An open API service indexing awesome lists of open source software.

Security

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

https://github.com/nour-karoui/encrypt-storage

NPM package that encrypts Local/Session Storage (available for TS & JS)

angular client-side encryption javascript localstorage reactjs security sessionstorage storage typescript

Last synced: 27 Oct 2025

https://github.com/kardespro/nosqlmap

NoSQLMap CLI Tool is a command-line interface (CLI) tool designed to test for NoSQL injection vulnerabilities using Node.js, TypeScript, and Axios. It supports both HTTP and HTTPS requests and works with all HTTP methods.

exploit mongodb mongodb-database mongoose nosqlmap pentesting scan-tool security security-tools sqlmap

Last synced: 24 Oct 2025

https://github.com/mofneko/jbinspector

iOS JailBreak Detector Unity Compatible.

ios-library security unity3d-plugin

Last synced: 24 Oct 2025

https://github.com/dionyziz/hackme

The website describing my bounty hunt game.

bounty security

Last synced: 24 Jan 2026

https://github.com/mrcloudsec/mitre-aws-checks

Script for analyzing the compliance of your AWS account based on the adversary techniques on the MITRE ATT&CK Iaas Matrix.

aws mitre security security-scanner security-tools

Last synced: 24 Oct 2025

https://github.com/henriquetourinho/brhttp

Um servidor estático em Go, superpoderoso. Oferece Live Reload, mas também automação de build com webhooks, proxy reverso e uma API de controle completa.

automation binario debian dev-server frontend go golang linux live-reload minimalist no-dependencies open-source performance reverse-proxy security spa static-server zero-config

Last synced: 04 May 2026

https://github.com/infothrill/ansible-role-lynis

An Ansible role to install Lynis, an open source security auditing tool.

ansible ansible-role audit lynis security

Last synced: 11 Feb 2026

https://github.com/italomaia/uri-faker

See how fonts can be used to create fake URIs

fonts html jquery pentest phishing security semantic-ui uri usability

Last synced: 28 Oct 2025

https://github.com/wan0net/awesome-abac

List of Applications that enable or natively support Attribute Based Access Control

abac access-control attribute-based-access-control authorization awesome-list cybersecurity security zero-trust

Last synced: 03 May 2026

https://github.com/riquedev/django-login-history2

It's easy to use, plug-in django app that once included, stores logins history (with device data, like IP, user-agent, location etc.) of all users

authenticate django ip location login security session

Last synced: 17 Mar 2026

https://github.com/fossable/autovet

Automated security testing for open source libraries and applications.

security security-tools supply-chain

Last synced: 25 Apr 2025

https://github.com/go-to-k/ecr-scan-verifier

The AWS CDK Construct that blocks deployments to ECS, Lambda, and other services when ECR Image Scanning detects vulnerabilities, and optionally verifies container image signatures.

aws aws-cdk aws-cdk-construct aws-ecr awscdk cdk container security

Last synced: 22 May 2026

https://github.com/simpleclub/firebase-rules-helper

A collection of packages aimed to make working with Firebase rules easier.

code-generation coverage coverage-report firebase firebase-firestore firebase-storage firestore security

Last synced: 22 Feb 2026

https://github.com/ivision-research/inzure

Azure security configuration automation tool and library

automation azure security vulnerability-detection

Last synced: 23 Jul 2025

https://github.com/robertdebock/ansible-role-auto_update

Install and configure automatic package updates on your system.

ansible autoupdate molecule playbook security system tox

Last synced: 24 Apr 2025

https://github.com/lovasoa/pyformat-challenge

Python format string vulnerability exploitation challenge

challenge format format-string-attack python security

Last synced: 24 Mar 2025

https://github.com/didinj/grails4-spring-security-login-example

Grails 4 Tutorial: Spring Security Core Login Example

authentication core example grails grails4 login plugin security spring tutorial

Last synced: 24 Apr 2025

https://github.com/samerfarida/secure-bash-macos-ebook

A hands-on Bash scripting guide for macOS administrators and security engineers. Learn to automate, secure, and master macOS with real-world examples.

