Security
Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.
- GitHub: https://github.com/topics/security
- Wikipedia: https://en.wikipedia.org/wiki/Computer_security
- Aliases: security-tools, security-vulnerability, security-audit,
- Last updated: 2026-07-14 00:27:46 UTC
- JSON Representation
https://github.com/doyensec/imagemagick-security-policy-evaluator
The ImageMagick Security Policy Evaluator allows developers and security experts to check if an XML Security Policy is hardened against a wide set of malicious attacks. It assists with the process of reviewing such policies, which is usually a manual task, and helps identify the best practices for ImageMagick deployments.
conversion converters image-processing imagemagick scanner security security-policies security-tools
Last synced: 29 Apr 2025
https://github.com/zeroxjf/cve-2026-20687-applejpegdriver-uaf
CVE-2026-20687: AppleJPEGDriver startDecoder Timeout UAF — iOS/macOS kernel vulnerability leading to deferred panic (A19 Pro, iOS 26.3 RC)
apple arm64 cve-2026-20687 ios kernel poc security use-after-free vulnerability
Last synced: 03 Jun 2026
https://github.com/celenityy/controld-settings
My recommendations for the ultimate ControlD Configuration :)
adblock adblock-list ads annoyances anti-fingerprinting anti-tracking blocklist blocklists controld dns domains domains-list filterlist filterlists metrics privacy privacy-protection security telemetry tracking
Last synced: 19 Feb 2026
https://github.com/buskill/awesome-buskill-triggers
Antiforensic actions to secure your device if it's physically stolen from you
anti-forensics deadmanswitch infosec opsec security tripwire
Last synced: 05 Mar 2026
https://github.com/robertdebock/ansible-role-auditd
Install and configure auditd on your system.
ansible auditd molecule monitoring playbook security system tox
Last synced: 17 Mar 2026
https://github.com/code-cargo/cargowall
ebpf firewall github-actions security
Last synced: 01 Apr 2026
https://github.com/middlewares/honeypot
PSR-15 middleware to implement a honeypot spam prevention
honeypot http middleware psr-15 security spam-protection
Last synced: 01 Apr 2026
https://github.com/mitre/aws-s3-baseline
A micro InSpec baseline to check for insecure or public s3 buckets in your VPC
aws aws-s3-security aws-security inspec microprofile mitre-corporation mitre-inspec mitre-saf s3 s3-bucket s3-bucket-leak s3-security security
Last synced: 29 Jul 2025
https://github.com/willfindlay/suidsnoop
suidsnoop is a tool based on eBPF LSM programs that logs whenever a suid binary is executed and implements custom allow/deny lists.
aya ebpf linux linux-kernel lsm rust security suid-binaries
Last synced: 07 May 2025
https://github.com/enquo/enquo-core
Core cryptographic code to allow encrypted query operations
cryptography encryption enquo hacktoberfest ruby rust security
Last synced: 13 Apr 2025
https://github.com/netflix-skunkworks/bucketsnake
An AWS lambda function that grantsss S3 permissionsss at ssscale.
aws badpunsss cross-account iam lambda permissions s3 security serverless
Last synced: 28 Jul 2025
https://github.com/dotnet-labs/client-ip-safelist
Client IP safelist for ASP.NET Core | .NET 5 | CIDR | Network | allowed list | IP restriction
allowedlist api cidr client-ip dotnet dotnet-core dotnet5 dotnetcore integration-tests ip-restrictions ngrok remote-ip remoteip safe-list security
Last synced: 08 Aug 2025
https://github.com/snej/secret-handshake-cpp
SecretHandshake secure connections in C++, with Cap'n Proto support
capnproto cplusplus cryptography networking security
Last synced: 07 May 2025
https://github.com/NodeSecure/report
NodeSecure HTML & PDF report generator for any public and/or private git repositories.
hacktoberfest nodejs report security security-tool
Last synced: 02 Aug 2025
https://github.com/jw-12138/m42
Web-based, self-hosted, 1 on 1 Chat App with end-to-end encryption.
chat chat-app chat-application end-to-end-encryption instant-messaging message-app security self-hosted
Last synced: 04 Mar 2025
https://github.com/ajayrandhawa/visual-basic-scripts
Visual Basic Scripts Utilities. Fun, Automation, Fundamentals. With the help of these scripts, I develop lots of Exploits which I'm used for automation system tasks. these vb scripts I am also used for system security exploitation.
