An open API service indexing awesome lists of open source software.

Security

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

https://github.com/adeadfed/myaso

A steganographic payload obfuscator.

antivirus-evasion docker obfuscation python3 security shellcode stegonography

Last synced: 14 Apr 2025

https://github.com/rigs-it/xanitizer-action

GitHub action to download and install Xanitizer, and to run a Xanitizer security analysis in a GitHub workflow.

action analysis security security-tools vulnerability-detection xanitizer

Last synced: 17 May 2026

https://github.com/acatton/python-spm

:muscle: Simple and secure sub processes manager

clean-api for-humans injection python secure security shell subprocess

Last synced: 13 Apr 2025

https://github.com/youichi-uda/sbomhub

日本市場向けオープンソースSBOM管理ダッシュボード / Open-source SBOM management dashboard with NVD/JVN vulnerability correlation, Japanese UI, and METI guidelines compliance

compliance cyclonedx cyclonedx-sbom devsecops docker sbom sbom-management security self-hosted software-bill-of-materials spdx spdx-sbom vex vulnerability-management

Last synced: 05 Jul 2026

https://github.com/firaskahlaoui/university-codes-and-tps

This repository contains my university projects and practical sessions (TPs) from my studies in Computer Science and Big Data. It includes various implementations in data science, machine learning, and web development, showcasing my progress and skills in programming, data analysis, and model building.

cloud database python security streamlit visualization web-framework

Last synced: 22 Apr 2025

https://github.com/rezmoss/sbomlyze

SBOM diff & analysis tool for software supply-chain security, integrity drift detection, and CI/CD enforcement

compliance cyclonedx dependency-graph devsecops diff drift-detection go sbom sbom-tool security software-supply-chain spdx supply-chain-security syft tools

Last synced: 18 Feb 2026

https://github.com/whomrx666/x-toolkit

Advanced Reconnaissance tool to enumerate attacking surface of the target

information-gathering kali-linux linux scanner security security-tools termux vulnerability x-toolkit

Last synced: 30 Jun 2025

https://github.com/dvershinin/nginx-honeypot

NGINX honeypot with lots of honey

bots firewall honeypot ipset nginx rhel security

Last synced: 02 Aug 2025

https://github.com/anqorithm/fastapi-keycloak

This project demonstrates how to integrate Keycloak with a FastAPI application using Docker and Docker Compose for authentication.

authentication fastapi keycloak python security

Last synced: 31 Oct 2025

https://github.com/novusvetus/action-phpinsights

GitHub phpinsights action. This workflow check the PHP files for the wanted coding standards and security issues.

codechecker codequality codereview github github-action github-actions hacktoberfest insights marketplace marketplace-released php php7 php8 phpinsights security workflow workflows

Last synced: 25 Jul 2025

https://github.com/nwtgck/piping-chunk-web

📦 Chunked Stream File Transfer for Web Browser with End-to-End Encrypted

chunked-uploads end-to-end-encryption file-transfer piping-server security typescript vue

Last synced: 07 May 2025

https://github.com/hxr16f/antiav

Anti AntiVirus + Obfuscator - make any file undetectable.

anti-anti-virus antivirus converter obfuscate packer security

Last synced: 20 Jul 2025

https://github.com/niluxv/secmem-proc

Process hardening in rust

rust security

Last synced: 05 Sep 2025

https://github.com/jarmani/opentestbsd

OpenBSD as the ultimate platform for pentesting and security certification training! 🔒🚀

openbsd pentest pentesting security

Last synced: 24 Oct 2025

https://github.com/metemaddar/django_hide

Django package to hide from wappalyzer

django security

Last synced: 14 Jan 2026

https://github.com/jotygill/macro-generator

Generate malicious macros for MS Office and Libreoffice, created during OSCP prep

ctf macro macros oscp pentest security

Last synced: 09 Oct 2025

https://github.com/alifanov/scopegate

AI Access Proxy Layer — granular permission gateway for AI agents. Connect services, define scopes, get an MCP endpoint.

