An open API service indexing awesome lists of open source software.

Security

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

https://github.com/nyxoraai/nyxora

A zero-trust, local-first AI execution framework for autonomous Web3 agents. Features OS-native keyring security, advanced DeFi automation, and Google Workspace integration.

ai-agent automation cryptocurrency defi docker local-first local-first-ai mcp nodejs nyxora openclaw react security web3 zero-trust

Last synced: 27 Jun 2026

https://github.com/xamiron/owasp-top-10-vulnerabilities-note

A vulnerability is a hole or a weakness in the application, which can be a design flaw or an implementation bug, that allows an attacker to cause harm to the stakeholders of an application.

hacking-notes owasp-top-10 security vulnerability-assessment

Last synced: 19 Feb 2026

https://github.com/euandrelucas/adg-crypto

API simples e rápida para criptografar textos e arquivos com Node.js + Fastify.

crypto decryption encryption file-encryption secure-api security text-encryption

Last synced: 25 Apr 2025

https://github.com/krisarmstrong/seed

Portable network diagnostic appliance — real-time link, switch, DHCP, DNS, Wi-Fi, and security posture from any network jack.

cisa-kev cve go hipaa network-diagnostics network-monitoring network-tools raspberry-pi security wifi

Last synced: 29 May 2026

https://github.com/victoralfred/devsec

MLSecOps security pipeline tool - automated scanning, policy enforcement, compliance mapping, and ML validation for CI/CD

cli compliance devsec golang iso27001 mlsecops opa policy-as-code sast sbom secrets-detection security slsa soc2 supply-chain-security vulnerability-scanner

Last synced: 12 Mar 2026

https://github.com/ribafs/laravel7-acl

ACL Implementation to laravel 7 applications

access acl laravel laravel7 security

Last synced: 07 Feb 2026

https://github.com/sekgobela-kevin/webrute

Python bruteforce library for http requests

asyncio bruteforce bruteforcer http login python requests security

Last synced: 31 May 2026

https://github.com/m3rcurylake/telecam

A Surveillance Camera Setup made with a ESP32-CAM and a PIR Sensor (HC-SR501) and a Telegram Bot

esp32 esp32-cam motion-detection pir-sensor security

Last synced: 15 May 2026

https://github.com/mdsakibanwar/gosonar

Binary symbolic execution for detecting uncontrolled recursion in Go binaries. Published at IEEE S&P 2025.

angr go golang security security-tools symbolic-execution

Last synced: 29 Apr 2026

https://github.com/uchida16104/healthanalysis

It abstracts the health status of each device from its operational time calculated from RescueTime and analyzes the data.

data-analysis portfolio portfolio-website security security-tool

Last synced: 02 Feb 2026

https://github.com/dustin-decker/compose-enforcer

ComposeEnforcer validates that a provided docker-compose file meets restrictions set.

docker docker-compose docker-swarm security swarm

Last synced: 17 Feb 2026

https://github.com/thepredictivedev/biopaywebapp

Minimal biometric payment web app prototype with basic HTML front end.

authentication biometrics html payments security webapp

Last synced: 10 Feb 2026

https://github.com/sertemre/kripto_cuzdan_adres_dogrulayici

Bitcoin (BTC) veya Ethereum (ETH) gibi kripto para adreslerinin geçerli olup olmadığını kontrol eden bir program

address-checker address-format address-validation bitcoin blockchain blockchain-tools btc crypto crypto-address crypto-validation cryptocurrency eth ethereum security

Last synced: 14 Apr 2026

https://github.com/eagleeggs/bugbounties

Authorized dislosures of bugbounties that have been resolved

bugbounty bugcrowd fitbit penetration-testing security

Last synced: 19 Mar 2026

https://github.com/husinn-abd/vibeaudit

Local-first AI-aware repository security auditor for secrets, vulnerabilities, policy gates, and ISO evidence support.

devsecops iso27001 policy-as-code sbom secrets-scanning security vulnerability-scanner

Last synced: 05 Jun 2026

https://github.com/ghada-ch/gitguard-ai

AI-powered Git security & risk scanner for detecting secrets, vulnerabilities, and dangerous code before commits or CI.

ci-cd cli code-analysis developer-tools devtools eslint-alternative git javascript nodejs npm-package security security-scanner snyk-alternative static-analysis typescript

Last synced: 16 Apr 2026

https://github.com/csirtgadgets/dnsdb-py

a simpler dnsdb python sdk

dnsdb farsight security

Last synced: 17 Mar 2026

https://github.com/taosin/openclaw-guard

Security proxy for OpenClaw — block dangerous shell commands, human-in-the-loop approval, token circuit breaker

ai-safety cursor openclaw proxy python sandbox security telegram

Last synced: 10 Feb 2026

https://github.com/theobori/go-neuvector

🐛 NeuVector SDK for Controller

api client container controller go neuvector sdk security

Last synced: 31 May 2026

https://github.com/gregl83/pseudo-root

Sudo make me root

root rust security sudo

Last synced: 09 Apr 2025

https://github.com/zdnk/guardian

A simple µframework for working with TouchID, FaceID and passcode authentication

authentication faceid framework ios ios-swift security swift swift-framework touchid