automation basic exploitation fun fundamentals hacking-tool project scripts security tutorials vb-script visual visual-basic
Last synced: 03 Jan 2026
https://github.com/rtfpessoa/yavdb
Yet Another Vulnerability Database
cocoapods composer database dependencies go hacktoberfest java javascript maven node npm nuget packagist php pip pypi ruby rubygems security vulnerabilities
Last synced: 22 Apr 2025
https://github.com/cybrota/scharf
Static analysis tool to Identify and Fix GitHub Actions prone to Supply‑Chain Risks
ci-cd cybersecurity devsecops github github-actions go golang security security-tools supply-chain-security
Last synced: 17 Jan 2026
https://github.com/putyourlightson/craft-sherlock
Security scanner and monitor to keep your site and Craft CMS secure.
craft-plugin craftcms monitor monitoring scanner secure security
Last synced: 31 Jul 2025
https://github.com/v-thakkar/talks
This repository contains the slides of my talks.
coccinelle ebpf embedded-linux kernel linux security static-code-analysis virtualization xen
Last synced: 17 Mar 2025
https://github.com/sharenowtech/virity
Automated Vulnerability Analysis and Disclosure of Docker Containers
anchore-engine cve docker etcd k8s security sensu
Last synced: 05 Sep 2025
https://github.com/erzz/dockle-action
Github Action to run Dockle and report in workflows, pipeline and PR's
action best-practice container docker dockle github-action lint security
Last synced: 14 Apr 2025
https://github.com/leplusorg/docker-kali
Kali Linux as a multi-platform Docker container.
docker docker-container docker-image information-security infosec kali kali-linux kalilinux security security-tools
Last synced: 20 Feb 2026
https://github.com/feross/security
Security Policies and Procedures for @feross projects
disclosure javascript nodejs policy report security
Last synced: 13 Sep 2025
https://github.com/shopify/seer-prototype
Security Expert Elicitation of Risks
elicitation expert-elicitation security
Last synced: 04 Oct 2025
https://github.com/cr0hn/nginx-wordpress-docker-sec
Anti-hacking tools deployment config of Nginx for Wordpress
hacking hardening nginx nmap plecost security wordpress wp-scan wp-scanner
Last synced: 25 Jun 2025
https://github.com/zillionare/omega
Data module for project zillionare
quant quotation security trade
Last synced: 23 Jul 2025
https://github.com/ventz/docker-cif
CIFv3 Ubuntu 16.04 Docker Container (Bearded Avenger)
cifs forensic-analysis forensics intel intelligence security threat-hunting threat-sharing
Last synced: 16 Sep 2025
https://github.com/grapheneos/platform_system_sepolicy
Base SELinux policy (extended by per-device repositories)
android grapheneos privacy security
Last synced: 13 Apr 2025
https://github.com/masterbpro/argus
Argus is an eBPF-based monitoring and management tool delivering real-time insights into system performance. Designed for flexibility, efficiency, and security, it’s an ideal solution for developers and administrators seeking lightweight tools for event analysis and debugging.
audit bpf ebpf infrastructure kubernetes linux linux-kernel network sdn security
Last synced: 15 Apr 2025
https://github.com/skyplabs/scapy-mitm
ARP cache poisoning implementation using Scapy
arp-cache-poisoning hacking network python scapy security
Last synced: 20 Mar 2025
https://github.com/padsalatushal/cve-2011-2523
Python exploit for vsftpd 2.3.4 - Backdoor Command Execution
cve cve-2011-2523 exploit python security vsftpd-exploit
Last synced: 31 Jul 2025
https://github.com/githubixx/ansible-role-cfssl
Ansible role for installing Cloudflares CFSSL PKI toolkit on Ubuntu
ansible ansible-role certificate certificate-authority cfssl cloudflare-pki-toolkit kubernetes security
Last synced: 26 Jun 2025
https://github.com/mlshv/exactify
CLI tool that removes ^ prefix from package.json dependecies and replaces them with specific versions from package-lock.json
cli javascript packagejson security
Last synced: 25 Jun 2025
https://github.com/ramortegui/clamxir
CalmAV wrapper for elixir
antivirus clamav clamdscan clamscan elixir malware-detection phoenix phoenix-framework security security-scanner security-tools web
Last synced: 01 Aug 2025
https://github.com/hovancik/BSDSec
deadsimple BSD Security Advisories and Announcements
advisories announcements bsd dragonfly freebsd midnightbsd netbsd openbsd pfsense security
Last synced: 01 Aug 2025
https://github.com/sap-samples/btp-user-management-microservice
Sample CAP microservice to manage business applications' users and their respective authorizations.