ai-agents llm llm-ops scope security

Last synced: 04 Apr 2026

https://github.com/wtfender/cf-lambda-public-url-prohibited

Detect publicly accessible Lambda Function URLs in your AWS account

aws config lambda security

Last synced: 17 Mar 2026

https://github.com/axafrance/auth-worker

Make Oidc authentication easy with a cross-framework / service worker solution

axa oidc security service-worker typescript

Last synced: 12 Oct 2025

https://github.com/sparkpost/auditmated

Automated npm auditing

bash npm security sp-utils

Last synced: 24 Apr 2025

https://github.com/otto-aa/solid-security-basics

Basic security considerations for solid applications

security solid

Last synced: 09 Feb 2026

https://github.com/ozbillwang/keycloak-compose

Run keycloak and keycloak cluster with docker compose - Up and Running in Seconds

authentication devops docker docker-compose keycloak keycloak-cluster security

Last synced: 25 Apr 2025

https://github.com/vaibhavpandeyvpz/jweety

Simple JWT (RFC 7519) encoding/decoding and validation library, for PHP >= 5.3.

authentication jsonwebtoken jwt php security

Last synced: 24 Apr 2025

https://github.com/anatol/tang.go

Pure Golang implementation of server-side ECMR exchange functionality (Tang server)

clevis security tang

Last synced: 06 Jul 2025

https://github.com/prbinu/zcretshare

A command-line tool for sharing secret/key materials between two (or more) users using SSH keys

encryption golang gpg key-management pgp port-forwarding secret-sharing security security-tool ssh usable-security

Last synced: 29 Jan 2026

https://github.com/geritol/write-guard

Github Action to enforce file level write access for monorepos

access-control github-actions monorepos security

Last synced: 14 Jan 2026

https://github.com/mawg0ud/invismalware

A Malware Evasion Technique, shellcode generation, syntax modification, anti-dynamic analysis & PE header modification.

antivirus cybersecurity dynamic-analysis exploit infosec malware payload research security shellcode static-analysis threat

Last synced: 16 Oct 2025

https://github.com/nowsecure/nowsecure-sbom-action

Generate a Mobile SBOM for an application and submit to the Dependency submission API

action analysis dependabot frida nowsecure security security-tools

Last synced: 09 Apr 2025

https://github.com/rifuki/dokuru

Agent-based Docker security audit platform with CIS Benchmark v1.8.0 compliance. Real-time WebSocket monitoring, automated vulnerability scanning, and interactive remediation

audit cis-benchmark compliance container container-security docker security

Last synced: 28 Jun 2026

https://github.com/firesphere/silverstripe-haveibeenpwnd

Check user passwords and emails against the HaveIBeenPwnd database

hacktoberfest haveibeenpwned password security silverstripe silverstripe-4 silverstripe-module

Last synced: 07 Oct 2025

https://github.com/tetratelabs/zta-demo-2022

Demo delivered at the 2022 ZTA and DevSecOps for Cloud Native Applications NIST conference

ngac security service-mesh wasm zero-trust

Last synced: 26 Apr 2025

https://github.com/katexochen/govulncheck-nixpkgs

Scanning nixpkgs for vulnerabilities in Go packages

go golang nix nixos nixpkgs security

Last synced: 26 Oct 2025

https://github.com/lucthienphong1120/fake-link

What you see is not necessarily the truth!

danger fake links security

Last synced: 28 Feb 2026

https://github.com/cx330blake/zype

ZYPE: Your Payload Encryptor. MSFvenom shellcode got detected? ZYPE encrypt and obfuscate the shellcode for you!

cybersecurity encryption hacking hacking-tools malware malware-analysis malware-research obfuscation red-team security shellcode zig

Last synced: 14 May 2026

https://github.com/houarizegai/aes

AES algorithm implementation in Java

aes aes-encryption cryptography information-security security

Last synced: 16 Mar 2026

https://github.com/potato-industries/dartrs

portable dart based reverse shell

dart reverse-shell security

Last synced: 24 Oct 2025

https://github.com/ypcrts/securemodelines

Secure alternative to Vim modelines. Maintained, active fork.

modeline security vim vim-modelines vim-plugin

Last synced: 09 Apr 2025

https://github.com/canack/bad-mcp

10 intentionally malicious MCP servers that exploit protocol features to attack AI clients. For security research and defense testing.

ai-security llm-security mcp mcp-server model-context-protocol red-team rug-pull security security-research tool-posioning

Last synced: 08 Jul 2026

https://github.com/turbot/steampipe-mod-terraform-azure-compliance

Run compliance and security controls to detect Terraform Azure resources deviating from security best practices prior to deployment using Powerpipe and Steampipe.

azure compliance hacktoberfest powerpipe powerpipe-mod security sql steampipe steampipe-mod terraform

