fuzzing-framework interpreter library-testing rust security testing
Last synced: 18 Apr 2025
https://github.com/coolacid/docker-misp
A (nearly) production ready Dockered MISP
docker misp security security-tools threat-intelligence threat-sharing
Last synced: 16 Jul 2025
https://github.com/dmuth/diceware
Generate secure passwords you can actually remember!
bootstrap diceware password password-generator security web
Last synced: 12 Apr 2025
https://github.com/Sh1Yo/request_smuggler
Http request smuggling vulnerability scanner
bugbounty request-smuggling rust scanner security web
Last synced: 11 Apr 2025
https://github.com/belane/linux-soft-exploit-suggester
Search Exploitable Software on Linux
ctf elevate exploits hacking-tool linux pentest security security-tools vulnerabilities
Last synced: 09 Apr 2025
https://github.com/mschwager/route-detect
Find authentication (authn) and authorization (authz) security bugs in web application routes.
authentication authorization http-server routes security static-analysis
Last synced: 06 Apr 2025
https://github.com/HarrisJT/web-launch-checklist
:clipboard: A simple website launch checklist to keep track of the most important enrichment possibilities for a website.
accessibility checklist improve launch list performance security seo web website
Last synced: 04 May 2025
https://github.com/google/go-tpm-tools
Go packages built on go-tpm providing a high-level API for using TPMs
go golang remote-attestation security tpm tpm2
Last synced: 21 Oct 2025
https://github.com/plsyssec/sys
Sys: A Static/Symbolic Tool for Finding Good Bugs in Good (Browser) Code
bug-finding security static-analysis symbolic-execution
Last synced: 03 Apr 2025
https://github.com/dustinmoris/firewall
ASP.NET Core middleware for IP address filtering.
asp-net-core aspnetcore cloudflare ipv4 ipv6 security
Last synced: 04 Apr 2025
https://github.com/securefolderfs-community/securefolderfs
Powerful, secure, modern way to keep your files protected.
cryptography csharp encryption fluent security security-tools vault windows-10 windows-11 winui
Last synced: 13 Apr 2025
https://github.com/salesforce/aws-allowlister
Automatically compile an AWS Service Control Policy that ONLY allows AWS services that are compliant with your preferred compliance frameworks.
aws cloud cloud-security compliance iam salesforce security
Last synced: 05 Apr 2025
https://github.com/t4d/PhishingKitHunter
Find phishing kits which use your brand/organization's files and image.
fraud-detection fraud-prevention phishing phishing-attacks phishing-sites security threat-analysis threat-hunting threat-intelligence
Last synced: 03 May 2025
https://github.com/fuzzitdev/fuzzit
CLI to integrate continuous fuzzing with Fuzzit (no longer available)
fuzz-testing fuzzing fuzzit security vulnerability
Last synced: 11 Jul 2025
https://github.com/rusty-ferris-club/shellclear
Secure shell history commands by finding sensitive data
bash rust security security-tools shell
Last synced: 08 Sep 2025
https://github.com/blessedrebus/oscp-pentesting-cheatsheet
A general purpose cheat sheet for pentesting and OSCP certification
oscp oscp-cheatsheet oscp-notes oscp-tools pentesting security
Last synced: 27 Jan 2026
https://github.com/kudelskisecurity/scannerl
The modular distributed fingerprinting engine
distributed erlang fingerprinting network scanner security
Last synced: 28 Jul 2025
https://github.com/mlevit/aws-auto-remediate
Open source application to instantly remediate common security issues through the use of AWS Config
aws aws-compliance aws-security cloud lambda remediation security security-tools serverless serverless-framework
Last synced: 16 Apr 2025
https://github.com/shssoichiro/zxcvbn-rs
Port of Dropbox's zxcvbn password strength library for Rust
password-strength rust security
Last synced: 14 May 2025
https://github.com/PranavPurwar/AppLock
Powerful Privacy tool to secure your sensitive apps.
