Security
Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.
- GitHub: https://github.com/topics/security
- Wikipedia: https://en.wikipedia.org/wiki/Computer_security
- Aliases: security-tools, security-vulnerability, security-audit,
- Last updated: 2026-02-10 00:20:10 UTC
- JSON Representation
https://github.com/YingtongDou/Nash-Detect
Code for KDD 2020 paper Robust Spammer Detection by Nash Reinforcement Learning
fraud-detection game-theory machine-learning reinforcement-learning security spam-detection
Last synced: 11 May 2025
https://github.com/Escape-Technologies/graphinder
🕸️ Blazing fast GraphQL endpoints finder using subdomain enumeration, scripts analysis and bruteforce. 🕸️
bugbounty finder graphql osint reconnaissance security spider subdomain-enumeration subdomain-scanner
Last synced: 31 Mar 2025
https://github.com/aydinnyunus/passdetective
PassDetective is a command-line tool that scans shell command history to detect mistakenly written passwords, API keys, and secrets. Using regular expressions, it helps prevent accidental exposure of sensitive information in your command history.
bash bugbounty bugbounty-tool bugbountytips golang hacking kali kali-linux kali-linux-hacking linux red-team security security-tools shell shell-script zsh
Last synced: 04 Aug 2025
https://github.com/withsecurelabs/modulestomping
https://blog.f-secure.com/hiding-malicious-code-with-module-stomping/
countercept module-stomping security
Last synced: 25 Jun 2025
https://github.com/HamaWhiteGG/flink-sql-security
FlinkSQL数据脱敏和行级权限解决方案及源码,支持面向用户级别的数据脱敏和行级数据访问控制,即特定用户只能访问到脱敏后的数据或授权过的行。此方案是实时领域Flink的解决方案,类似于离线数仓Hive Ranger中的Row-level Filter和Column Masking方案。
Last synced: 04 Apr 2025
https://github.com/ammario/isokey
Self-contained API keys via cryptographic signatures
Last synced: 17 Mar 2025
https://github.com/albertito/dnss
DNS over HTTPS [mirror]
dns dns-proxy doh doh-server go-application https-proxy security
Last synced: 10 Jul 2025
https://github.com/santandersecurityresearch/corsair_scan
Corsair_scan is a security tool to test Cross-Origin Resource Sharing (CORS).
cors-configurations domain-injection misconfigurations python sdlc security
Last synced: 08 May 2025
https://github.com/Hamid-K/bookmarks
A personal list of various resources for those who are interested in learning about infosec and hacking and keeping themselves up to date. This is by no means a complete nor fresh list, but I occasionally add entries to lists.
Last synced: 06 Aug 2025
https://github.com/kelvinben/autoredtools
AutoRedTools是一款轻量级一站式自动下载/自动更新常用开源软件的工具,主要帮助安全从业者/安全开发人员快速进行环境搭建以及常用软件的更新,节约软件的更新或者安 装的时间,从而提升生产效率或工作效率。
developer-tools devtools efficiency efficiency-tool pentest-tool pentesting redteam-tools security security-tools toolset toolsk
Last synced: 21 Apr 2025
https://github.com/Nitrokey/nitrokey-pro-firmware
Firmware for the Nitrokey Pro device
firmware nitrokey open-source security usb-stick
Last synced: 25 Mar 2025
https://github.com/Santandersecurityresearch/corsair_scan
Corsair_scan is a security tool to test Cross-Origin Resource Sharing (CORS).
cors-configurations domain-injection misconfigurations python sdlc security
Last synced: 10 May 2025
https://github.com/grrrdog/tls-redirection
TLS Redirection
cheatsheet https mitm-attacks security ssl tls
Last synced: 03 Feb 2026
https://github.com/jcsec-security/solidity-security-course-resources
Course material about common vulnerabilities, security and audits of Solidity smart contracts that I use during my lectures
audit beginner bug bugbounty contract ethereum evm security smart smart-contracts smartcontract solidity vulnerabilities
Last synced: 07 Apr 2025
https://github.com/p1sec/sigfw
Open Source Signaling Firewall for SS7, Diameter filtering, antispoof and antisniff
diameter encryption firewall security signalling sigtran ss7 telecom
Last synced: 18 Jan 2026
https://github.com/ivre/masscanned
Let's be scanned. A low-interaction honeypot focused on network scanners and bots. It integrates very well with IVRE to build a self-hosted alternative to GreyNoise.
