Security
Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.
- GitHub: https://github.com/topics/security
- Wikipedia: https://en.wikipedia.org/wiki/Computer_security
- Aliases: security-tools, security-vulnerability, security-audit,
- Last updated: 2026-07-14 00:27:46 UTC
- JSON Representation
https://github.com/jakbin/whatweb
Next generation web scanner
hacking-tools kali-linux network-security penetration-testing penetration-testing-tools pypi python python3 scanner scanner-web security web-hacking web-scanner whatweb
Last synced: 18 Aug 2025
https://github.com/dukebarman/android-bulletins-harvester
a simple utility for parsing Android security bulletins
android go security security-tools
Last synced: 14 Jan 2026
https://github.com/lehcode/soakp
Secure OpenAI interactions with confidence - safeguard your OpenAI API keys and boost your app security
chatgpt-api openai openai-api security
Last synced: 07 Oct 2025
https://github.com/dajiaji/flask-paseto-extended
PASETO (Platform-Agnostic Security Token) for Flask applications.
flask flask-extension jose jwt paseto past python security token
Last synced: 23 Apr 2025
https://github.com/leklund/bauditor
run bundler-audit on a multiple repositories at once
bundler-audit ruby rubygems security
Last synced: 07 Jul 2025
https://github.com/riccio8/ThreatLab
Collection of tools for security purpouse
assembly cpp cybersecurity golang memo net network processes python security security-tools yara
Last synced: 08 Oct 2025
https://github.com/catalyst/patch-friend
Which of my hosts are affected by a security advisory?
debian python security security-advisories ubuntu
Last synced: 27 Apr 2025
https://github.com/anchore/s3c-workshops
Deploy Anchore Enterprise in an environment of your choice. Then follow through a series of labs that showcase how you can improve security across your software supply chain.
containers devsecops fedramp k8s sbom security supply-chain-security vulnerability-scanners
Last synced: 09 Oct 2025
https://github.com/anthonyharrison/csaf
CSAF generator and validator
csaf devsecops sbom security vex vulnerabilities
Last synced: 12 Jun 2025
https://github.com/jochasinga/firma
Simple Merkle tree implementation based on the Bitcoin white paper.
bitcoin blockchain firma hashtree merkle ocaml security
Last synced: 17 Nov 2025
https://github.com/itinerisltd/itineris-disable-xml-rpc
Disable WordPress XML-RPC via actions and filters
security wordpress wordpress-plugin xml-rpc
Last synced: 20 Aug 2025
https://github.com/sjinks/setcap-static
A statically linked lightweight version of setcap(8) to use in `scratch` images
capabilities linux-capabilities scratch-image security security-tools setcap
Last synced: 10 Apr 2025
https://github.com/heyvaldemar/amazon-eks-cluster-pipeline-terraform
Amazon EKS Cluster Pipeline with Terraform
aws devops dynamodb eks-cluster eksctl github-action gitlab gitlab-ci helm helm-charts key-management-service kubernetes kubernetes-cluster orchestrator pre-commit s3 secrets security terraform terraform-state-backend
Last synced: 13 Apr 2025
https://github.com/codexlynx/osquery-graphene
OSQuery GraphQL web service.
blue-team graphql incident-response osquery security
Last synced: 22 Apr 2025
https://github.com/sierrasoftworks/honeypot
A service designed to track malicious SSH login attempts
Last synced: 09 Apr 2025
https://github.com/dlion/go-ofile
Use this tool to search for a specific file type in a given domain.
Last synced: 03 Jul 2025
https://github.com/sudoeren/arhus
local-first security analysis for TypeScript & JavaScript
ast bun cli devsecops javascript linter security security-scanner static-analysis typescript
Last synced: 15 Jul 2026
https://github.com/simonkowallik/irulescan
:shield: irulescan - security analyzer for iRules
dast docker docker-image f5 f5-bigip f5networks irules sast security security-tools static-code-analysis tcl
Last synced: 22 Apr 2025
https://github.com/demon1a/bounties-uwu
Chrome extension uses the HackerOne API to reveal hidden rewarded bounties on HackerOne
bugbounty hackerone javascript security tools
Last synced: 14 Oct 2025
https://github.com/flashnuke/ftpnuker
A tool for brute-forcing FTP
bash cyber ftp ftp-security kali-linux pentest pentesting pentesting-tools security
Last synced: 23 Aug 2025
https://github.com/bmedicke/reed
notes about 🔍 Reverse Engineering and 🔥 Exploit Development
debugging exploit-development reverse-engineering security
Last synced: 09 Oct 2025
https://github.com/dhanushnehru/pdf-xss-checker
pdf-xss-checker is a Node.js tool designed to scan PDF files for potential Cross-Site Scripting (XSS) vulnerabilities. It analyzes embedded scripts, forms and suspicious content to help identify security risks in PDFs before they're distributed or displayed in browsers.
