An open API service indexing awesome lists of open source software.

Security

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

https://github.com/lirantal/security-report

Report a security vulnerability

nodejs npm npx security

Last synced: 21 Apr 2025

https://github.com/jonhadfield/ape

AWS account scanner

aws golang security

Last synced: 15 Jul 2025

https://github.com/louis3797/xss-shield

A powerful middleware for securing your express.js applications against cross-site scripting (XSS) attacks

express-middleware middleware node security typescript xss xss-attacks xss-filter xss-sanitizer xss-shield

Last synced: 07 Apr 2025

https://github.com/yhs0602/logbluetoothapi

Logs android bluetooth api calls of apps using xposed framework, to learn how to avoid java.lang.IOException: connect() failed; socket might closed or timeout; read ret: -1

benchmarking reverse-engineering security security-tools xposed-framework

Last synced: 24 Jul 2025

https://github.com/0xedward/fisherman

a fisherman catches phishes - a tool to look up reputation of email addresses

email infosec phishing python security security-tools threat-intelligence

Last synced: 04 Oct 2025

https://github.com/retirenet/packages

JSON files containing vulnerable packages

dotnet-core dotnetcore security

Last synced: 21 Sep 2025

https://github.com/x13a/pschk

Check for suspicious processes on macOS

macos osx security swift

Last synced: 02 Jul 2025

https://github.com/jmcph4/fuzzbang

Python 3 package providing basic fuzzing support

fuzz fuzz-testing fuzzer fuzzing python security vulnerability-detection

Last synced: 07 Apr 2025

https://github.com/divineomega/laravel-password-security-audit

🔏 Artisan command to audit the security of your users' passwords

laravel laravel-package password php security security-audit users

Last synced: 24 Aug 2025

https://github.com/panther-labs/stix2

Pure go implementation of stix2

golang security

Last synced: 12 Aug 2025

https://github.com/cyberark/escape-the-cloud

Web Application for CyberArk Cloud Escape Room CTF challenge

aws challenge cloud conjbot-skip conjbot-skip-vulnrreport ctf security

Last synced: 03 May 2025

https://github.com/panther-labs/pysigma-backend-panther

pySigma Panther Backend

python security

Last synced: 12 Aug 2025

https://github.com/geniuszly/CVE-2022-45701

it is script designed to exploit certain vulnerabilities in routers by sending payloads through SNMP (Simple Network Management Protocol). The script automates the process of authorization, payload generation, and execution, allowing for remote command execution on the target device.

arris arris-modem arris-router buffer-overflow cve cve-2022-45701 cybersecurity ethical-hacking exploit exploit-development linux penetration-testing poc python security snmp vulnerability vulnerability-research

Last synced: 07 May 2025

https://github.com/fijimunkii/usb-canary

Shell script to monitor usb devices while your computer is locked. Get notified when someone plugs in or removes a usb device

alert detection linux monitoring notify osx security shell sms usb

Last synced: 04 Oct 2025

https://github.com/astrid-project/astrid-framework

Main repository with all the components developed by the ASTRID consortium and the guideline to build the entire framework.

agent-based context-broker control-plane dashboard docker elasticsearch elk kafka kibana logstash security

Last synced: 06 Apr 2025

https://github.com/sarathsp06/py2factor

Python two factor authenticator app for linux,experimental

2factor cli multifactor-authentication python security

Last synced: 28 Jul 2025

https://github.com/miller79/spring-security-demo

Demonstrates how to use Spring Security with common production patterns.

java oauth2 security spring spring-boot spring-framework spring-security

Last synced: 01 Jul 2025

https://github.com/soufantech/arx

Arx is an access control library for Node.js apps, strongly focused on efficiency, type safety and overall composability.

access-control authorisation permissions policy security

Last synced: 12 Apr 2025

https://github.com/vaibhavpandeyvpz/phuck

Single-file shell to f__k vulnerable PHP servers, solely for educational and research purposes. Powered by Bootstrap and React.js, features a file browser and browser based, SSH like terminal.

