An open API service indexing awesome lists of open source software.

Security

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

https://github.com/3nock/ote-templates

Community curated list of templates for the OSINT template engine.

attack-surfaces bugbounty fingerprinting osint recon security templates

Last synced: 09 Feb 2026

https://github.com/sinewaveai/prooflayer-rules

Open-source runtime security rules engine for MCP servers and AI agents. Detects prompt injection, command injection, jailbreaks, and data exfiltration.

ai-agents ai-security mcp mcp-protocol prompt-injection runtime-security security

Last synced: 16 Jun 2026

https://github.com/celenityy/grapheneos-settings

My recommendations for the ultimate GrapheneOS Configuration :)

android anti-tracking grapheneos hardened hardening privacy privacy-protection security tracking

Last synced: 08 Jun 2026

https://github.com/owtf/http-request-translator

HTTP Request Translator (hrt) translates raw HTTP requests to different scripts (bash, python, etc.)

owasp owtf pentesting python security

Last synced: 17 Mar 2026

https://github.com/vmagamedov/security-framework

Step-by-step personal cybersecurity guide

2fa fido2 security yubikey

Last synced: 18 Jan 2026

https://github.com/mondoohq/samples

Security Scanning Samples with cnspec, cnquery, and Mondoo Platform

hacking protect samples security security-as-code

Last synced: 19 Mar 2026

https://github.com/ntkme/security-trust-settings-tools

:lock: OS X Keychain Trust Settings Tools.

certificate macos security

Last synced: 28 Jul 2025

https://github.com/avast/authenticode-parser

Authenticode-parser is a simple C library for Authenticode format parsing using OpenSSL.

cryptography security

Last synced: 07 Apr 2025

https://github.com/rapidlua/sandals

A lightweight process isolation tool, requiring absolutely no privileges to run

cgroups-v2 chroot linux linux-namespaces process-isolation sandbox seccomp-bpf security

Last synced: 30 Mar 2025

https://github.com/anotherhadi/github-recon

Retrieves and aggregates public OSINT data about a GitHub user using Go and the GitHub API. Finds hidden emails in commit history, previous usernames, friends, other GitHub accounts, and more.

cybersecurity github osint recon security

Last synced: 30 Aug 2025

https://github.com/ait-testbed/attackmate

AttackMate is an attack orchestration tool that executes full attack-chains based on playbooks.

api attack automation automation-framework cybersecurity exploit metasploit orchestration pentest python redteam rootkit security sliver testbed training

Last synced: 22 Apr 2025

https://github.com/thomasmerz/pihole-wireguard-knowhow

My Setup for Pi-hole at home and in the cloud to be used with WireGuard for the whole family.

anti-ads anti-malware anti-spyware anti-surveillance anti-tracking dns privacy security vpn

Last synced: 01 Apr 2025

https://github.com/openagentidentityprotocol/agentidentityprotocol

Agent Identity Protocol - Zero-trust security layer for AI agents. Policy enforcement proxy for MCP with Human-in-the-Loop approval, DLP scanning, and audit logging.

agent-identity-protocol ai-agents ai-safety cursor-ide dlp golang human-in-the-loop llm mcp model-context-protocol policy-enforcement security zero-trust

Last synced: 29 May 2026

https://github.com/paulveillard/cybersecurity-ssrf

An ongoing & curated collection of awesome web vulnerability - Server-side request forgery software practices and remediation, libraries and frameworks, best guidelines and technical resources about SSRF

cybersecurity mitigation remediation security security-tools server-side server-side-request-forgery ssrf vulnerabilities vulnerability vulnerability-assessment vulnerability-detection vulnerability-management

Last synced: 08 Oct 2025

https://github.com/000pp/extensions-wordlist

🔍 Improve your files enumeration with specific extensions!

extension extensions files pentest security wordlist wordlists

Last synced: 12 Nov 2025

https://github.com/rmbolger/pwnedpasscheck

Check passwords and hashes against the haveibeenpwned.com Pwned Passwords API using PowerShell

haveibeenpwned hibp infosec powershell powershell-module security

Last synced: 04 Jul 2025

https://github.com/vatshayan/final-year-project-steganography

Steganography is the technique of hiding secret data within an ordinary, non-secret, file or message in order to avoid detection; the secret data is then extracted at its destination.

btech-project capstone-project cipher college-project cryptography cryptography-project final-project final-projects final-year-project finalyearproject mtech-project project project-report research-paper-project security semester-project steganography university-project university-projects