pdf pdf-document scanner security security-audit securitytools vulnerability xss xss-attacks xss-detection xss-filter xss-scanner xss-vulnerability
Last synced: 19 Jun 2025
https://github.com/bandarlabs/cveingest
Convert CVEs into LLMs friendly input with multi level crawling
Last synced: 03 Jul 2025
https://github.com/infobyte/faraday-client
GTK client of FaradaySEC
collaboration faradaysec gtk security security-tools vulnerability
Last synced: 06 Jul 2025
https://github.com/ispaneli/facial_recognition_system
A service that implements face authentication for company employees.
async asyncio backend client-server computer-vision cv cv2 face face-recognition facial-recognition fastapi jwt-auth microservice opencv python python-types python3 security swagger-ui uvicorn
Last synced: 28 Oct 2025
https://github.com/cpan-security/security.metacpan.org
CPAN Security WG website
cpan cpan-security perl security website
Last synced: 12 Apr 2025
https://github.com/zekker6/devsandbox
Sandbox for running untrusted dev tools. Filesystem isolation via bubblewrap, optional MITM proxy for traffic inspection. Perfect for AI coding assistants.
ai-coding-assistant bubblewrap claude-code development-tools linux mitm namespaces proxy sandbox security
Last synced: 29 Apr 2026
https://github.com/eliasgranderubio/odin_eye
a tool for doing footprinting. This tool is an online modules subset of Odin Project shown by Elias Grande and Alejandro Ramos at RootedCon 2016 conference.
footprinting hacking-tool security
Last synced: 26 Mar 2025
https://github.com/akmalovaa/crowdsec-blocklist
Crowdsec Blacklist mirror - allows you to create a local HTTP service with an up-to-date list of harmful IP addresses
blocklist crowdsec docker docker-compose firewall security
Last synced: 19 Apr 2025
https://github.com/mindpatch/latestpocs
Latest PoC exploit & Writeups
cves pentesting poc proof-of-concept security
Last synced: 20 Sep 2025
https://github.com/marcelo-davanco/quality-scanner
Quality Scanner — SonarQube + NestJS/TypeScript analysis toolkit with Docker, 8-step scanner, quality gate, and Next.js dashboard
code-analysis code-quality docker eslint nestjs security sonarqube spectral trivy typescript
Last synced: 20 Feb 2026
https://github.com/hcl-tech-software/appscan-sast-action
Integrate static security testing with HCL AppScan on Cloud using GitHub Actions
action appscan github github-actions sast scanning security security-automation security-scanner security-testing security-tools
Last synced: 31 Aug 2025
https://github.com/divineomega/php-password-cracker
PHP package to crack passwords
password password-cracker php security
Last synced: 25 Jul 2025
https://github.com/fvinas/tf_aws_lambda_ip_whitelist
An AWS Lambda-based mechanism to allow temporary IP whitelisting via security groups
aws-ec2 aws-lambda aws-security-group infrastructure lambda-functions security terraform-module whitelist
Last synced: 14 Apr 2025
https://github.com/eqstlab/cve-2024-53677
File upload logic flaw in Apache Struts2 exploit
cve-2024-53677 java jsp proof-of-concept security struts2 vulnerability
Last synced: 16 Sep 2025
https://github.com/m3ssap0/data-grabber
This is a simple PHP script that can be used as a cookie grabber / session stealer. It uses MySQL to store data in a structured way.
cookie-grabber cookie-stealer security security-tools session-grabber session-stealer
Last synced: 28 Jun 2025
https://github.com/nuztalgia/botstrap
An easy-to-use utility toolbelt for Discord bots written in Python.
beginner-friendly bot bot-framework botstrap cli command-line discord discord-bot easy-to-use encryption python python-3 python-library secure security utilities
Last synced: 15 Apr 2025
https://github.com/nshkrdotcom/guardrail
GUARDRAIL - MCP Security - Gateway for Unified Access, Resource Delegation, and Risk-Attenuating Information Limits
gateway gateway-api gateway-microservice gateway-services information-security information-security-policies mcp mcp-client mcp-host mcp-server mcp-servers mcp-tools protocol protocol-specification protocols security security-automation security-tools service-mesh
Last synced: 26 Dec 2025
https://github.com/mwolff44/pi-secured-setup
Secure setup and permission hardening extension for the Pi coding agent.