Last synced: 22 Apr 2025

https://github.com/m3nu/wp-audit

Audit the versions of your Wordpress sites to find old, vulnerable versions.

golang security security-audit security-tools wordpress

Last synced: 24 Oct 2025

https://github.com/krishpranav/sniff

A Simple Golang Tool That Automates OSINT For Threat Intelligence And Mapping Your Attack Surface.

attack attack-defense attack-surface attack-surfaces bugbounty go golang recon reconnaissance scanner security web-security

Last synced: 14 Apr 2025

https://github.com/plumsydev/neptune-waf.app

Neptune is a Web Application Firewall that you can use to protect your domains against common attacks (XSS, SSRF, SQLI, Path Traversal) and many others, it also can be used to hide your web server backend IP and protect against most DDoS attacks, come visit us !

api api-security application ddos firewall http-proxy letsencrypt neptune neptunewaf owasp security tcp-proxy waap waf web web-application-firewall xss

Last synced: 13 Jan 2026

https://github.com/samiahmedsiddiqui/prevent-xss-vulnerability

This WordPress plugin enhances website security by preventing Cross-Site Scripting (XSS) vulnerabilities. It blocks and encodes malicious characters in URLs, escapes HTML in `$_GET` variables, and provides customizable settings for website owners.

encoding escape-html reflected-xss-vulnerabilities reflective reflective-injection security security-vulnerability self-xss wordpress xss xss-detection xss-vulnerability

Last synced: 12 Apr 2025

https://github.com/volkansah/implementing-ai-systems-whitepaper

This whitepaper provides best practices and concrete examples for the secure implementation of artificial intelligence in web applications. It covers topics such as security, data protection, ethics, AI models and algorithms, development process, user training, and regulation.

ai api artificial-intelligence artificial-neural-networks chatgpt gpt gpt4 how-to security whitepaper whitepapers

Last synced: 12 Sep 2025

https://github.com/kuntoaji/enkrip

encrypt & decrypt Active Record attributes with Message Encryptor

activemodel activerecord activesupport decryption encryption gem message-encryptor ruby ruby-gem ruby-on-rails security

Last synced: 21 Jun 2025

https://github.com/timoa/secure-go-backend-clean-architecture

Project that provides DevSecOps best practices on the Go Backend Clean Architecture

devsecops go golang security security-automation

Last synced: 08 May 2025

https://github.com/VolkanSah/Implementing-AI-Systems-Whitepaper

This whitepaper provides best practices and concrete examples for the secure implementation of artificial intelligence in web applications. It covers topics such as security, data protection, ethics, AI models and algorithms, development process, user training, and regulation.

ai api artificial-intelligence artificial-neural-networks chatgpt gpt gpt4 how-to security whitepaper whitepapers

Last synced: 12 May 2025

https://github.com/apocas/wireguarode

Wireguard with ACLs and TOTP 2FA

acls iptables javascript nodejs security vpn wireguard

Last synced: 03 Oct 2025

https://github.com/hexydec/torque

A Wordpress plugin to optimise the transport of your website to the client. Reduce the load on your server and make your Wordpress website fly!

minification optimization performance security wordpress

Last synced: 18 Nov 2025

https://github.com/brucewind/cryptoppinndk

A repo for hiding encrypt algorithm working with CryptoPP.

android crypto cryptopp jni jni-android ndk security

Last synced: 15 Apr 2025

https://github.com/plume-org/rocket_csrf

Rocket fairing for automatic csrf protection

csrf fairing rocket rust security web

Last synced: 13 May 2025

https://github.com/sam-k/pager-sec

Hacking hospital pagers, then building an encrypted solution.

arduino encryption pagers sdr security

Last synced: 02 Aug 2025

https://github.com/k4yt3x/ssh_config

K4YT3X's Hardened OpenSSH Client Configuration

hardening linux openssh security ssh

Last synced: 29 Oct 2025

https://github.com/existenznl/permcheck

PermCheck is a little tool that checks if the files in a PHP project have the executable bit set properly.

executable executable-file php security security-tools security-vulnerability

Last synced: 14 Apr 2025

https://github.com/mh37/Argos

A passive WiFi tracking and profiling based on probe request frames.

linux pentesting probe-requests python reconnaissance security sniffing tracking wifi wireless