administraction file-manager hacking security shell ssh sysadmin terminal

Last synced: 24 Apr 2025

https://github.com/node-opcua/node-opcua-crypto

node-opcua certificate tools & encryption/signature support

certificate encryption opcua security

Last synced: 20 Feb 2026

https://github.com/mjorgegulab/nestjs-cryptography

Secure NestJS cryptography module 🔐

cryptography javascript nest nestjs node security typescript

Last synced: 27 Jul 2025

https://github.com/soumyadip007/ga4gh-prototype-and-microservice-api-gsoc-proposal

Implement “Reference registry and contig alias search” for Global Alliance for Genomics and Health.

elasticsearch gsoc hibernate jpa jwt maven microservicers mysql restapi restful-webservices security spring springboot

Last synced: 27 Jul 2025

https://github.com/kaanguru/lock4it

Offline hardware and software asset management tool for IT professionals.

cross-platform password-manager privacy pwa pwa-apps security skeleton svelte sveltekit tailwindcss typescript

Last synced: 01 Sep 2025

https://github.com/fabian-hk/secure-two-party-computation

Python implementation of the TPC protocol from the paper "Authenticated Garbling and Efficient Maliciously Secure Two-Party Computation"

google-protocol-buffers multi-party-computation network-communication python3 secure-computation security tpc two-party-computation

Last synced: 14 Apr 2025

https://github.com/hleliofficiel/exaaiagent

ExaAiAgent — Advanced AI-powered penetration testing framework with Docker sandbox, multi-agent workflows, and 50+ integrated cybersecurity tools.

ai-agent bug-bounty cybersecurity hacking llm pentesting prompt-injection python security vulnerability-scanner

Last synced: 01 Apr 2026

https://github.com/nolze/imagesteg

A simple image steganalysis (steganography analysis) tool in Python with web-based GUI

ctf security steganalysis steganography

Last synced: 13 Aug 2025

https://github.com/rusty-ferris-club/redact-engine

Protect confidentiality with dynamic redaction by replacing sensitive data.

redact redaction security sensetive-data

Last synced: 19 Aug 2025

https://github.com/jmaczan/ktotu

Identify devices in your network and monitor it against intruders

linux monitoring netsec netsecurity network network-monitoring network-security python security

Last synced: 02 Aug 2025

https://github.com/jcsec-security/cosmwasm-security-spotlight

Posts and labs to learn CosmWasm smart contract security vulnerabilities and audit

audit blockchain bug bugbounty contract cosmos cosmossdk cosmwasm ctf dapp defi hacking rust security smart smartcontract vulnerabilities

Last synced: 26 Oct 2025

https://github.com/dimosr/monitorito

A browser extension for visualisation and monitoring of browser HTTP traffic

browser graph plugin security visualisation

Last synced: 21 Apr 2025

https://github.com/eqstlab/cve-2024-48914

Arbitrary File Read and DoS in vendure-ecommerce exploit

cve exploit poc proof-of-concept security typescript vulnerability

Last synced: 27 Jul 2025

https://github.com/k3rnel-dev/katanaframework

Katana-Framework это фреймворк для энтузиастов по тестированию на проникновение на данный момент еще находится в разработке.

framework hack hacking malware metasploit pentest pentesting post-exploitation security

Last synced: 28 Jun 2025

https://github.com/righettod/code-snippets-security-utils

Provides different utilities methods to apply processing from a security perspective.

appsecurity code-snippets java security

Last synced: 31 Aug 2025

https://github.com/pythonhacker/varuh

Password manager for the command line for Unix like operating systems

command-line command-line-tool encryption golang linux password-manager security security-tools shell unix-like

Last synced: 19 Mar 2025

https://github.com/ntdls/sqlpwaudit

An easy to use and scalable SQL password recovery/audit tool.