Last synced: 28 Oct 2025

https://github.com/brunocampos01/encrypt-file

:lock: :page_with_curl: CLI to encrypt or decrypt files with only one command.

aes aes-encryption aes-gcm decrypt decryption encrypt encryption encryption-decryption pbkdf2 pip python security security-tools sha256

Last synced: 01 Sep 2025

https://github.com/artginzburg/2fatotray

 Copy 2FA tokens in a click (macOS)

2fa app macos security totp

Last synced: 31 Aug 2025

https://github.com/k--chow/solana-security

A compilation of solana security resources.

auditing ethereum security smart solana

Last synced: 11 Mar 2025

https://github.com/CharlesAverill/DEFFS

Distributed, Encrypted, Fractured File System - A custom distributed file system written in C with FUSE

filesystem fuse linux security

Last synced: 06 Mar 2025

https://github.com/nccgroup/yocto-whitepaper-examples

Example code included in the "Improving Your Embedded Linux Security Posture with Yocto" whitepaper

linux openembedded security yocto

Last synced: 26 Apr 2025

https://github.com/webpwnized/gcp-audit

GCP Audit checks projects in Google Cloud for compliance with CIS Benchmarks

audit benchmark cloud cybersecurity google platform scripts security

Last synced: 03 May 2025

https://github.com/airblackbox/airblackbox

EU AI Act compliance scanner — 39 checks, 7 framework trust layers. pip install air-blackbox

accountability ai ai-agents ai-governance ai-safety aibom audit compliance eu-ai-act genai golang llm observability openai opentelemetry otel python security shadow-ai

Last synced: 05 May 2026

https://github.com/aquiladev/remix-mythx-plugin

The plugin allows executing security check via MythX in Remix IDE

ethereum mythx plugin remix security smart-contracts solidity

Last synced: 06 May 2025

https://github.com/hovancik/bsdsec

deadsimple BSD Security Advisories and Announcements

advisories announcements bsd dragonfly freebsd midnightbsd netbsd openbsd pfsense security

Last synced: 13 Apr 2025

https://github.com/theredguild/devcontainer

The Red Guild's devcontainer focused in web3 and security.

devcontainer security security-tools web3

Last synced: 22 Mar 2025

https://github.com/coinfabrik/scout-actions

Scout is an extensible open-source tool intended to assist smart contract developers and auditors detect common security issues and deviations from best practices. This GitHub Action allows you to incorporate Scout's analysis into every Pull Request.

audit auditing blockchain ink rust security smart-contract soroban static-analysis vulnerability-detection

Last synced: 30 Jun 2025

https://github.com/securityfirst/Umbrella_ios

Open source Android, iOS and Web app for learning about and managing digital and physical security. From how to send a secure message to dealing with a kidnap. Umbrella has best practice guides in over 40 topics in multiple languages. Used daily by people working in high risk countries - journalists, activists, diplomats, business travelers etc.

infosec ios open-source safety security

Last synced: 03 May 2025

https://github.com/stdevel/linux-host-security

Talk about Linux host security and various code examples

aide ansible devsec linux presentation security talk

Last synced: 23 Apr 2025

https://github.com/pelock/stringencrypt-python

StringEncrypt allows you to encrypt strings and files using a randomly generated algorithm, generating a unique decryption code (so-called polymorphic code) each time in the selected programming language.

code-generation code-generator cryptography encryption encryption-tool file file-encryption polymorphic-engine python python-3 python3 security string string-encryption

Last synced: 13 Jun 2025

https://github.com/pgrls/pgrls

Static analyzer for Postgres Row-Level Security — 47 lint rules covering tenant and per-user row-scoping bugs, performance traps, and hygiene; 17 mechanically auto-fixable; semantic policy-diff command for CI gating; pytest plugin for RLS isolation tests.

ci linter multi-tenant postgres postgresql rls row-level-security security static-analysis supabase

Last synced: 30 Jun 2026

https://github.com/m-mizutani/dns-gazer

DNS passive monitoring tool

cpp dns fluentd libpcap packet-sniffer security

Last synced: 27 Apr 2025

https://github.com/infertux/sysechk

System Security Checker is a bundle of small shell scripts to assess your computer security.

cve cve-scanning security security-checker shell

Last synced: 26 Oct 2025

https://github.com/doshareme/desktop

Personal Cloud Storage and File Management Solution with Privacy and Security

ai file-manager javascript open-source privacy rust security self-hosting

Last synced: 12 Apr 2025

https://github.com/samuel-lucas6/crypto-is-cool

A list of cryptography books, papers, blog posts, presentations, and Q&A answers.