bash macos security

Last synced: 13 Jan 2026

https://github.com/timkuijsten/node-mongo-escape

Escape variables to prevent NoSQL injection in MongoDB

mongodb security

Last synced: 01 Aug 2025

https://github.com/traycho/micronaut-security-attributes

Micronaut security attributes - secure your endpoints by validating authentication attribute using micronaut-security and a bit more. Library is not limited to any specific authentication method and is expected to work with supported authentication methods from micronaut.

attributes aws claims jwt jwt-authentication jwt-token lambda ldap-authentication micronaut security serverless tokens validation

Last synced: 11 Jan 2026

https://github.com/robertdebock/ansible-role-ca

Install and configure a certificate authority on your system.

ansible authority ca certificate molecule openssl playbook security tox

Last synced: 09 Mar 2026

https://github.com/saptaks/saikoro

Diceware GUI: An easy way for non-tech people to get diceware passphrases

diceware gui-application passphrase security

Last synced: 24 Apr 2025

https://github.com/drawing-captcha/drawing-captcha-app

Drawing Captcha is an innovative software that enhances security and promotes brand awareness by requiring users to complete interactive drawing tasks to pass the verification process. (Website comes soon)

captcha drawing js nodejs open-source security solving

Last synced: 25 Jul 2025

https://github.com/0x4d31/finch

Fingerprint‑aware TLS reverse proxy: allow, deny, route or deceive traffic via JA3, JA4 (+QUIC), JA4H, HTTP/2 fingerprints, and other request metadata.

deception fingerprint fingerprinting go honeypot ja3 ja4 reverse-proxy security security-tools

Last synced: 03 Aug 2025

https://github.com/BiasedRiot/Glanadh

Service to automatically remove Metadata from your files.

cloud-computing exif exif-data mat2 metadata monitoring privacy privacy-tools security security-tools shell systemd

Last synced: 12 Jul 2025

https://github.com/grapheneos-archive/device_google_coral-kernel

Pixel 4 and 4 XL kernel prebuilts.

android grapheneos privacy security

Last synced: 13 Aug 2025

https://github.com/mrcl0wnlab/new-ip-tor

This module that makes it easy to reboot IP Tor network

hacking python security security-tools tor

Last synced: 18 Jul 2025

https://github.com/tankerhq/sdk-ios

Tanker client-side encryption SDK for iOS

cryptography encryption end-to-end ios objective-c privacy sdk security swift tanker

Last synced: 09 Apr 2025

https://github.com/sondosaabed/sql-injection-attack-detection

Introduction to generative adversial network

ai conditional-gan security

Last synced: 09 Apr 2025

https://github.com/operatorequals/gitsign-action

Verify Sigstore Gitsign commit signatures

cicd pgp security signatures sigstore

Last synced: 16 Jan 2026

https://github.com/infisical/k8-kms-plugin

Infisical KMS plugin for Kubernetes

encryption kubernetes security

Last synced: 04 Apr 2025

https://github.com/toshke/aws-waf-demo-workshop

Workshop for demonstrating AWS WAF usage

api apigateway aws aws-waf cloud loadtesting security serverless workshop

Last synced: 07 Apr 2025

https://github.com/imranismail/cloudcreds

Secure access to your organization's AWS accounts for both programmatic and console use-case via federated identity and short-lived credentials

aws federated-identity google oauth oidc security

Last synced: 22 Apr 2025

https://github.com/nihlus/zalloc

zalloc is a safety- and security-oriented wrapper around malloc.

allocator c calloc hacktoberfest malloc safety security

Last synced: 13 May 2025

https://github.com/ribafs/laravel-acl

ACL to laravel 9 applications

access acl laravel package security

Last synced: 03 Sep 2025

https://github.com/sircryptic/poc

Proof-of-Concept Exploits Based On Known CVE's

cve cybersecurity educational proof-of-concept security

Last synced: 14 Apr 2025

https://github.com/hakky54/gatekeeper

🔐 A lightweight java library which guards your publicly accessible internal implementations.

java security

Last synced: 13 May 2025

https://github.com/capnspacehook/basp

A better way to manage software restriction policies, on Windows XP through 10

c-plus-plus security whitelisting windows

Last synced: 12 May 2025

https://github.com/knutwurst/psnino

a pure, simple Playstation 1 PS1 Modchip for Arduino, ATMega and ATtiny

copy-protection modchip playstation security

Last synced: 13 Apr 2025

https://github.com/scipag/phputilities

PHPUtilities provides various utility scripts.