authentication authorization btp cloud-application-programming-model cloud-foundry security xsuaa
Last synced: 25 Sep 2025
https://github.com/a3r0id/httpscan
Scan a host for open HTTP ports and gain information about the services present.
crawler hacking hacking-tool http low-level penetration-testing pentest pentesting portscan portscanner scan scanner scanner-web scraper security service-discovery
Last synced: 06 Apr 2025
https://github.com/nusenu/ornetradar
Automatically detected Relay Groups on the Tor Network
metrics safety security tor tor-network
Last synced: 03 Jan 2026
https://github.com/azu/nextjs-cve-2025-29927-poc
Next.js PoC for CVE-2025-29927
Last synced: 12 Apr 2025
https://github.com/komachi/ansible-decent-desktop
Ansible playbook to provide decent desktop experience
ansible ansible-playbook desktop playbook security
Last synced: 22 Oct 2025
https://github.com/zelon88/scancore
A high performance, self-updating, single thread command-line virus scanner written in PHP.
antivirus antivirus-engine av-engine cli command-line file-scanner malware-scanner php scanner security security-scanner security-tools virus virus-scanner
Last synced: 11 Oct 2025
https://github.com/seisollc/goat
Seiso's Grand Opinionated AutoTester (GOAT)
goat governance-as-code lint security seiso standard test
Last synced: 24 Feb 2026
https://github.com/brunocampos01/seguranca-de-redes
Aulas, exercícios e resumos da matéria: segurança da informação.
criptografia-autenticada decrypt encr encrypt encryption-decryption ine ine5680 kali-linux metasploit network nmap openssl owasp redes security security-vulnerability seguranca ufsc
Last synced: 15 Apr 2025
https://github.com/thumpbo/cve-2025-30208-exp
CVE-2025-30208-EXP
cve cve-2025-30208 exploit exploits security security-tools vite vitejs vul
Last synced: 05 May 2025
https://github.com/hotaydev/audit-export
A handy tool to export npm audit results to a fully offline HTML page for a better view of your project's vulnerabilities.
audit npm-audit packages security vulnerabilities
Last synced: 15 May 2025
https://github.com/ivan-sincek/scrapy-scraper
Web crawler and scraper based on Scrapy and Playwright's headless browser.
bug-bounty crawler crawling downloader downloading ethical-hacking headless-browser javascript offensive-security penetration-testing python red-team-engagement scraper scraping scrapy security spider spidering web web-penetration-testing
Last synced: 15 Apr 2025
https://github.com/sap-samples/appgyver-auth-flows
SAP Cloud Identity and XSUAA authentication samples for SAP AppGyver. This repository shows how to apply OAuth 2.0 authorization and token flows to your SAP AppGyver apps.
authentication btp-use-case-factory cloud-foundry integration pkce sample sample-code sap-appgyver sap-btp sap-cap sap-cloud-identity sap-ias sap-xsuaa security
Last synced: 31 Aug 2025
https://github.com/kicksecure/tb-starter
Tor Browser Starter. Open Link Confirmation; Qubes integration; Command line --new-tab, --new-window; start menu entry; This package is produced independently of, and carries no guarantee from, The Tor Project.
debian firejail open-link-confirmation qubes secbrowser security tbb-starter tor-browser-starter whonix
Last synced: 19 Apr 2025
https://github.com/JChristensen/usb-condom
A little something for the tinfoil hat crowd.