hacktoberfest honeypot ipv4 ipv6 ivre low-interaction low-interaction-honeypot network network-monitoring network-security networking security tcp udp
Last synced: 05 Apr 2025
https://github.com/quarantyne/quarantyne
Modern Web Firewall: stop account takeovers, weak passwords, cloud IPs, DoS attacks, disposable emails
account-takeover automation bots fraud security websecurity
Last synced: 27 Sep 2025
https://github.com/ansible-lockdown/RHEL9-CIS
Ansible role for Red Hat 9 CIS Baseline
ansible ansible-playbook ansible-role benchmark benchmark-framework cis cis-benchmark compliance-as-code compliance-automation redhat9 rhel rhel9 security security-automation security-tools
Last synced: 08 Apr 2025
https://github.com/ghsec/ghsec-jaeles-signatures
Signatures for jaeles scanner by @j3ssie
Last synced: 16 Jan 2026
https://github.com/ansible-lockdown/rhel9-cis
Ansible role for Red Hat 9 CIS Baseline
ansible ansible-playbook ansible-role benchmark benchmark-framework cis cis-benchmark compliance-as-code compliance-automation redhat9 rhel rhel9 security security-automation security-tools
Last synced: 12 Apr 2025
https://github.com/nikitastupin/pwnhub
How GitHub Actions workflows can be hacked
actions github-actions security
Last synced: 12 May 2025
https://github.com/Lissy93/email-comparison
📬 A quick comparison of private and / or secure email providers
email hacktoberfest parcel privacy security
Last synced: 14 Mar 2025
https://github.com/panagiotisdrakatos/javaransomware
Simple Ransomware Tool in Pure Java
cybersecurity educational-software encryption-decryption ethical-hacking java malware ransomeware ransomware security virus
Last synced: 12 Oct 2025
https://github.com/lissy93/bug-bounties
⚔️ A compiled list of companies who have active programs for responsible disclosure
Last synced: 05 Apr 2025
https://github.com/iqlusioninc/veriform
Security-oriented protobuf-like serialization format with "Merkleized" content hashing support
authorization credentials cryptography hash-algorithm merkle protobuf security serialization
Last synced: 13 May 2025
https://github.com/archlinuxstudio/modernsecurityprotectionguide
Modern Security Protection Guide
censorship-circumvention chinese digital-privacy e-book privacy security
Last synced: 15 Sep 2025
https://github.com/haveibeensquatted/twistrs
A domain name permutation and enumeration library powered by Rust.
dns-lookup permutation rust security security-tools typosquatting
Last synced: 06 Apr 2025
https://github.com/controlplaneio/truffleproc
truffleproc — hunt secrets in process memory (TruffleHog & gdb mashup)
gdb secrets security trufflehog
Last synced: 04 Sep 2025
https://github.com/0xmachos/macos-security-research
macOS Security Research
Last synced: 14 Jul 2025
https://github.com/chhantyal/5minutes
First 5 minutes on new servers. Secure your servers with single command - Ansible playbook
ansible devops security ubuntu
Last synced: 16 Mar 2025
https://github.com/azu/ni.zsh
Alternative `ni` written in zsh: npm/yarn/pnpm/bun with the same command
bun node npm pnpm security shell-script yarn
Last synced: 05 Apr 2025
https://github.com/jreisinger/gokatas
Internalize the Go movements 🥋
devops go golang katas practice programming reference security sysadmin
Last synced: 31 Jan 2026
https://github.com/mheap/pin-github-action
Pin your GitHub actions to a specific hash
actions cli github github-actions security
Last synced: 05 Oct 2025
https://github.com/lightswitch05/php-version-audit
Audit your PHP version for known CVEs and patches
audit composer-package cves docker-image hacktoberfest php php-library php-security security security-audit security-scanner
Last synced: 16 May 2025
https://github.com/vatshayan/blockchain-final-year-project
Final Year College Project made on Concept of blockchain with Project Report, Project Code, Research Paper, PPT, Synopsis and Video Explanation
bitcoin blockchain blockchain-project blockchain-projects blockchain-technology college-project cse-project cse-projects ethereum final-year-project final-year-projects finalyearproject finalyearprojects jupyter-notebook projects python-projects security semester-project
Last synced: 21 Mar 2025
https://github.com/trailofbits/ebpfpub
ebpfpub is a generic function tracing library for Linux that supports tracepoints, kprobes and uprobes.