commands exploitation penetration-testing php security shell

Last synced: 05 Oct 2025

https://github.com/marcelo-davanco/quality-scanner

Quality Scanner — SonarQube + NestJS/TypeScript analysis toolkit with Docker, 8-step scanner, quality gate, and Next.js dashboard

code-analysis code-quality docker eslint nestjs security sonarqube spectral trivy typescript

Last synced: 20 Feb 2026

https://github.com/leklund/bauditor

run bundler-audit on a multiple repositories at once

bundler-audit ruby rubygems security

Last synced: 07 Jul 2025

https://github.com/dajiaji/flask-paseto-extended

PASETO (Platform-Agnostic Security Token) for Flask applications.

flask flask-extension jose jwt paseto past python security token

Last synced: 23 Apr 2025

https://github.com/ninoseki/simplewhatweb

Simplified ver. of WhatWeb

pentesting security

Last synced: 19 Jul 2025

https://github.com/rattleycooper/warble

Steganography tool that can embed files into the pixel data of images, or the data chunk of a wav file.

obfuscation pentesting security steganography

Last synced: 31 Aug 2025

https://github.com/itinerisltd/itineris-disable-xml-rpc

Disable WordPress XML-RPC via actions and filters

security wordpress wordpress-plugin xml-rpc

Last synced: 20 Aug 2025

https://github.com/cristalhq/ipfilterware

Go HTTP middleware to filter clients by IP address

filtering firewall go golang http ip ipv4 ipv6 middleware security

Last synced: 08 Apr 2025

https://github.com/zelon88/accessibility-tools-utilmon-defender

A Windows 7-10 startup script for detecting and preventing "Ease Of Access" attacks.

accessibility admin-tools anti-hacking defender security

Last synced: 31 Oct 2025

https://github.com/solun-pm/solun

Solun is a service that allows you to share files, text and sending emails with end-to-end encryption, without having to worry about your privacy.

docker end-to-end-encryption mongodb nextjs privacy security

Last synced: 15 Jun 2025

https://github.com/mindpatch/latestpocs

Latest PoC exploit & Writeups

cves pentesting poc proof-of-concept security

Last synced: 20 Sep 2025

https://github.com/contributte/event-dispatcher-extra

:recycle: Nette-based Symfony events for application, presenter, form, latte, templates, security and many others.

application contributte event-dispatcher event-emitter events mvc nette nette-framework security

Last synced: 19 Jul 2025

https://github.com/bandarlabs/cveingest

Convert CVEs into LLMs friendly input with multi level crawling

audio cve llm security

Last synced: 03 Jul 2025

https://github.com/aw-junaid/security-and-hacking

Explore ethical hacking and security: penetration testing, vulnerability scanning, and exploit development. Includes tools, scripts, and hands-on labs.

ethical-hacking exploit hacking penetration-testing security vulnerabilities vulnerability-scanners

Last synced: 08 Jan 2026

https://github.com/infineon/ek-based-onboarding-optiga-tpm

Guide for Setting Up and Operating Device Onboarding with OPTIGA™ TPM Endorsement Key (EK)

raspberry-pi security tpm2

Last synced: 11 Jul 2025

https://github.com/snehmehta/smartotp

making otp smarter

flask innovation otp python security webapp

Last synced: 14 Aug 2025

https://github.com/ezshine/carefullyopenurl

A Chrome extension that helps users browse the web more safely by adding confirmation steps before opening any links.

chrome-extension security

Last synced: 01 Sep 2025

https://github.com/krishealty/worm

Worm is an Android post exploitation Framework to gain remote access of any Android device by exploiting Android Debug Bridge.

cybersecurity hacking hacking-tools information-gathering kali-linux osint-framework osint-tool penetration-testing pentesting python python3 security vulnerability vulnerability-scanners

Last synced: 14 Apr 2025

https://github.com/bonifield/splunk_on_security_onion

Splunk configs for Security Onion

bro forwarder onion security splunk sysmon zeek

Last synced: 14 Jun 2025

https://github.com/crashdump/covert

Covert is a deniable encryption software.

