An open API service indexing awesome lists of open source software.

Security

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

https://github.com/infertux/sysechk

System Security Checker is a bundle of small shell scripts to assess your computer security.

cve cve-scanning security security-checker shell

Last synced: 26 Oct 2025

https://github.com/crowdstrike/container-image-scan-action

CrowdStrike Container Image Scan Github Action

cicd containers continuous-integration security

Last synced: 22 Jun 2025

https://github.com/theredguild/devcontainer

The Red Guild's devcontainer focused in web3 and security.

devcontainer security security-tools web3

Last synced: 22 Mar 2025

https://github.com/mahdijafaridev/fastapi-middlewares

Essential middlewares that for FastAPI applications

cors fastapi logging middleware middlewares python security starlette

Last synced: 13 Jan 2026

https://github.com/kaivyy/perseus

AI-powered security assessment for your codebase. Multi-language (JS, Go, Python, Rust, Java, PHP, Ruby, C#). Works with Claude Code, Codex, OpenCode.

ai-security claude claude-code code-review cybersecurity devsecops penetration-testing security security-audit static-analysis vulnerability-scanner

Last synced: 15 Feb 2026

https://github.com/atrexus/ws-watcher

A PoC application that detects unauthorized external access to select memory regions.

cpp memory-management security windows x64

Last synced: 14 Apr 2025

https://github.com/apal21/target-blank-vulnerabilities-features

Examples of some features and the vulnerabilities that can exploit any webpage if target="_blank" is used without rel="noopener"

css html javascript security vulnerability

Last synced: 14 Apr 2025

https://github.com/sap-samples/s4hana-hana-audit-policies

Templates for SAP HANA audit policies of SAP S/4HANA systems.

audit s4hana sample sap-hana sap-s4hana security templates

Last synced: 05 Mar 2025

https://github.com/julien731/authpress

Add 2-factor authentication to your WordPress blog site.

2fa authy security wordpress wordpress-plugin

Last synced: 03 Aug 2025

https://github.com/krishealty/hidemeplease

HideMePlease is a new generation tool to hide phising web links into legitimate web links with original domains (eg: facebook.com, instagram.com) using ccTLD Disguise method.

cybersecurity hacking hacking-tool hacking-tools phishing-script phising phising-link security vulnerability

Last synced: 14 Jul 2025

https://github.com/mirego/absinthe_security

AbsintheSecurity provides utilities to improve the security posture of APIs built with Absinthe GraphQL.

absinthe absinthe-graphql elixir elixir-lang security

Last synced: 14 Aug 2025

https://github.com/bird-house/twitcher

Security Proxy for Web Processing Services (WPS)

certificates oauth ogc proxy pyramid python security wps x509

Last synced: 21 Aug 2025

https://github.com/yallie/jsonservices

Simple JSON-RPC service framework for C# and TypeScript

fleck json messages netmq rpc secure-remote-password security srp srp-6a typescript websockets zeromq

Last synced: 05 Oct 2025

https://github.com/jojonas/db_nmap

Standalone Go implementation of Metasploit's "db_nmap" and "db_import" commands.

metasploit metasploit-framework networks nmap security

Last synced: 14 Jan 2026

https://github.com/m-mizutani/dns-gazer

DNS passive monitoring tool

cpp dns fluentd libpcap packet-sniffer security

Last synced: 27 Apr 2025

https://github.com/cybozu/prompt-hardener

Prompt Hardener is a tool designed to evaluate and enhance the securify of system prompts for RAG systems.

ai generative-ai llm security security-tools system-prompt-hardener

Last synced: 28 Apr 2025

https://github.com/pfirmstone/jgdms

Infrastructure for providing secured micro services, that are dynamically discoverable and searchable over ipv6 networks

distributed-computing iot java osgi-services security

Last synced: 10 Apr 2025

https://github.com/phylum-dev/vuln-reach

A library for building tools to determine if vulnerabilities are reachable in a code base.

cve security vulnerabilities

Last synced: 13 Oct 2025

https://github.com/itinerisltd/trellis-disable-xml-rpc

Disable WordPress XML RPC on Trellis sites

ansible-galaxy security trellis wordpress xml-rpc

Last synced: 24 Apr 2025

https://github.com/veeqtoh/secure-code

A Laravel package for generating and managing n-digit random secure codes for your app.