auditing cracking passwords security sql threading

Last synced: 14 Apr 2025

https://github.com/albertito/kxd

[mirror] Key exchange daemon

encryption-key go-application key-management security

Last synced: 02 Aug 2025

https://github.com/ridge-development/ridge

Create your own personal AI assistant with full control, host it yourself, access insights from both your documents and the web, and automate tasks effortlessly. Design tailored AI agents, dive deep into research, and set up scheduled workflows.

agents autonomous llm nodejs npm pipeline python python3 repository security tasks yaml yarn

Last synced: 16 May 2025

https://github.com/rarecoil/mqtt-packet-fuzzy

Radamsa-backed, hooked mqtt-packet for blind MQTT protocol fuzzing on Mac, Linux and Windows.

fuzzing mqtt mqtt-packet mqttjs radamsa security

Last synced: 01 Jul 2025

https://github.com/derhuerst/generate-node-policy-file

Generate a Node.js policy file for your code.

json nodejs security

Last synced: 15 Apr 2025

https://github.com/kaushikgopal/ff-container-traffic-control

Firefox addon (extension) that helps you define rules which will control which container a website opens in.

firefox firefox-addon firefox-extension privacy security

Last synced: 31 Jan 2026

https://github.com/openwall/owl

Openwall GNU/*/Linux (Owl) is a small security-enhanced Linux distribution for servers. Owl has effectively reached its end-of-life, but its legacy lives on in a few other distributions (most notably, ALT Linux) and upstream projects. This is a tentative export of the Owl CVS repository into Git, which will possibly be redone later.

hardening linux security userland

Last synced: 09 Apr 2025

https://github.com/jef/gh-audit-org-keys

🔑 Provides list of public SSH keys of an organization

github-api john-the-ripper openssl security ssh

Last synced: 03 Apr 2026

https://github.com/omaidf/go-chrome-stealer

Steal Chrome Cookies Without Root

cookies security security-tools

Last synced: 14 Jan 2026

https://github.com/smoren/url-security-manager-php

Class for building, parsing, signing, signature checking, encrypting and decrypting URLs

encryption security url-builder url-parser

Last synced: 15 Apr 2025

https://github.com/aginies/virt-scenario

Prepare a Virtual Machine libvirt XML config and the host to match a specific scenario usage

alp confidential-computing host libvirt opensuse qemu scenarios secure-computation security sev sev-es suse virtual-machine virtualization xml xml-schema

Last synced: 09 Oct 2025

https://github.com/rulilg/litic

JS library to perform technical SEO and best practices analysis to your projects.

accessibility best-practices security seo technical-seo web-development

Last synced: 13 Oct 2025

https://github.com/sap-samples/btp-sac-forecast

This scenario is primarily intended to empower data driven decisions through analytics forecast using SAP Analytics Cloud, BTP extension application and SAP Build Work Zone, standard edition.

cloud-foundry sample sample-code sap-analytics-cloud sap-btp sap-build-work-zone-standard-edition sap-cap sap-hana-cloud security story

Last synced: 06 Feb 2026

https://github.com/iris-eval/mcp-server

The agent eval standard for MCP — score output quality, catch safety failures, enforce cost budgets

agent-evaluation ai-agent claude eval evaluation llm mcp mcp-server model-context-protocol observability security tracing

Last synced: 07 May 2026

https://github.com/0xhunterr/hack_map

A Collection of InfoSec Mind Maps

ejpt-notes ejpt-study mindmap security

Last synced: 14 Feb 2026

https://github.com/cipher-fox/nestjs-cryptography

Secure NestJS cryptography module 🔐

cryptography javascript nest nestjs node security typescript

Last synced: 25 Apr 2026

https://github.com/darxisr/cryline-v3.0

Cryline project - It's a simple test ransomware for Windows OS without stable encryption. Pls use this source code for study purposes only. The author is't responsible for your actions.

aes-encryption assembly cplusplus dotnet encryption malware programming ransomware security source-code windows

Last synced: 16 Aug 2025

https://github.com/ebrasha/abdal-security-headers

Abdal Security Headers is a powerful WordPress plugin that enhances your website's security through HTTP security headers. It provides an easy-to-use interface for managing security policies and protecting against common web vulnerabilities.