crypto cryptography infosec programming security

Last synced: 07 Jan 2026

https://github.com/charlesaverill/deffs

Distributed, Encrypted, Fractured File System - A custom distributed file system written in C with FUSE

filesystem fuse linux security

Last synced: 24 Jul 2025

https://github.com/apal21/target-blank-vulnerabilities-features

Examples of some features and the vulnerabilities that can exploit any webpage if target="_blank" is used without rel="noopener"

css html javascript security vulnerability

Last synced: 14 Apr 2025

https://github.com/umutcamliyurt/droidcrypt

A file and text encryption tool for Android

aes-256-gcm android-encryption opsec privacy scrypt security security-tools

Last synced: 20 Aug 2025

https://github.com/mahdijafaridev/fastapi-middlewares

Essential middlewares that for FastAPI applications

cors fastapi logging middleware middlewares python security starlette

Last synced: 13 Jan 2026

https://github.com/krishealty/hidemeplease

HideMePlease is a new generation tool to hide phising web links into legitimate web links with original domains (eg: facebook.com, instagram.com) using ccTLD Disguise method.

cybersecurity hacking hacking-tool hacking-tools phishing-script phising phising-link security vulnerability

Last synced: 14 Jul 2025

https://github.com/atrexus/ws-watcher

A PoC application that detects unauthorized external access to select memory regions.

cpp memory-management security windows x64

Last synced: 14 Apr 2025

https://github.com/m-mizutani/lurker

Scalable security network sensor as low interaction honeypot

go honeypot monitoring packets security

Last synced: 01 Jul 2025

https://github.com/ambitus/racfu

RACFu (RACF universal) - A unified and standardized interface to RACF callable services.

automation json mainframe python racf racfu security simplification standardization zos

Last synced: 23 Jan 2026

https://github.com/merciagents/riphook

Deterministic security layer for Openclaw(Clawdbot), Cursor and Claude Code. Write secure code, prevent data exfil, and more

ai-agents clawdbot hooks moltbook moltbot openclaw openclaw-security security

Last synced: 15 Apr 2026

https://github.com/heutelbeck/sapl-demos

Demo, tutorial, and benchmarks for the SAPL policy engine

access-control authorization benchmark demo examples java policies sapl security spring spring-security tutorial

Last synced: 27 Feb 2026

https://github.com/cymmetria/micros_honeypot

MICROS Honeypot is a low interaction honeypot to detect CVE-2018-2636 in the Oracle Hospitality Simphony component of Oracle Hospitality Applications (MICROS). This is a directory traversal vulnerability.

deception honeypot micros oracle security security-tools security-vulnerability vulnerability

Last synced: 04 Apr 2026

https://github.com/alexylon/ferrocrypt

FerroCrypt is a pure Rust library, CLI, and desktop application for encrypting and decrypting files and directories using password-based or key-pair-based encryption.

cli cryptography decryption encryption file-encryption gui hybrid-encryption rust rust-lang rustlang security security-tools slint symmetric-encryption

Last synced: 24 May 2026

https://github.com/shelld3v/python-shell-cheat-sheet

Full python reverse shell and bind shell payloads

bind-shell cheat-sheet exploit hacking python python3 reverse-shell security shell

Last synced: 01 May 2026

https://github.com/yallie/jsonservices

Simple JSON-RPC service framework for C# and TypeScript

fleck json messages netmq rpc secure-remote-password security srp srp-6a typescript websockets zeromq

Last synced: 05 Oct 2025

https://github.com/bitoiu/repo-visibility-alert-action

Action that alerts org owners of a repository made public. See upcoming `repo-visibility-toggle-sms-action` to toggle it back via SMS reply.

devsecops github github-actions security security-tools twilio twilio-sms-api

Last synced: 30 Apr 2025

https://github.com/openziti/ziti-sdk-js

A JavaScript-based SDK for delivering secure browser-based web applications over a Ziti Network

appsec javascript netsec openziti sdk security zero-trust zero-trust-network zero-trust-network-access zero-trust-security zerotrust ztna

Last synced: 29 Jul 2025

https://github.com/hadiazt/sosis-sec

Source Of SoSiS Security

discord-bot discordjs-v13 security

Last synced: 23 Aug 2025

https://github.com/oijkn/adguardhome-doh-dot

Official AdGuarHome docker with both DoH (DNS over HTTPS) and DoT (DNS over TLS) clients. Don't browse the Internet insecurely by sending your DNS requests in clear text !

adblocker adguard-home adguardhome cloudflare dns dns-over-https dns-over-tls docker docker-compose network privacy raspberry-pi security stubby unbound