coding-agent hardening permissions pi pi-extension policy security skill-verification
Last synced: 06 Jul 2026
https://github.com/iwpnd/fiber-key-auth
fiber api key authentication middleware
Last synced: 20 Mar 2025
https://github.com/murphysecurity/murphysec-jenkins-tools
将墨菲安全的代码检测能力集成到 Jenkins 中,提高线上代码安全质量
Last synced: 25 Apr 2025
https://github.com/royashbrook/hush
a secret store for AI agents with one rule: the agent never sees the plaintext. get a secret once into the OS keychain, then inject it into commands forever. no get, cross-platform, MIT.
agent-skills ai-agents claude-code cli credentials developer-tools keychain royashbrook-tool secrets secrets-management security
Last synced: 11 Jul 2026
https://github.com/gpestana/sectools
Security tools with emphasis in OSINT, recon and enumeration. Written in Golang
enumeration go golang osint security security-tools
Last synced: 23 Apr 2025
https://github.com/karmadeb/lockloginreborn
LockLoginReborn, is a rework of the LockLogin plugin. This plugin allows server owners to keep their server and players safe, LockLogin is an inteligent plugin which also parches some of the very known exploits to bypass login systems.
bungeecord java login plugin security spigot
Last synced: 01 Oct 2025
https://github.com/flutterguard/flutterguard-cli
Know and see everything an attacker can extract and get from your published Flutter app
android apk cli dart exploit flutter opensource reverse-engineering security static-analysis
Last synced: 13 Jan 2026
https://github.com/scan-io-git/scan-io
Multitool for Enhancing Code Security
appsec devsecops go golang sast scanio security security-tools static-analysis vulnerability
Last synced: 12 Jan 2026
https://github.com/arturmiller/adversarial_ml_ctf
This repository is a CTF challenge, showing a security flaw in most (all?) common artificial neural networks. They are vulnerable for adversarial images.
adversarial challenge ctf docker flask machine-learning optimization python security website
Last synced: 18 Apr 2025
https://github.com/permify/permify-cli
command line interface for Permify
abac fine-grained-access-control go golang least-privilege permission rebac security
Last synced: 13 Jul 2025
https://github.com/rezen/openvas-up
Levels up scripting OpenVAS
openvas python security vulnerability-scanners
Last synced: 10 Jun 2025
https://github.com/mitre/apache-tomcat-8-cis-baseline
(WIP) (Alpha) InSpec profile for CIS Apache Tomcat v8 Benchmark
apache inspec inspec-profile mitre-corporation mitre-inspec mitre-saf security tomcat
Last synced: 21 Apr 2025
https://github.com/antoniopaya22/node-secure-rest-template
Node JS Secure API-Rest Template
api-rest cibersecurity express node security type
Last synced: 11 Jun 2025
https://github.com/fractaslabs/silverstripe-security-layouts
SilverStripe module for fancier security layouts (login, logout, lost password etc.)
security silverstripe silverstripe-4 silverstripe-module silverstripe-theme
Last synced: 15 Jan 2026
https://github.com/authress/authress-sdk.cs
The Authress SDK for C# provides authorization as a service with fully compatible REST apis.
authentication authorization authorization-backend authorization-framework authorization-middleware authorization-server authress nuget security
Last synced: 13 May 2025
https://github.com/snehmehta/smartotp
making otp smarter
flask innovation otp python security webapp
Last synced: 14 Aug 2025
https://github.com/aligent/magento2-bypass-2fa
Magento module allowing two-factor authentication (2FA) to be bypassed for development purposes.
Last synced: 11 Apr 2025
https://github.com/wp-cli/role-command
Adds, removes, lists, and resets roles and capabilities.
access cli hacktoberfest role security wordpress wp-cli wp-cli-package
Last synced: 12 Jun 2025
https://github.com/dolmen-go/mylogin
Utilities for reading and writing MySQL' ~/.mylogin.cnf (encrypted MySQL client credentials storage)
credentials encryption golang-library mylogin mysql mysql-client security
Last synced: 12 Jun 2025
https://github.com/xolox/python-crypto-drive-manager
Unlock all your encrypted drives with one pass phrase
disk-encryption encryption linux luks mount python security
Last synced: 23 Apr 2025
https://github.com/rix4uni/haktrailsfree
Get 10k subdomains in securitytrails using cookie without apikey.