bpf ebpf llvm monitoring security tracepoints tracing
Last synced: 15 Apr 2025
https://github.com/wkovacs64/hibp
An unofficial TypeScript SDK for the 'Have I been pwned?' service.
breach breach-events breaches data-breach deno dump hack haveibeenpwned hibp javascript passwords pastes promise pwned security typescript
Last synced: 25 Aug 2025
https://github.com/wKovacs64/hibp
An unofficial TypeScript SDK for the 'Have I been pwned?' service.
breach breach-events breaches data-breach deno dump hack haveibeenpwned hibp javascript passwords pastes promise pwned security typescript
Last synced: 23 Mar 2025
https://github.com/stepchowfun/hashpass
A simple password manager with a twist.
password password-manager security security-tools
Last synced: 05 Apr 2025
https://github.com/palant/pfp
A simple and secure browser extension to be used with KeePass databases.
browser-extension chrome chrome-extension firefox firefox-addon javascript opera password-generator password-manager pfp scrypt security
Last synced: 11 Apr 2025
https://github.com/guillaC/wsManager
Webshell Manager
caidao infosec pentest redteam remote remote-admin-tool remote-shell security security-tools webshell wsmanager
Last synced: 13 Mar 2025
https://github.com/macmod/ldapx
Flexible LDAP proxy that can be used to inspect & transform all LDAP packets generated by other tools on the fly.
active-directory go golang infosec ldap proxy security
Last synced: 23 Jul 2025
https://github.com/guillac/wsmanager
Webshell Manager
caidao infosec pentest redteam remote remote-admin-tool remote-shell security security-tools webshell wsmanager
Last synced: 11 May 2025
https://archlinuxstudio.github.io/ModernSecurityProtectionGuide/
Modern Security Protection Guide
censorship-circumvention chinese digital-privacy e-book privacy security
Last synced: 03 May 2025
https://github.com/CityBaseInc/SIAC
SIAC is an enterprise SIEM built on open-source technology.
aws compliance elk fim incident-response intrusion-detection osquery pci-dss secdevops security siem wazuh
Last synced: 30 Mar 2025
https://github.com/SpriteOvO/sigmatch
✨ Modern C++ 20 signature match / search library
assembler binary binary-analysis compile-time cpp cpp-library cpp20 cpp20-lib cpp20-library header-only library match pattern reverse-engineering search security signature
Last synced: 14 May 2025
https://github.com/werbot/werbot
🔑 Team Access Sharing - a self-hosted solution with single sign-on for secure, easy shared access to servers, databases, and applications.
1password audit bastion cluster database-access firewall firewalls go golang hacktoberfest kubernetes kubernetes-access pam postgresql rdp security self-hosted ssh werbot zero-trust
Last synced: 06 Aug 2025
https://github.com/getpagespeed/ngx_security_headers
NGINX Module for sending security headers
hsts hstspreload https nginx nginx-module security securityheader x-frame-options x-powered-by
Last synced: 03 Feb 2026
https://github.com/hahwul/regexpassive
🔭 Collection of regexp pattern for security passive scanning
bugbounty collection hacking passive-scan passive-vulnerability-scanner patterns regex regexp security
Last synced: 09 Feb 2026
https://github.com/4ra1n/poc-runner
Small & Fast Vulnerability Scanner Engine based on XRAY YAML Rule | 基于 XRAY YAML 规则的超轻量快速漏洞扫描引擎 | 可执行文件体积仅 2 MB
poc security vulnerability vulnerability-detection vulnerability-scanner web-security web-vulnerability-scanner
Last synced: 21 Jul 2025
https://github.com/ivan-sincek/php-ransomware
PHP ransomware that encrypts your files, as well as file and directory names.