Last synced: 23 Jul 2025

https://github.com/lazureykis/throttlecrab

High-performance GCRA rate limiter for Rust. Multi-protocol server (HTTP, gRPC, Redis/RESP) with advanced metrics, or embed as a minimal library. Self-tuning memory management 🦀

api-gateway api-protection cloudnative cloudnative-services ddos-protection docker gcra grpc microservices rate-limit rate-limiter rate-limiting rate-limits ratelimit ratelimiter ratelimiting redis rust security throttling

Last synced: 22 Aug 2025

https://github.com/cedricbonhomme/ip-link

Visualizing the relationships between different IP from network traffic capture.

circos network-traffic-capture pcap python security visual-analysis visualisation

Last synced: 14 Apr 2025

https://github.com/josehelps/blackcert

Blackcert monitors Certificate Transparency Logs for a keyword. Blackcert collects any certificate changes for this keyword and also checks if any domain changes with that keyword look like a phishing domain.

certificate monitoring security

Last synced: 14 Apr 2025

https://github.com/ricco386/cyber501x-cybersecurity-fundamentals

RITx: CYBER501x Cybersecurity Fundamentals - Personal study notes

mooc security study-notes

Last synced: 12 Apr 2025

https://github.com/apetenchea/earl

Evaluate Application Risk Level

android malware-detection security tensorflow

Last synced: 14 May 2025

https://github.com/turbot/steampipe-export

Steampipe Export is a zero-ETL CLI to fetch data from cloud services and APIs. Hundreds of plugins with thousands of documented examples.

aws azure backup data devsecops etl gcp golang kubernetes security steampipe steampipe-engine zero-etl

Last synced: 31 Jul 2025

https://github.com/Archetypum/theSuffocater

theSuffocater is an extensible module manager/collection on UNIX admin scripts that allows you to quickly harden your server and deploy services in few clicks.

bash bsd cybersecurity cybersecurity-tools foss gnu gnu-linux linux python python3 security security-automation security-tools server server-side shell unix

Last synced: 24 Mar 2025

https://github.com/1hehaq/oty

Oty is a fast, customizable, CLI tool designed to streamline your Bug Bounty and Pentesting workflows. Powered by a simple yet flexible YAML based DSL, Oty allows you to integrate your tools into it

automation bugbounty developer devops pentest security

Last synced: 26 Jan 2026

https://github.com/mablanco/docker-reconftw

Docker image for reconftw, a simple script intended to perform a full recon on an objective with multiple subdomains

docker pentesting security

Last synced: 11 Jul 2025

https://github.com/jonathan-vella/architecting-for-success

This repository enables partners to help customers move with confidence with the right mix of skilling and resources to facilitate migration, modernization, and innovation with Azure OpenAI.

ai analytics azure cloudadoption migration networking openai openai-chatgpt security wellarc

Last synced: 07 Apr 2026

https://github.com/badisi/auth-js

🛡️ Authentication and authorization support for web based desktop and mobile applications

angular auth authentication authn authorization capacitor cordova hybrid identity ionic mobile oauth oauth2 oidc openid openidconnect security web

Last synced: 12 Apr 2025

https://github.com/0xn0ne/sensitive-helper

基于正则表达式的本地文件敏感信息数据挖掘助手。Regular Expression Based Data Mining Assistant for Local File Sensitive Information.

aksk infomation jwt scanner security sensitive

Last synced: 11 Apr 2025

https://github.com/alphaville/safemsg

SafeMessage - Secure web-based message exchange system

encryption javascript message-exchange secure-by-default security

Last synced: 10 Apr 2025

https://github.com/actions-rust-lang/audit

Audit Rust Dependencies using the RustSec Advisory DB

cargo-audit ci github-actions hacktoberfest rust rust-lang rustsec security

Last synced: 10 Apr 2025

https://github.com/shayanzare/admin-page-finder

This is a simple script to finding website admin page.

admin-page-finder hacking hacking-tool ruby security

Last synced: 28 Mar 2025

https://github.com/codestates-seb/seb39_main_013

고오급 남성 쇼핑몰 STATE MALL 입니다 https://statemall.click/

jpa mysql react reactquery security spring-boot styled-components

Last synced: 13 Apr 2025

https://github.com/jonhadfield/sts

Simplify working with AWS STS credentials and MFA

2fa aws aws-cli aws-sdk cli golang iam mfa security sts

Last synced: 15 Jul 2025

https://github.com/tspascoal/dependabot-alerts-helper

A set of (simple) scripts to help manage dependabot alerts

dependabot scripts-collection security

Last synced: 07 May 2025