abdal abdal-security-group ebrahim-shafiei ebrasha hsts security security-headers wordpress wordpress-plugin wp

Last synced: 26 Jan 2026

https://github.com/mablanco/docker-rapidscan

Docker image for Rapidscan, a multi-tool web vulnerability scanner

docker pentesting security

Last synced: 02 Jun 2026

https://github.com/cs-joy/blockchain_exploration

All about of Blockchain Technology - Especially about Data Privacy and Security

blockchain-technology cia data-privacy security

Last synced: 06 Feb 2026

https://github.com/suuhm/log4shell4shell

Log4shell - Multi-Toolkit. Find, Fix & Test possible CVE-2021-44228 vulneraries - provides a complete LOG4SHELL test/attack environment on shell

checker hacking linux log4j log4j2 log4shell macos patch penetration-testing pentesting proof-of-concept scanner security tomcat vulnerability-scanners windows

Last synced: 03 May 2026

https://github.com/lambda2/breezer

🔒 Lock your Gemfile dependencies to safe versions

ci gemfile ruby security

Last synced: 18 Jan 2026

https://github.com/hxsecurity/dongtai-core

Provides the Django Model class that the DongTai project depends on, the Django API abstract class of the DongTai project, the vulnerability detection engine, constants, documents, etc.

applicationsecuritymonitoring devsecops django dongtai dongtai-iast security

Last synced: 26 Apr 2025

https://github.com/z3ntl3/ddos-denier

DDOS-Denier is a tool designed to evaluate incoming server attacks based on CPU load and automatically take countermeasures. Intended for Cloudflare websites.

api bot cloudflare ddos security

Last synced: 16 Aug 2025

https://github.com/netlify/plugin-csp-nonce

Build plugin to use a nonce for the script-src directive of your site's Content Security Policy.

csp netlify security

Last synced: 26 Oct 2025

https://github.com/alexfrancow/gomitm

:construction: An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers written in go.

go golang http https martian mitm proxy security tcp

Last synced: 14 Oct 2025

https://github.com/marcominerva/dataprotectionsample

This example shows how to use the DataProtection APIs with ASP.NET Core

aspnetcore cryptography csharp data-protection dotnet minimal-api security

Last synced: 09 Apr 2025

https://github.com/sadhasivamx/boar-hunting-yolov8

YoloV8-based boar detection system with Arduino-triggered buzzer for enhanced security.

arduino artificial-intelligence computer-vision custom machinelearning security yolov8

Last synced: 07 Oct 2025

https://github.com/shinesolutions/aem-test-suite

AEM infrastructure test suite covering acceptance, recovery, security guideline testing scenarios

acceptance aem aem-opencloud performance recovery security testing

Last synced: 06 Mar 2026

https://github.com/gowww/secure

🔑 Security utilities, CSP, HPKP, HSTS and other security wins

csp go golang good-practices hpkp hsts http https policy secure security ssl

Last synced: 01 Mar 2026

https://github.com/hitsz-ids/dbmasker

DBMasker 是一个针对主流数据库系统的 Java 开源项目,旨在提供统一且安全的访问接口。

data data-security database mask sdk security

Last synced: 26 Apr 2025

https://github.com/zdnk/authorized

🔐 Simple way to authorize user actions on resources for Vapor 3

authorization security server-side-swift swift swift4 vapor vapor-3 vapor-swift

Last synced: 26 Apr 2025

https://github.com/actalog/mongodump

🍃 GitHub Action for creating a binary export of a database's contents

actions backup database github-actions mongodb mongodump security

Last synced: 27 Feb 2026

https://github.com/ekino/hibernate-crypto-types

Provides new hibernate column types to encrypt your column data before being stored in your database

encryption gradle hibernate jpa secrets security

Last synced: 06 Oct 2025

https://github.com/fivexl/terraform-aws-ssl-checker

Simple SSL check and expiring certificates reminder with additional DNS check and host availability check.