defensive-security ethical-hacking malware offensive-security openssl php ransomware reverse-engineering security
Last synced: 30 Mar 2025
https://github.com/bullfrogsec/bullfrog
Simple plug-and-play Github Action to block unauthorized outbound traffic (egress) in your Github workflows
actions egress-filtering github github-actions security
Last synced: 12 Jan 2026
https://github.com/webreflection/proxy-pants
Secured and reliable Proxy based utilities for more or less common tasks.
proxy security utilities utility
Last synced: 12 Sep 2025
https://github.com/Obscurix/Obscurix
Obscurix is a live operating system based on Arch Linux that is heavily configured for privacy, security and anonymity. It safely forces all traffic through the Tor network, has support for other networks such as I2P and is hardened a lot for security. All data is lost at shutdown as it is run from RAM.
anonymity freenet i2p linux privacy security tor zeronet
Last synced: 12 Mar 2025
https://github.com/grapheneos/attestationserver
attestation.app remote attestation server. Server code for use with the Auditor app: https://github.com/GrapheneOS/Auditor. It provides two services: submission of attestation data samples and a remote attestation implementation with email alerts to go along with the local implementation based on QR code scanning in the app.
android attestation authenticity cryptography grapheneos hsm integrity monitoring remote-attestation secure-boot secureboot security strongbox verifiedboot
Last synced: 04 Apr 2025
https://github.com/spriteovo/sigmatch
✨ Modern C++ 20 signature match / search library
assembler binary binary-analysis compile-time cpp cpp-library cpp20 cpp20-lib cpp20-library header-only library match pattern reverse-engineering search security signature
Last synced: 10 Apr 2025
https://github.com/aruss/IdentityBase
IdentityBase is a Universal Identity Platform for web, mobile and IoT built on top of IdentityServer.
aspnet-core dotnet identity identityserver identityserver4 oauth2 openid-connect security
Last synced: 04 May 2025
https://github.com/aruss/identitybase
IdentityBase is a Universal Identity Platform for web, mobile and IoT built on top of IdentityServer.
aspnet-core dotnet identity identityserver identityserver4 oauth2 openid-connect security
Last synced: 07 Oct 2025
https://github.com/ilmari-h/envie
The convenient and secure .env file replacement. Open source and self-hostable secrets manager.
environment-variables secret-management security
Last synced: 16 Jan 2026
https://github.com/snowflake-labs/sansshell
A non-interactive daemon for host management
administration automation go reliability security unshelled
Last synced: 02 Oct 2025
https://github.com/simp/simp-core
The base SIMP build repository
automation compliance puppet security simp
Last synced: 05 Apr 2025
https://github.com/bkbilly/alarmpi
🚨 Home Security Intrusion Detection for Raspberry PI or any other linux OS
alarm android-application diy hikvision home-assistant ifttt-maker mqtt python raspberry-pi restful-api security voip zigbee
Last synced: 14 Jun 2025
https://github.com/smart-mcp-proxy/mcpproxy-go
Supercharge AI Agents, Safely
ai ai-agents mcp mcp-server security
Last synced: 07 Feb 2026
https://github.com/jcsec-security/all-things-reentrancy
Workshop about the different types of reentrancy attacks
audit ethereum learning security smart-contracts solidity workshop
Last synced: 07 Apr 2025
https://github.com/ackee-blockchain/solana-auditors-bootcamp
Learn to audit Solana programs and help secure the ecosystem. Take your security practices to the next level and get certified by Ackee Blockchain Security. It's free, too.