cli deniable-encryption encryption sdk security

Last synced: 16 Feb 2026

https://github.com/kovart/forta-spam-detector

Advanced spam detector powered by Forta Network

blockchain detector erc1155 erc20 erc721 ethereum forta phishing scam security spam token

Last synced: 15 Apr 2025

https://github.com/safinsingh/midnight

🔧 An extensible Linux security auditing tool

cybersecurity docker go golang linux security

Last synced: 09 Mar 2026

https://github.com/imagemlt/nodelcx

nodejs编写的tcp内网穿透脚本

forward-proxy lcx security security-tools

Last synced: 13 Apr 2025

https://github.com/veil-services/veil-go

The sensitive data firewall for AI. Detect and mask PII (Emails, Credit Cards, CPFs) locally with zero-latency before sending prompts to LLMs. Thread-safe & Production ready.

cybersecurity dlp golang llm openai pii-masking privacy security

Last synced: 13 Jan 2026

https://github.com/nwtgck/aes128gcm-stream-npm

🛡128-bit AES-GCM Encryption Stream for Web Browsers

aes-gcm browser encryption javascript security stream streams-api

Last synced: 01 Apr 2025

https://github.com/divineomega/php-password-cracker

PHP package to crack passwords

password password-cracker php security

Last synced: 25 Jul 2025

https://github.com/ayushn21/bridgetown-content-security-policy

A Bridgetown plugin to add a Content Security Policy in a meta tag

bridgetown bridgetown-plugin content-security-policy security

Last synced: 14 Apr 2025

https://github.com/catalyst/patch-friend

Which of my hosts are affected by a security advisory?

debian python security security-advisories ubuntu

Last synced: 27 Apr 2025

https://github.com/mychewcents/e2e-encryption

An npm module to allow for easier E2E encryption and decryption. Works on 'tweetnacl' npm package.

e2e-encryption encryption encryption-decryption encryption-tool end-to-end-encryption npm npm-package privacy privacy-protection security

Last synced: 17 Jan 2026

https://github.com/sierrasoftworks/honeypot

A service designed to track malicious SSH login attempts

honeypot security ssh-server

Last synced: 09 Apr 2025

https://github.com/offsh/offsh

Xonsh-powered pentesting framework.

pentesting security wazuh xonsh xxh

Last synced: 12 Mar 2025

https://github.com/murphysecurity/murphysec-jenkins-tools

将墨菲安全的代码检测能力集成到 Jenkins 中,提高线上代码安全质量

jenkinsfile scanner security

Last synced: 25 Apr 2025

https://github.com/riotkit-org/gpbkdf2

PBKDF2 key encoder for use in shell. Single, tiny binary. Written in Go.

aes aes-256 aes-256-cbc cbc cbc-mode crypto go openssl pbkdf2 pbkdf2-cli security

Last synced: 02 Aug 2025

https://github.com/arturmiller/adversarial_ml_ctf

This repository is a CTF challenge, showing a security flaw in most (all?) common artificial neural networks. They are vulnerable for adversarial images.

adversarial challenge ctf docker flask machine-learning optimization python security website

Last synced: 18 Apr 2025

https://github.com/haccer/xmail

Go tool that detects which email addresses have domains which are able to be registered

account-takeover bug-bounty bugbounty cyber email go golang infosec osint pentesting redteam redteam-tools security

Last synced: 14 Mar 2026

https://github.com/MaybeThisIsRu/eleventy-plugin-safe-external-links

Stop XSS attacks by preventing access to origin window for links that open in a new tab/window.

11ty eleventy external-links links security

Last synced: 07 Nov 2025

https://github.com/eliasgranderubio/odin_eye

a tool for doing footprinting. This tool is an online modules subset of Odin Project shown by Elias Grande and Alejandro Ramos at RootedCon 2016 conference.

footprinting hacking-tool security

Last synced: 26 Mar 2025

https://github.com/topscoder/subgomain

A high-performance tool for identifying domain takeovers with support for custom fingerprints and resolver lists.

bugbounty bugbounty-tool domain-takeover infosec infosectools security security-tools subdomain-takeover

Last synced: 04 Jul 2025

https://github.com/melroyb/psbettercap

Control multiple Bettercap nodes through REST API

bettercap cluster hack linux powershell powershell-script security security-audit wifi windows

Last synced: 18 Apr 2026