heartbleed lambda security ssl terraform terraform-module tls tls-certificate-checker tls-scan tls13

Last synced: 09 Apr 2025

https://github.com/0xjonaseb11/dn404_marketplace.3.0

A DN404 Marketplace built on ERC404 token standard inspired by Pandora coin

auditing dn404 erc404 ethereum marketplaces nfts security smartcontracts solidity tokens

Last synced: 21 Apr 2026

https://github.com/luisschwab/smaug

smaug 🐉 guards your coins and sends you an email if they move

bitcoin network security

Last synced: 24 Jan 2026

https://github.com/sjinks/wp-login-logger

WordPress plugin to log login attempts

login security session session-management wordpress-plugin

Last synced: 10 Apr 2025

https://github.com/dotcoocoo/hermitstash

Post-quantum encrypted, self-hosted file sharing. ML-KEM-1024 + P-384 hybrid crypto, zero plaintext on disk, one-command deploy. 🦀

argon2 cryptography docker encryption end-to-end-encryption fido2 file-sharing file-upload ml-kem nodejs passkeys post-quantum privacy security self-hosted sqlite webauthn xchacha20 zero-dependency zero-knowledge

Last synced: 26 Jun 2026

https://github.com/sr-lab/pin-bank

Numeric PINs counted and sorted by frequency as they occur in the RockYou dataset.

analysis frequency list password pin security

Last synced: 03 Mar 2026

https://github.com/tn3w/ipblocklist

Aggregated IP/ASN threat intel. ~20 MB mmap DB + ~5 MB netset blocklist.

ip-address ip-blocklist ip-lookup python security threat-intelligence

Last synced: 04 Jun 2026

https://github.com/kumuluz/kumuluzee-security

KumuluzEE Security extension for easy integration with OAuth2/OpenID identity and access management providers.

cloud-native java javaee kumuluzee microservices oauth2 openid-connect security

Last synced: 17 Oct 2025

https://github.com/elliotwutingfeng/passwordsim

passwordsim lets you search for passwords similar to your specified password in any passwords dataset. The similarity metric used is the Damerau-Levenshtein distance.

cybersecurity damerau-levenshtein data-breaches hacktoberfest haveibeenpwned osint password password-manager security

Last synced: 29 Apr 2025

https://github.com/ddrimus/http-threat-blocklist

A daily-updated blocklist of IP addresses involved in malicious HTTP attacks that bypassed multiple security layers. Ideal for protecting web servers against probing, exploits, and bot traffic.

blocklist cybersecurity firewall malware security threat-intelligence

Last synced: 31 Jan 2026

https://github.com/blank-query/lazyVPN-for-Omarchy

LazyVPN is an Omarchy VPN manager for WireGuard connections. It replaces manual systemd-networkd configuration with a fast, keyboard-driven TUI featuring killswitch, auto-recovery, and Waybar integration.

linux mullvad-vpn omarchy omarchy-linux privacy protonvpn security tui vpn vpn-manager wireguard wireguard-ui wireguard-vpn

Last synced: 07 Feb 2026

https://github.com/protokol/guardian

Transaction Based Permission Management (Users and Group) OnChain

ark blockchain configurable permissions security user-management

Last synced: 19 Oct 2025

https://github.com/kevinrabun/judges

MCP server with specialized judges to evaluate AI-generated code for security, cost, scalability, cloud readiness, and best practices.

ai-agent ai-code-review ai-generated-code code-quality code-review judge mcp mcp-server security software-architecture static-analysis typescript

Last synced: 05 Apr 2026

https://github.com/soulteary/stargate

A minimal ForwardAuth gateway for Traefik and Nginx that handles login sessions and request access control. / 面向 Traefik 和 Nginx 的极简 ForwardAuth 鉴权网关,负责会话与访问控制。

auth authentication authorization enjoy-with-stargate forwardauth gateway nginx reverse-proxy security sso traefik

Last synced: 11 Feb 2026