Last synced: 12 May 2025

https://github.com/charlesportwoodii/libsodium-uwp

libsodium for Universal Windows Platform (UWP) - A secure cryptographic library

cryptography hash hkdf libsodium nacl nuget security sodium uwp

Last synced: 24 Jun 2025

https://github.com/talsec/free-rasp-capacitor

Capacitor plugin for Android and iOS mobile devices. SDK providing app protection and threat monitoring. Shield your app with free RASP. Detect reverse engineering, root (Magisk), jailbreak, Frida, emulators, bots, tampering and integrity issues, obfuscation, VPN usage, malware, and monitor device identification and fingerprint.

app-security capacitor capacitor-app-security capacitor-app-shielding capacitor-application-security capacitor-community capacitor-frida capacitor-plugin capacitor-rasp capacitor-reverse-engineering capacitor-root-detection capacitor-security capacitor-tampering capacitor-tampering-detection freerasp security

Last synced: 20 Feb 2026

https://github.com/mav8557/virus

Polymorphic ELF Virus

elf malware security virus vx

Last synced: 20 Jul 2025

https://github.com/houssemdellai/azure-network-course

Course for learning Azure Hub and Spoke implementation

azure dns egress firewall hub-spoke ingress network networktraffic security

Last synced: 09 May 2025

https://github.com/preco21/bypass-censorship-korea

:page_with_curl: 한국에서 인터넷 검열을 피하는 방법

bypass javascript korea nodejs security

Last synced: 22 Apr 2025

https://github.com/mirego/absinthe_security

AbsintheSecurity provides utilities to improve the security posture of APIs built with Absinthe GraphQL.

absinthe absinthe-graphql elixir elixir-lang security

Last synced: 14 Aug 2025

https://github.com/slippyex/data-guardian

Tiny, zero-dependencies, package which tries to mask sensitive data in arbitrary collections (map, set), errors, objects and strings.

auditing covering logging masking security sensitive-data sensitivity telemetry tracing

Last synced: 12 May 2025

https://github.com/veeqtoh/secure-code

A Laravel package for generating and managing n-digit random secure codes for your app.

access-control door-controller laravel php security

Last synced: 07 Sep 2025

https://github.com/brickmakersgmbh/aspsecurityheaders

A small package for ASP.Net (Core) to automatically configure secure HTTP-Headers

asp-net asp-net-core brickmakers csharp csp dotnet dotnet-core hsts http-headers https security security-headers

Last synced: 24 Apr 2025

https://github.com/koukyosyumei/rhoevm

symbolic EVM execution engine written in Rust

evm formal-methods rust security smart-contracts symbolic-execution

Last synced: 13 Oct 2025

https://github.com/banhao/autospamemailscan

AutoSpamEmailScan.ps1 is used to monitor a specific mailbox that enterprise users can forward suspicious spam emails to a specific mailbox.

automation esa ews-api google-safe-browsing ironport mdatp minemeld phishing phishing-detection quarantine securex security security-automation soar spam spam-detection spam-emails virustotal workflow

Last synced: 26 Apr 2025

https://github.com/ukhomeoffice/policy-admission

Kubernetes admission controller

admission-controllers kubernetes security

Last synced: 08 Apr 2025

https://github.com/phylum-dev/vuln-reach

A library for building tools to determine if vulnerabilities are reachable in a code base.

cve security vulnerabilities

Last synced: 13 Oct 2025

https://github.com/reverseapple/dgraph

Visualizing Mach-O Loads Recursively using Graphviz

apple executable graph macho reverse-engineering security

Last synced: 09 Apr 2025

https://github.com/daltonmenezes/discord-malicious-domains

🤖 A list of malicious domains on Discord using the Discord Guardian Action.

discord domains json malicious-domains security

Last synced: 29 Oct 2025

https://github.com/jojonas/db_nmap

Standalone Go implementation of Metasploit's "db_nmap" and "db_import" commands.

metasploit metasploit-framework networks nmap security

Last synced: 14 Jan 2026

https://github.com/UKHomeOffice/policy-admission

Kubernetes admission controller

admission-controllers kubernetes security

Last synced: 12 Jul 2025

https://github.com/pfirmstone/jgdms

Infrastructure for providing secured micro services, that are dynamically discoverable and searchable over ipv6 networks

distributed-computing iot java osgi-services security

Last synced: 10 Apr 2025

https://github.com/jakbin/flask-tor

Host your flask website on tor using flask-tor.

flask onion onion-service onionshare python security tor tor-onion-service

Last synced: 12 Apr 2025