anchor bootcamp capture-the-flag rust security security-audit security-tools solana trident
Last synced: 17 Apr 2025
https://github.com/tylerwince/flake8-bandit
Automated security testing using bandit and flake8.
bandit flake8 security security-automation security-tools static-code-analysis vulnerability-detection
Last synced: 14 Jan 2026
https://github.com/electroniccats/flipper-addons
Flipper addons by Electronic Cats
addons canbus flipper flipper-addon flipper-shield flipper-zero lora magspoof marauder modbus rs485 rs485-comunication security security-tools subghz
Last synced: 21 Jan 2026
https://github.com/shelld3v/aquatone
A Tool for Domain Flyovers
appsec bug-bounty bugbounty golang hacking hacking-tool infosec osint penetration-testing pentest pentesting reconnaissance security security-tools
Last synced: 16 Aug 2025
https://github.com/ignis-sec/cve-2023-38831-rarce
An easy to install and easy to run tool for generating exploit payloads for CVE-2023-38831, WinRAR RCE before versions 6.23
archive exploit exploit-development rce security winrar
Last synced: 06 May 2025
https://github.com/alash3al/httpsify
a transparent HTTPS termination proxy using letsencrypt with auto certification renewal
auto-renewal docker dockerfile golang letsencrypt reverse-proxy security ssl transparent-https-proxy webserver
Last synced: 29 Jun 2025
https://github.com/sdrapkin/securitydriven.core
Modern, fast, safe, cryptographically strong .NET replacement for Random and RandomNumberGenerator.
cryptography cryptorandom encryption net50 net60 random randomnumbergenerator security
Last synced: 13 Apr 2025
https://github.com/sandbox-quantum/sandwich
Sandwich is a multi-platform, multi-language, open-source library that provides a simple unified API for developers to use (multiple) cryptographic libraries in their applications.
api boringssl crypto crypto-agility cryptographic-agility cryptography go openssl python rust security tls
Last synced: 31 Mar 2025
https://github.com/ignis-sec/markopy
Markov Model libraries, optimized for cracking-focused password generations.
cpp markov-chain markov-model password security security-tools
Last synced: 10 Oct 2025
https://github.com/tooonychen/authinbox
Auth Inbox 📬 is a self-hosted, open-source platform for receiving multiple email verification codes and real-time notifications, built using Cloudflare's free services. | Auth Inbox 📬 是一个自建的开源多邮箱验证码的接码平台,基于 Cloudflare 的免费服务。
2fa cloudflare cloudflare-email cloudflare-email-routing cloudflare-workers email mail multiple-emails open-source security verfication
Last synced: 05 Apr 2025
https://github.com/crocs-muni/JCAlgTest
Automated testing tool for algorithms from JavaCard API supported by particular smart card. Performance testing of almost all available methods. The results for more than 100+ cards.
cryptography javacard security smartcard
Last synced: 16 Mar 2025
https://github.com/microchiptech/gcp-iot-core-examples
Google Cloud Platform IOT Core Examples
atecc508 atecc608 cryptography elliptic-curves gcp-iot google-iot iot microchip mqtt security tls winc1500
Last synced: 29 Apr 2025
https://github.com/ballerina-platform/module-ballerina-crypto
Ballerina crypto Module
ballerina crypto cryptography encryption hacktoberfest integration security wso2
Last synced: 08 Feb 2026
https://github.com/nextcloud/twofactor_u2f
🔑 U2F second factor provider for Nextcloud
nextcloud security two-factor u2f
Last synced: 04 Oct 2025
https://github.com/midoxnet/mapperplus
MapperPlus facilitates the extraction of source code from a collection of targets that have publicly exposed .js.map files.