access-control door-controller laravel php security

Last synced: 07 Sep 2025

https://github.com/doshareme/desktop

Personal Cloud Storage and File Management Solution with Privacy and Security

ai file-manager javascript open-source privacy rust security self-hosting

Last synced: 12 Apr 2025

https://github.com/dataplat/dbadisa

🦅 DISA STIG automation module for SQL Server

automation disa powershell security sqlserver stig

Last synced: 04 Apr 2025

https://github.com/samuel-lucas6/crypto-is-cool

A list of cryptography books, papers, blog posts, presentations, and Q&A answers.

crypto cryptography infosec programming security

Last synced: 07 Jan 2026

https://github.com/simeononsecurity/firefox-security-researcher

Configure FireFox with Security and Intelligance features for OSINT and Security Investigations.

security

Last synced: 29 Oct 2025

https://github.com/julien731/AuthPress

Add 2-factor authentication to your WordPress blog site.

2fa authy security wordpress wordpress-plugin

Last synced: 02 Apr 2025

https://github.com/jeziellago/appclonedetector

Kill app if it is running under a cloned environment in Android device.

android clone detector kotlin kotlin-android security

Last synced: 07 May 2025

https://github.com/jakbin/flask-tor

Host your flask website on tor using flask-tor.

flask onion onion-service onionshare python security tor tor-onion-service

Last synced: 12 Apr 2025

https://github.com/spinoco/fs2-crypto

Crypto support for fs2

fs2 https security security-tools ssl tls

Last synced: 29 Oct 2025

https://github.com/theodo/accent

Access Control Checker Easy Neat Thorough

access-control security

Last synced: 18 Jul 2025

https://github.com/blackducksoftware/opssight-connector

OpsSight Connector documentation

cloud-native kubernetes ops pod security

Last synced: 10 Apr 2025

https://github.com/jaybrown/disable-and-toggle-webrtc-in-macos-safari

System hack to disable and toggle WebRTC in macOS Safari

disable enable libwebrtc macos osx privacy safari security sip toggle webkit webrtc

Last synced: 15 May 2026

https://github.com/psecio/secure-api

Repository for the "Building a Secure API" series on Websec.io

api php security training tutorial websecio

Last synced: 11 Apr 2025

https://github.com/toktok/btox

Official TokTok mobile Tox client

android cryptography encryption ios network p2p security toxcore web

Last synced: 30 Apr 2025

https://github.com/xtekky/simple-sig

Simple Signature to secure your website's traffic with backend validation api

http-signature http-signatures javascript obfuscation security signature signature-verification web-security

Last synced: 10 Apr 2025

https://github.com/HappyHackingSpace/vt

Vulnerable Target (VT) is a specialized tool designed for security professionals, researchers, and educators that creates intentionally vulnerable environments across multiple platforms.

cybersecurity repl security vulnerable

Last synced: 02 Apr 2026

https://github.com/shelld3v/python-shell-cheat-sheet

Full python reverse shell and bind shell payloads

bind-shell cheat-sheet exploit hacking python python3 reverse-shell security shell

Last synced: 01 May 2026

https://github.com/alexylon/ferrocrypt

FerroCrypt is a pure Rust library, CLI, and desktop application for encrypting and decrypting files and directories using password-based or key-pair-based encryption.

cli cryptography decryption encryption file-encryption gui hybrid-encryption rust rust-lang rustlang security security-tools slint symmetric-encryption

Last synced: 24 May 2026

https://github.com/jfrog/jfrog-skills

AI agent skills for the JFrog Platform. Search and download artifacts, query CVEs and exposures, check curation and compliance, trace builds, and more. Install in your AI coding agent and interact with JFrog through natural language.

ai-agent ai-skills artifact-managment artifactory cli devops devsecops jfrog security xray

Last synced: 26 Jun 2026

https://github.com/costela/wile

Stripped down letsencrypt (ACME) client

acme certificate cli client python security ssl

Last synced: 09 Apr 2025

https://github.com/duomarket/userless

A client and server side solution for zero knowledge authentication, in Go

authentication encryption golang openbazaar security

Last synced: 14 Jan 2026

https://github.com/jasondrawdy/amaterasu

Lightweight licensing library for .NET applications which allows the managing of licenses via web based scripts and on-the-fly code compilation.

amaterasu antebyte code-generation compiler cryptography csharp dotnet dynamic encryption hacking library license license-management memory-management networking on-the-fly scripting security web windows

Last synced: 22 Apr 2025

https://github.com/securestackco/actions-log4j

A GitHub Action that scans your public web applications for log4j vulnerabilities after every deployment. Add this to your dev, staging and prod steps and SecureStack will make sure that what you've just deployed is secure and meets your requirements.