android app-locker compose kotlin material-you material3-expressive privacy-tools security
Last synced: 10 Aug 2025
https://github.com/syncsynchalt/illustrated-quic
The Illustrated QUIC Connection: Every byte explained
curve25519 http3 quic security tls udp x25519
Last synced: 27 Jan 2026
https://github.com/claucece/useful-crypto-resources
A place for useful crypto-related resources plus some of my fav stuff
cryptography elliptic-curves otr security
Last synced: 04 Jan 2026
https://github.com/helmetjs/csp
The source for this module has moved to the Helmet repository.
csp headers javascript security
Last synced: 02 Apr 2025
https://github.com/globaldatanet/aws-firewall-factory
Easily improve the security of your web applications with aws firewall factory. Protect your valuable assets with seamless WAF deployment, updates, and staging, all efficiently managed centrally with Firewall Manager.
amazon-web-services aws cdk devsecops firewall governance hacktoberfest owasp owasp-top-10 security typescript waf wafv2
Last synced: 23 Mar 2025
https://github.com/eth-sri/securify
[DEPRECATED] Security Scanner for Ethereum Smart Contracts
chainsecurity datalog depricated ethereum evm obsolete security smart-contract solidity static-analysis
Last synced: 23 Jul 2025
https://github.com/LyleMi/Learn-Binary-Hacking
Binary Hacking Study Notes
binary-hacking security study-notes
Last synced: 12 Jul 2025
https://github.com/mhausenblas/rbac.dev
A collection of good practices and tools for Kubernetes RBAC
access-control authorization kubernetes permissions rbac security
Last synced: 07 May 2025
https://github.com/cloudmarker/cloudmarker
Cloud security monitoring tool and framework
azure cloud cloud-security cloud-security-audit elasticsearch email google-cloud-platform mongodb security security-audit security-tools slack splunk
Last synced: 29 Apr 2025
https://github.com/qpwo/actual-malware
Just npm install
do-not-install-this javascript npm proof-of-concept security typescript
Last synced: 24 Oct 2025
https://github.com/serain/bbrecon
Python library and CLI for the Bug Bounty Recon API
bug-bounty-recon bugbounty bugbountytips bugcrowd cybersecurity federacy hackenproof hackerone hacking osint recon security web-security yeswehack
Last synced: 11 Jul 2025
https://github.com/securefolderfs-community/SecureFolderFS
Powerful, secure, modern way to keep your files protected.
cryptography csharp encryption fluent security security-tools vault windows-10 windows-11 winui
Last synced: 12 Mar 2025
https://github.com/mushorg/go-dpi
Application layer protocol identification of traffic flows
dpi hacktoberfest protocol-identification security
Last synced: 09 Apr 2025
https://github.com/yearn/yearn-security
Security contacts and disclosure reports
Last synced: 26 Jan 2026
https://github.com/z3n70/Frida-Script-Runner
Frida Script Runner is a versatile web-based tool designed for Android and iOS penetration testing purposes.
android android-security bypass dynamic-analysis frida-gui ios ios-security mobile-security pentest security security-tools tools
Last synced: 24 Feb 2025
https://github.com/neuhalje/bouncy-gpg
Make using Bouncy Castle with OpenPGP fun again!
batch-job bouncy-castle bouncycastle encryption gnupg gpg java jvm key-derivative-function key-derivator openpgp osgi pgp rfc4880 security sign
Last synced: 14 Jan 2026
https://github.com/yakuza8/peniot
PENIOT: Penetration Testing Tool for IoT
amqp ble coap hacking hacking-tools iot iot-hacking mqtt penetration-testing penetration-testing-framework penetration-testing-tools python python2-7 security security-attacks
Last synced: 07 May 2025
https://github.com/mkalioby/django-passkeys
Django Authentication Backend For Passkeys
biometrics django passkeys python security security-key webauthn
Last synced: 16 May 2025