automation javascript map pentest recon security security-tools source sourcemapper
Last synced: 27 Sep 2025
https://github.com/LibrePass/LibrePass-Android
LibrePass Android Application
android android-app android-application compose cryptography encryption hashing jetpack jetpack-android jetpack-compose kotlin material material-ui native open-source password password-generator password-manager security
Last synced: 21 Apr 2025
https://github.com/wiringbits/safer.chat
safer.chat is a web application that allows you to have groupal chats using end-to-end encryption, no addons, or applications needs to be installed
angular chat cryptocat end-to-end-encryption hacktoberfest play-framework public-key-cryptography scala security webcryptoapi
Last synced: 09 Oct 2025
https://github.com/sweeticelolly/huorong_vulnerabilities
Huorong Internet Security vulnerabilities 火绒安全软件漏洞
antivirus bypass-antivirus bypass-av kill-antivirus security sysdiag vulnerability
Last synced: 10 Apr 2025
https://github.com/ossf/alpha-omega
Our mission is to catalyze sustainable improvements to critical open source software projects and ecosystems.
open-source-security opensource security
Last synced: 28 Jan 2026
https://github.com/Teebytes/TnT-Fuzzer
OpenAPI 2.0 (Swagger) fuzzer written in python. Basically TnT for your API.
fuzzer fuzzing json-api openapi pentesting python security swagger
Last synced: 10 May 2025
https://github.com/spicesouls/reosploit
A Tool that Finds, Enumerates, and Exploits Reolink Cameras.
camera cybersecurity enumerates enumeration exploit exploitation exploits forthebadge hack hacking hacking-tool ip-camera ip-cameras photo python reolink reolink-api reolink-client security tool
Last synced: 28 Mar 2025
https://github.com/turbot/steampipe-mod-aws-perimeter
Is your AWS perimeter secure? Use Powerpipe and Steampipe to check your AWS accounts for public resources, resources shared with untrusted accounts, insecure network configurations and more.
aws hacktoberfest network perimeter powerpipe powerpipe-mod security sql steampipe steampipe-mod
Last synced: 05 Apr 2025
https://github.com/PanagiotisDrakatos/JavaRansomware
Simple Ransomware Tool in Pure Java
educational-software encryption-decryption malware ransomware security virus
Last synced: 11 Jul 2025
https://github.com/grantseltzer/karn
Simplifying Seccomp enforcement in containerized or non-containerized apps
container-security containers karn seccomp seccomp-filter security security-hardening security-tools
Last synced: 12 May 2025
https://github.com/nextcloud/twofactor_gateway
🔑 Second factor provider using an external messaging gateway (SMS, Telegram, Signal)
2fa php security sms two-factor
Last synced: 05 Apr 2025
https://github.com/cidram/cidram
CIDRAM: Classless Inter-Domain Routing Access Manager.
anti-spam asn blacklist blocker blocklist cidr cidram cloud firewall hacktoberfest ip-address open-source opensource php protection routing security signatures waf
Last synced: 12 Apr 2025
https://github.com/ZenGuard-AI/fast-llm-security-guardrails
The fastest && easiest LLM security guardrails for AI Agents and applications.
adversarial-machine-learning llm-guard llm-guardrails llm-privacy llm-security prompt-security security
Last synced: 11 Sep 2025
https://github.com/triat/terraform-security-scan
Run a security scan on your terraform with the very nice https://github.com/aquasecurity/tfsec
actions aws azure ci compliance google-cloud-platform hacktoberfest scanner security static-analysis terraform tfsec
Last synced: 16 Jan 2026
https://github.com/psecio/jwt
A JWT (JSON Web Token) Encoder & Decoder
jwt php security security-tools
Last synced: 07 Apr 2025
https://github.com/anseki/gnirts
Obfuscate string literals in JavaScript code.
cryptography gnirts hexadecimal-escape javascript literal mangle obfuscate obfuscated obfuscation obfuscator password secret security string string-literals
Last synced: 04 Apr 2025
https://github.com/bgenev/impulse-xdr
Fully automated host & network intrusion detection platform. Detects malware from behavioural patterns rather than signatures and enables deeper visibility than legacy tools.
cloud cybersecurity devops monitoring osquery security security-tools server-security siem suricata visibility vpc vpc-endpoints vps xdr
Last synced: 22 Jul 2025
https://github.com/suzuki-shunsuke/ghalint
GitHub Actions linter
cli github-actions linter oss security
Last synced: 13 Apr 2025