Last synced: 07 Jun 2026

https://github.com/rodrigokamada/nodejs-encryption

There are two classes in the crypto module called Cipher and Decipher that we are going to use in the example.

aes cipther decipher decryption encryption hacktoberfest nodejs security

Last synced: 21 Apr 2026

https://github.com/edneedham/cred

A command-line tool to manage secrets and environment variables locally and remotely.

cli rust secrets security

Last synced: 04 Feb 2026

https://github.com/iam-py-test/unload-block-remover

Prevent websites from annoying you with 'Are you sure you want to leave'

annoyances browser-extension chrome-extension firefox-extension security unload

Last synced: 22 Apr 2026

https://github.com/cuongtk8/play-with-deno

Discover 🏝️ Deno - the future for 🌏 Node

103cuong deno node rust security typescript

Last synced: 29 Apr 2026

https://github.com/blackvoidx/google-dorker

Simple Google Dork Generator for Cybersecurity

bug-bounty bugbounty cybersecurity dork dorker google-dorks googledork osint security

Last synced: 04 Mar 2026

https://github.com/weby-homelab/voip-installer

Secure, Dockerized Asterisk 22 Installer for Ubuntu 24.04. Auto-configures PJSIP, TLS/SRTP, Let's Encrypt, Fail2Ban & NFTables.

asterisk automation docker fail2ban hardened iac infrastructure-as-code letsencrypt nftables official-docker-ce-install opus-codec pjsip security self-hosted sip speex srtp telephony ubuntu-server voip

Last synced: 22 Apr 2026

https://github.com/zoracon/zoracon.github.io

My corner of the web. I also blog a bit.

security

Last synced: 10 Jan 2026

https://github.com/wg-keeper/wg-keeper-node

Minimal WireGuard node with REST API for centralized peer management.

devops golang rest-api security vpn wireguard

Last synced: 13 Mar 2026

https://github.com/markopapic/twofactorauthentication

A C# library for 2-factor authentication.

2fa rfc-6238 security totp two-factor-authentication

Last synced: 19 Apr 2026

https://github.com/nullswan/snow-crash

Introduction to box pwning

security

Last synced: 07 Jun 2026

https://github.com/it-atelier-gn/desktop-secrets

Resolve secrets from KeePass, AWS, Azure Key Vault, GCP Secret Manager, HashiCorp Vault, 1Password, macOS Keychain, and Windows Credential Manager into .env templates and subprocess environments — no plaintext on disk.

1password azure-key-vault desktop dotenv hashicorp-vault keepass keychain linux macos secret-manager secrets security vault webauthn wincred windows windows-hello

Last synced: 21 May 2026

https://github.com/gregl83/comandare

TCP Command Line Execution

backdoor rust security tcp

Last synced: 09 Apr 2025

https://github.com/franckferman/hidemylogs

Surgical Linux log cleaner - selectively erase access records from lastlog, wtmp, btmp, and utmp while preserving file metadata.

advanced-threat-hunting btmp clean-logs lastlog linux linux-cleaner linux-logrotate linux-logs log-cleaner opsec opsec-safe opsec-toolkit opsectoolkit redteam redteaming security security-tools utmp wipe-files wtmp

Last synced: 23 Apr 2026

https://github.com/azu/trace-database-response

Assert: Express response raw data from MongoDB

expresss library middleware mongodb plugin security

Last synced: 29 Apr 2026

https://github.com/robgrame/intune-device-actions

Serverless self-service Intune device action API (wipe, autopilot-register, bitlocker). Azure Functions (.NET 10, capability-plugin architecture) + Service Bus + mTLS client cert + Microsoft Graph. Includes Bicep IaC and PowerShell 5.1 client.

azure azure-functions bicep device-management dotnet dotnet10 entra-id infrastructure-as-code intune managed-identity mdm microsoft-graph microsoft-intune mtls powershell security serverless storage-queue

Last synced: 07 Jun 2026

https://github.com/dvkunion/customs

海关(Customs) - Github Action 镜像数据收集与分析,为云安全研究提供数据支持。

actions cloud-native docker images security

Last synced: 13 Apr 2026

https://github.com/girorme/binoculo-mcp

Banner grabbing with LLM (MCP Server)

bugbounty claude-ai llm mcp-server python redteam-tools security

Last synced: 26 Feb 2026

https://github.com/satvikx/project-usb

This is a software which enhances the physical security of the Computers and protects it from BadUSBs by blocking the USB ports (essentially by running batch scripts).)

batch-script gui python security tkinter usb

Last synced: 23 Jan 2026

https://github.com/sharkpick/authentication

authentication is a simple way to manage authentication using sqlite3 and Go. Adjustable password salting and hashing makes it easy to configure for any project.