bug-bounty bugbounty bugbountytips hacking infosec osint osint-resources osint-tool penetration-testing pentest-tool pentesting recon reconnaissance security security-tools subdomain-enumeration subdomains threat-intelligence
Last synced: 09 May 2025
https://github.com/nodecross/nodex
E2E Secure Messaging Platform
decentralized-identifiers edge-computing embedded-security end-to-end-encryption identity iot iot-device iot-platform iot-security root-of-trust rust security
Last synced: 17 Jan 2026
https://github.com/broadinstitute/dsp-appsec-infrastructure-apps
This repository hosts DSP AppSec internal infrastructure apps deployed in GKE.
application-security appsec appsec-tools appsecurity cis-scanner devsecops secure-development security security-automation security-scan security-scanner security-tools zap-scanner
Last synced: 05 Sep 2025
https://github.com/ryanbalfanz/rtspios
A Raspberry Pi distribution that turns your Pi in to an RTSP server (e.g. security camera)
camera custompios cvlc raspberry-pi-camera raspberrypi raspicam raspivid rtsp rtsp-server security vlc
Last synced: 24 Apr 2025
https://github.com/saadbazaz/crackhead
A simple, smart & distributed password-cracking algorithm
algorithm password-cracker security
Last synced: 13 Jun 2025
https://github.com/solun-pm/solun
Solun is a service that allows you to share files, text and sending emails with end-to-end encryption, without having to worry about your privacy.
docker end-to-end-encryption mongodb nextjs privacy security
Last synced: 15 Jun 2025
https://github.com/logchange/eir
🐛🗡️👩⚕️ eir is a tool to report system vulnerabilities 👩⚕️🗡️🐛
docker gitlab graalvm java micronaut report security security-tools vulnerabilities
Last synced: 05 Jul 2025
https://github.com/burakozcn01/certstream-server-rust
High-performance Certificate Transparency (CT) monitoring tool written in Rust. Real-time stream of newly issued SSL/TLS certificates from CT logs. Rust implementation of certstream-server with improved performance and memory efficiency.
certificate-transparency certstream ct-logs rust security threat-intelligence websocket x509
Last synced: 22 Feb 2026
https://github.com/aw-junaid/security-and-hacking
Explore ethical hacking and security: penetration testing, vulnerability scanning, and exploit development. Includes tools, scripts, and hands-on labs.
ethical-hacking exploit hacking penetration-testing security vulnerabilities vulnerability-scanners
Last synced: 08 Jan 2026
https://github.com/contributte/event-dispatcher-extra
:recycle: Nette-based Symfony events for application, presenter, form, latte, templates, security and many others.
application contributte event-dispatcher event-emitter events mvc nette nette-framework security
Last synced: 19 Jul 2025
https://github.com/DemiMarie/SlipRock
A secure local interprocess communication library.
interprocess-communication secure-by-default security sockets unix windows
Last synced: 11 Mar 2025
https://github.com/stijncaerts/doss
Development of Secure Software: course summary
Last synced: 22 Feb 2026
https://github.com/therootcompany/base62-token.js
Generate & Verify GitHub-style & npm-style Base62 Tokens
base62 base62-encoding github-tokens-generator npm-tokens-generator security
Last synced: 17 Jul 2025
https://github.com/mtk911/sada
SADA Webapplication Scanner
bash bash-hacks bash-script bash-scripting scanner-web scripting security security-scanner security-tools security-vulnerability vulnerability-detection vulnerability-scanner vulnerability-scanners
Last synced: 28 Apr 2025
https://github.com/jaybrown/application-launch-monitor-alm-
Extend macOS Gatekeeper functionality by verifying applications at every launch
anti-malware anti-virus antimalware antivirus codesign gatekeeper macos malware privacy security
Last synced: 03 Mar 2026
https://github.com/carlocorradini/graphql-auth-directive
GraphQL @auth directive that protects resources from unauthenticated and unauthorized access
auth authentication authorization graphql nodejs security typescript
Last synced: 16 Feb 2026
https://github.com/seznam/jailoc
🔒 Jail your AI agents — sandboxed Docker environments with network isolation for Opencode agents
ai-agents cli devtools docker docker-compose golang network-isolation opencode sandbox security
Last synced: 04 Apr 2026
https://github.com/liujed/dns01proxy
Proxy server for ACME DNS-01 challenges
acme acme-dns acme-sh acmesh caddy go golang https https-certificate lego security ssl ssl-certificate tls tls-certificate
Last synced: 02 Apr 2026
https://github.com/dk26/strict-path-rs
Handle paths from external or unknown sources securely. Defends against 19+ real-world CVEs including symlinks, Windows 8.3 short names, and encoding tricks and exploits.