Last synced: 17 Jul 2025
https://github.com/cloudoperators/greenhouse
Cloud operations platform
cloud compliance juno k8s kubebuilder kubernetes monitoring observability opentelemetry operations prometheus reactjs security
Last synced: 12 Jun 2025
https://github.com/polarspetroll/escapeapi
An API for escaping different kind of queries
api directory-traversal os-command-injection path-traversal security xss
Last synced: 15 Jun 2025
https://github.com/yowainwright/pastoralist
Pastoralist is a CLI tool for managing package.json overrides (or resolutions) with ease 👩🏽🌾
dependencies dependency-manager npm overrides pnpm resolutions security security-tools yarn
Last synced: 22 Apr 2025
https://github.com/securefix-action/action
GitHub Action to fix code securely
cicd github-actions oss security
Last synced: 23 Mar 2025
https://github.com/dkosmari/gnome-shell-extension-totp
A GNOME Shell extension to generate Time-based One-Time Passwords (TOTP aka Time-based OTP) for websites that use 2FA.
2fa 2factor cryptography gnome gnome-shell gnome-shell-extension javascript otp otp-generator otpauth security totp
Last synced: 21 Aug 2025
https://github.com/nugget/rickroll
Try `telnet macnugget.org`
network-service security troll
Last synced: 03 Jan 2026
https://github.com/lovasoa/samsung-email-password-decrypt
Decrypt encrypted passwords in EmailProvider.db on samsung phones.
android cryptography decoder forensics pasword samsung security
Last synced: 24 Mar 2025
https://github.com/geekmasher/ghastoolkit
GitHub Advanced Security Python Toolkit
advanced-security python security
Last synced: 05 May 2025
https://github.com/apratimshukla6/enyo
Enyo is a lightweight multistage partition-based encryption algorithm. Enyo cipher demonstrates good resistance to a brute-force attack. It is well suited for small-scale applications where the computational power is a bottleneck.
cryptography custom-encoder encryption-algorithm encryption-decryption enyo feistel-cipher owasp pypi pypi-package python security symmetric-key-cryptography url-safe
Last synced: 17 Jan 2026
https://github.com/michaeldim02/lykan
Password leak analysis program
breach c dictionary-attack leak leak-analysis password password-attack password-cracking security security-tools wordlist wordlist-attack
Last synced: 12 Apr 2025
https://github.com/theritex/router-switchcommands
RouterCommands es un repositorio creado para ayudar a aquellos gestores/administradores de servicios router
commands description help md5 ospf router security vlan vtp
Last synced: 27 Mar 2025
https://github.com/VERMAXVR/awsome_kali_MCPServers
awsome kali MCPServers is a set of MCP servers tailored for Kali Linux, designed to empower AI Agents in reverse engineering and security testing. It offers flexible network analysis, target sniffing, traffic analysis, binary understanding, and automation, enhancing AI-driven workflows.
agent kali-linux llm mcp-server security
Last synced: 17 Jun 2025
https://github.com/yoeunes/regex-parser
Treat regex as code in PHP: parse it, lint it, explain it, secure it, and ship it in CI.
ast code-analysis lexer parser pattern-matching pcre php regex security validation vulnerability-detection
Last synced: 07 Jan 2026
https://github.com/adamt20054/djscaptcha
A NPM module for Discord.js made to easily create CAPTCHAs to present to your Discord servers members.
bot captcha discord discord-js discord-verification discord-verification-bot djs djscaptcha djsv14 security verification
Last synced: 29 Oct 2025
https://github.com/echo-devim/inou
Tool useful to discover services behind unknown ports
hacking network network-security protocols python3 security service-detection service-discovery
Last synced: 27 Mar 2025
https://github.com/m3ssap0/springbreakvulnerableapp
WARNING: This is a vulnerable application to test the exploit for the Spring Break vulnerability (CVE-2017-8046). Run it at your own risk!
cve-2017-8046 exploit security security-tools spring-break spring-data-rest vulnerability vulnerability-scanners
Last synced: 17 Jul 2025
https://github.com/hlts2/crssh
SSH password crack for penetration tests using brute force and dictionary attacks.
brute-force-attacks bruteforce-password-cracker cli crack cracking cracking-password dictionary-attack golang penetration-test penetration-testing penetration-testing-tools security ssh ssh-crack
Last synced: 09 Apr 2025
https://github.com/shaadcode/payload-auditor
Payload CMS plugin for event tracking, auditing, and security. Monitor activities and analyze user behavior.