devsecops github-actions java java-vulnerability java8 jre log4j log4j-rce log4j2 log4js log4shell scanning security security-automation security-tools software-composition-analysis static-analysis vulnerabilities vulnerability-assessment vulnerability-scanner

Last synced: 30 Jul 2025

https://github.com/zb3/tiandy-research

This repository contains the results of my August 2020 research of Tiandy's IPC/NVR firmware. I found two vulnerabilities that could be used to remotely recover the administrator password and gain root access to the device.

full-disclosure security

Last synced: 17 Jan 2026

https://github.com/x0rbyt3/osint-tools

An Online Collection of Open Source Intelligence Tools

css html osint repository security security-audit security-scan security-tools

Last synced: 07 Aug 2025

https://github.com/toshke/aws-keys-sectool

Command line to list and IP whitelist active AWS credentials

access-control aws security security-tools

Last synced: 14 Dec 2025

https://github.com/chinmina/chinmina-bridge

Allows Buildkite agents to use ephemeral GitHub tokens to authenticate their interactions. Avoids deploy keys and long-lived PATs.

buildkite github github-app oidc security

Last synced: 27 May 2026

https://github.com/lionheart/django-pwnedpasswords-validator

Django password validator that checks for passwords in known data breaches.

django django-passwords library password-validation password-validator passwords python python-library security

Last synced: 15 Sep 2025

https://github.com/MathiasRenner/optimize-ubuntu

Optimize Ubuntu for usability, security, privacy and stability

linux privacy reliability security ubuntu

Last synced: 07 Sep 2025

https://github.com/cyb3rmx/badpig

A compilation of snort rules for detecting malware traffic.

intrusion-detection malware-detection network-security security snort snort-rules

Last synced: 02 Jan 2026

https://github.com/dahall/securityeditor

Standard Windows security editor dialog for .NET derived from CommonDialog and implementing the Windows EditSecurity API.

csharp dotnet permissions security windows winforms

Last synced: 01 Sep 2025

https://github.com/krisnova/.net

Compiled Works: Computer Science, Engineering, Analysis, Research

analysis computer-science kernel linux research security

Last synced: 14 Apr 2025

https://github.com/psenger/jersey2-security-jwt

Jersey 2 with JWT Token Security

jersey2 jwt jwt-token security

Last synced: 14 Apr 2025

https://github.com/zelon88/workstation_usb_monitor

Know whenever a domain user plugs in a USB storage device. Log & email when storage devices get attached to your network.

admin-tools administration email-notifications gpo monitor notifications security security-automation security-tools sendmail storage storage-devices storage-monitor usb usb-monitor vbs

Last synced: 07 Jan 2026

https://github.com/dxc-0/respect-my-internet

Opensnitch / LittleSnitch - No-Gafam (blocklist for facebook, google, microsoft, amazon, huawei, tencent, apple, xiaomi ...) - aggressive privacy and protection (trackers, spywares, malwares, cti feeds, malicious ips, phishing...) - 99% in adsblockers tests !

anonymity blocklist firewall firewall-configuration firewall-rules netfilter nftables-rules no-amazon no-apple no-batx no-facebook no-gafam no-microsoft open-source opensnitch privacy-protection privacy-tools respect-privacy script security

Last synced: 16 May 2025

https://github.com/muntashirakon/sun-security-android

Use the Android-private sun.security library

android-library keystore-provider security

Last synced: 13 Apr 2025

https://github.com/pcjbird/quicksecuritycode

A security or sms verify code input control. 一个安全码/短信验证码输入控件,支持4位或6位数字的安全码/短信验证码。

code input mobile phone security sms textfield verify

Last synced: 10 Apr 2025

https://github.com/gacts/gitleaks

🚀 GitHub action for running gitleaks/gitleaks (no license key is required)

code-scanning github-actions gitleaks security

Last synced: 20 Mar 2025

https://github.com/wakeful/veil

Verified Entity Identity Lock (Expose hidden trust paths in your AWS IAM setup before they become security risks.)

aws blue blue-team blue-team-tool blueteam blueteam-tools cybersecurity penetration-testing recon security security-auditing security-automation security-testing security-tools

Last synced: 30 Dec 2025

https://github.com/Cymmetria/micros_honeypot

MICROS Honeypot is a low interaction honeypot to detect CVE-2018-2636 in the Oracle Hospitality Simphony component of Oracle Hospitality Applications (MICROS). This is a directory traversal vulnerability.