directory-traversal file-security filesystem-security path-traversal-prevention path-validation rust rust-crate security type-safety web-security
Last synced: 22 Apr 2026
https://github.com/jessechale/halehound-cyd
ESP32-DIV HaleHound Edition for Cheap Yellow Display - Multi-protocol offensive security toolkit
bluetooth cc1101 cheap-yellow-display cyd esp32 esp32-diy hacking nrf24l01 offensive-security pentest security security-tools subghz wifi
Last synced: 12 Mar 2026
https://github.com/epappas/llmtrace
Zero-code LLM security & observability proxy. Real-time prompt injection detection, PII scanning, and cost control for OpenAI-compatible APIs. Built in Rust.
agentic ai-agents ai-infrastructure ai-security aiops chatgpt llm-inference llm-monitoring llm-security llm-security-compliance-prompt-injection llmops mlops observability openai pii-detection prompt-injection proxy rust security
Last synced: 19 Feb 2026
https://github.com/matricali/kaker-scripts
Compilation of files recovered from compromised hosts. This collection contains various scripts and tools used by the attackers.
attacker backdoors compilation files-recovered hacker-scripts kaker-scripts phishing-attacks scanners scripts security shell
Last synced: 15 Apr 2025
https://github.com/ryoppippi/bun-socket-scanner
A Bun security scanner that integrates with Socket.dev for package vulnerability detection
Last synced: 11 Sep 2025
https://github.com/ivan-sincek/malware-droppers
Custom malware droppers written in multiple languages.
c-sharp decoder defensive-security encoder ethical-hacking malware mimikatz offensive-security penetration-testing process-hollowing red-team-engagement reverse-engineering security visual-studio windows windows-penetration-testing
Last synced: 15 Apr 2025
https://github.com/bitsofinfo/vault-token-issuer
Simple REST API proxy and SPA for Hashicorp's Vault token auth method API(s), specifically create-orphan
ci-cd hashicorp-vault proxy security token-based-authentication vault
Last synced: 01 Nov 2025
https://github.com/maheshtechnicals/pdf-password-remover
Unlock password-protected PDF files instantly in your browser. Free, open-source, privacy-first, cross-platform PDF unlocker.
client-side cross-platform javascript open-source pdf pdf-password-remover privacy security unlock-pdf webapp
Last synced: 09 Jul 2026
https://github.com/veil-services/veil-go
The sensitive data firewall for AI. Detect and mask PII (Emails, Credit Cards, CPFs) locally with zero-latency before sending prompts to LLMs. Thread-safe & Production ready.
cybersecurity dlp golang llm openai pii-masking privacy security
Last synced: 13 Jan 2026
https://github.com/line/webauthndemo-kotlin
WebAuthnDemo Kotlin is a sample application demonstrating the integration of the webauthn-kotlin SDK for secure, password-less authentication in Android apps. It showcases the use of biometric and device credential authenticators, along with examples for registering and authenticating credentials.
authenticator demo fido2 kotlin passwordless security webauthn
Last synced: 02 Sep 2025
https://github.com/louib/challenge-response
Perform HMAC-SHA1 and OTP challenges with YubiKey, OnlyKey and NitroKey, in pure Rust.
authentication challenge-response encryption hmac hmac-sha1 nitrokey onlykey otp security yubico yubikey
Last synced: 24 Mar 2025
https://github.com/cerbos/cerbos-sdk-rust
Cerbos Rust SDK
access-control api-client authorization authz cerbos rust rust-library security
Last synced: 12 Apr 2025
https://github.com/jelastic-jps/ioncube-php
ionCube Loader Add-On for Running PHP Encoded Files in Jelastic
code-execution code-protection decoder encoder ioncube ioncube-php loader php php-encryption php-extension php5 php7 php7-extension security security-tools
Last synced: 22 Apr 2025
https://github.com/infineon/ek-based-onboarding-optiga-tpm
Guide for Setting Up and Operating Device Onboarding with OPTIGA™ TPM Endorsement Key (EK)
Last synced: 11 Jul 2025
https://github.com/oliverbebber/comptia-sy0-601-study-notes
CompTIA SY0-601 Study Notes
Last synced: 09 Mar 2026