auditor cms payload payload-cms payload-plugin payloadcms security
Last synced: 19 Jun 2025
https://github.com/enygma/duoauth
PHP Library for easy integration with Duo Security's Two-Factor REST API
api api-client duo-security security security-tools
Last synced: 13 Apr 2025
https://github.com/jenkinsci/contrast-continuous-application-security-plugin
Jenkins Plugin from Contrast Security
devsecops jenkins jenkins-plugin security security-tools vulnerabilities
Last synced: 30 Apr 2025
https://github.com/kernel-guard/bpfcompat
Open-source eBPF compatibility evidence and CI gate
bpf bpfcompat ci compatibility ebpf github-actions kernel-testing kvm libbpf linux-kernel observability qemu security systems-programming vm-testing
Last synced: 02 Jul 2026
https://github.com/autostructure/secure_windows
Puppet module that hardens Windows Server to DoD STIG compliance
dod nist nist800-53 puppet security stig stig-vulnerabilities windows windows-server
Last synced: 11 Dec 2025
https://github.com/hsyntes/authentication-authorization-security
Authentication, Authorization and Security Back-End System with Node.js & Express.js & mongoDB - mongoose. Registering users to the database, authorization and authentication users, sending emails to users' email address to reset or update their password and more.
authentication authorization expressjs mongodb mongoose nodejs security
Last synced: 24 Apr 2025
https://github.com/mikasjp/wp-abuseshield
A simple and lightweight plugin that protects your WordPress against abuse.
abuse-detection abuseipdb hardening security wordpress wordpress-plugin
Last synced: 09 Oct 2025
https://github.com/pforemski/entropy-clustering
Entropy clustering of IPv6 networks, see https://ipv6hitlist.github.io/
Last synced: 14 Jan 2026
https://github.com/deadkennedyx/usualsuspect
Gem that tracks suspicious activity within your user sessions.
device-fingerprinting fingerprinting gem geolocalization geolocation proxy rails ruby ruby-on-rails rubyonrails security security-audit security-tools tor user-behavior-analytics vpn
Last synced: 06 Oct 2025
https://github.com/skybrud/skybrud.essentials
Library with common purpose functionality for working with .NET.
csharp dotnet enums essentials iso8601 json net-standard net5 net6 netframework netstandard parsing rfc2822 rfc822 security skybrud skybrud-essentials time xml
Last synced: 05 Mar 2026
https://github.com/1homsi/gorisk
Supply-chain risk intelligence that maps what your dependencies can do
cli cve dependency-analysis github-action go golang security static-analysis supply-chain
Last synced: 24 Feb 2026
https://github.com/doocs/.github
❤ Community health files for the @doocs organization
code-of-conduct contributing default doocs funding health issue pull-request security support
Last synced: 28 Jan 2026
https://github.com/0p4n1k/noctyra
AST-based Python code transformation & deobfuscation framework
ast deobfuscation python reverse-engineering security
Last synced: 17 Apr 2026
https://github.com/celenityy/better-brave
My recommendations for the ultimate configuration of the Brave Browser :)
ads anti-fingerprinting anti-tracking brave brave-api brave-browser hardened hardening metrics privacy privacy-protection security security-hardening telemetry tracking
Last synced: 10 Feb 2026
https://github.com/mauhpr/agentlint
Real-time guardrails for AI coding agents — code quality, security, and infrastructure safety. 57 rules across 8 packs for Claude Code.
ai-agents claude-code cli code-quality developer-tools guardrails hooks linting python security
Last synced: 10 May 2026
https://github.com/laravel-validation-rules/exposed-password
Validate that a password hasn't been exposed in a data breach.
data-breach laravel laravel-5-package laravel-validation passwords php security
Last synced: 24 Oct 2025
https://github.com/cerbos/demo-graphql
A Typescript GraphQL demo of integrating Cerbos with GQL
access-control graphql nodejs policy security typescript
Last synced: 06 Oct 2025
https://github.com/cipherstash/proxy
Encrypt and search your sensitive data in PostgreSQL, with no SQL changes
encryption-in-use postgresql searchable-encryption security
Last synced: 16 Mar 2025
https://github.com/molotovcherry/stegcloak
[Rust] Hide secrets with invisible characters in plain text securely using passwords 🧙🏻♂️⭐
character cipher cryptography data-exfiltration encode encrypt hacking-tool hide infosec privacy rust security security-tools stealth steganography stegcloak width zero zwc
Last synced: 15 Oct 2025