deception honeypot micros oracle security security-tools security-vulnerability vulnerability

Last synced: 27 Mar 2025

https://github.com/y-miyazaki/terraform-aws-base

Initially set base configuration created by Terraform.

aws metrics monitoring security terraform terraform-aws

Last synced: 17 Jan 2026

https://github.com/parsiya/evil-electron

Backdoored Electron app.asar

electron security

Last synced: 11 Apr 2025

https://github.com/vincentkoc/ostemper

All in one script for hardening and applying common tweaks to Mac OS systems

apple macos macosx security security-hardening security-tools

Last synced: 11 Apr 2025

https://github.com/xenocoderce/netseal

A revamp of the good old NetSeal licensing system, with security !

dotnet license-management managed security

Last synced: 11 Apr 2025

https://github.com/topscoder/nuclei-zero-day

This repository contains random Nuclei templates I've created. Most of them based on recent security issues and exploits.

bugbounty infosec nuclei nuclei-templates security

Last synced: 06 Mar 2026

https://github.com/tabmk/2fa-hotp-totp

Zero dependency HOTP/TOTP 2FA

2fa hotp otp security totp typescript

Last synced: 13 Apr 2025

https://github.com/cleantalk/php-usp

UniForce - Universal Security plugin and Firewall for websites

attack-defense firewall security waf

Last synced: 11 Apr 2025

https://github.com/neosmart/lastpassto1password

A LastPass to 1Password converter.

1password lastpass security

Last synced: 10 Apr 2025

https://github.com/qnib/doxy

Docker unix-socket proxy to provide unharmful, read-only API calls

docker docker-engine golang security

Last synced: 14 Jan 2026

https://github.com/tink-crypto/tink-go-gcpkms

Extension to Tink Go that provides Google Cloud KMS integration

crypto cryptography gcp-kms go golang golang-library google-cloud-kms security tink

Last synced: 12 Jan 2026

https://github.com/madhuakula/hacked-emails

Command line hacked-emails

go golang hacked-emails infosec security

Last synced: 11 Aug 2025

https://github.com/0xricksanchez/sploitget

A wrapper script for https://sploitus.com to scrape query results for tools and exploits

ctf exploit exploitation pentest-tool security wrapper-api

Last synced: 13 Apr 2025

https://github.com/gcmurphy/osv

Rust implementation of ossf osv specification

rust security vulnerability-scanners

Last synced: 11 Mar 2026

https://github.com/frmoretto/hardstop

Don't let AI destroy your hard work! HardStop is a rock-solid protection for AI-generated commands. Pre-execution safety validation for Claude Code, Claude Cowork. Catches dangerous commands before they run: whether from AI mistakes, hallucinations, prompt injection, or misunderstood instructions. Seatbelts for the agentic AI era.

agentic-ai ai-safety claude claude-ai claude-code claude-code-hooks claude-code-plugin claude-code-plugin-marketplace claude-code-plugins claude-code-plugins-marketplace claude-cowork cowork developer-tools llm pre-commit-hook prompt-injection security

Last synced: 14 Feb 2026

https://github.com/tenable/accurics-action

The Accurics GitHub Action scans Infrastructure as Code files checked into the respository to help ensure that cloud resources are secure and compliant from creation.

cicd devops security

Last synced: 15 Apr 2025

https://github.com/mrtc0/cxray

Tracing security events in container with BPF

bcc bpf container devsecops ebpf security trace

Last synced: 08 Mar 2026

https://github.com/bitsofinfo/testssl.sh-alerts

Alerting engine (slack etc) for testssl.sh JSON result output files

alerting alerts certificates continuous-integration security slack ssl testssl

Last synced: 13 Apr 2025

https://github.com/X0RBYT3/OSINT-Tools

An Online Collection of Open Source Intelligence Tools

css html osint repository security security-audit security-scan security-tools

Last synced: 12 Jul 2025

https://github.com/sigstore/sigstore-a2a

Sigstore A2A Agent Signing

agent cryptography security sigstore

Last synced: 22 Feb 2026

https://github.com/ibasebcast/ha-alarmdotcom

Modernized Alarm.com integration for Home Assistant with ongoing maintenance and fixes.

alarm-com alarmdotcom hacs hacs-integration home-assistant home-assistant-integration home-security homeassistant security

Last synced: 21 Apr 2026