authentication backend go golang security

Last synced: 09 Feb 2026

https://github.com/joelayo/kubectl-go-mcp-server

MCP server for secure Kubernetes Interaction via kubectl commands. Enables AI assistants like GitHub Copilot to safely interact with K8s clusters with robust validation and security.

copilot devops go golang k8s-tools kubectl kubernetes mcp-server model-context-protocol security

Last synced: 17 Apr 2026

https://github.com/volksrat71/react2shellexploitvisualized

Interactive visualization of the React2Shell (CVE-2025-55182) RCE vulnerability with narrated animations for three audiences: Expert, Practitioner, and Stakeholder. Audio synced via ElevenLabs + Whisper.

cve cybersecurity educational elevenlabs flight-protocol rce react security server-components svelte visulization vunerability whisper

Last synced: 24 Apr 2026

https://github.com/malmichaels-gif/agent-instructions-kit

Keep your AGENTS.md and CLAUDE.md files consistent, safe, and lint-checked

agents automation claude cli devtools github-action prompt-injection security

Last synced: 18 Jan 2026

https://github.com/indece-official/clair-client

Command line client for quay/clair v4.x.x

clair clair-scanner docker docker-security security security-tools

Last synced: 05 Feb 2026

https://github.com/juliangrtz/mightyxor

.NET cryptography suite supporting one-time pads, Shamir secret sharing and plausible deniability

crypto cryptography cryptosuite decryption encryption one-time-pad otp plausible-deniability quantum-computing security shamir-secret-sharing shamirs-secret-sharing xor

Last synced: 02 Jun 2026

https://github.com/houseos/scp

Arduino library for secure-control-protocol devices

chacha20-poly1305 esp8266 http iot json protocol rest security wifi

Last synced: 13 Apr 2026

https://github.com/marcelo-theodoro/lambdatotp

lambdatotp is an application to implement TOTP authentication using Amazon Lambda e DynamoDB.

amazonlambda authentication chalice dynamodb security totp

Last synced: 04 Jul 2026

https://github.com/hpgrahsl/flightswebapi

Sample Project for my Java Magazin (04/2017) Article together with Manfred Steyer

keycloak oauth2 oidc security spring-boot webapi

Last synced: 24 Apr 2026

https://github.com/borapolat/logseeker

Windows Event Viewer Security Log - Filtering Application for Deleted and Moved/Renamed Files

deleted-files enterprise-software event-viewer it-professional log-analyzer log-filtering security system-administration-tools windows

Last synced: 14 Feb 2026

https://github.com/humzaakhtarr/VulnerabilityManagement-using-Nessus-Essentials-

A guide for accessing vulnerabilities. You will access vulnerabilities using a Windows 10 VM, set up Nessus Essentials on your system, run multiple scans carrying out various tasks including (installing old software versions, tweaking system settings and setting up credentials), compare the scans, remediate them by performing the tasks mentioned.

cybersecurity nessus-scanner security vulnerability-management vulnerability-scanners

Last synced: 29 Oct 2025

https://github.com/bieanimaton/biesec

Site for ethical hacking learning.

nodejs react security

Last synced: 28 Apr 2026

https://github.com/yusiwen/qianxin-trustagent

Qianxin(奇安信) TrustAgent VPN client within a minimal KASM core desktop

kasmvnc network qianxin security vpn

Last synced: 11 Feb 2026

https://github.com/paulveillard/cybersecurity-talks

An ongoing curated collection of awesome software, libraries, frameworks, talks, best practices, learning tutorials and important practical resources in Security.

cyber-threat-intelligence cybertalents presentation-slides security security-tools speaking-resources speech-recognition talk-preparation talks talks-and-papers

Last synced: 19 Mar 2026

https://github.com/guessi/github-scanner

scanning public repositories on GitHub

github scanner security

Last synced: 27 Apr 2026

https://github.com/astropilot/bigeye

A web security challenges website, a school project for my software security course

challenge cryptography ctf-platform security web

Last synced: 19 Mar 2026

https://github.com/sorah/hocho-jwt

Pass JWT to servers on hocho apply

hocho itamae jwt provisioning security

Last synced: 09 Oct 2025

https://github.com/taoq-ai/wuming

无名 (The Nameless) is a zero-config PII detection and redaction library for Go. 75+ detectors across 14 locales with compliance presets for GDPR, HIPAA, LGPD, APPI, PIPL, and more.

anonymization compliance data-privacy data-protection gdpr go golang hexagonal-architecture hipaa open-source personally-identifiable-information pii pii-detection pii-redaction privacy regex security sensitive-data

Last synced: 01 Apr 2026

https://github.com/kaimast/credb

CreDB is an autonomous blockchain

databases security sgx

Last synced: 27 Jan 2026

https://github.com/iboudhaine/rsa-encryption-and-in-practice

Implementation and exploration of RSA encryption, including its security properties, practical applications, and real-world use cases. A class project to learn and experiment with cryptographic principles

cryptographic-algorithms cryptography cryptography-project encryption python rsa secure-communication security

Last synced: 25 Oct 2025

https://github.com/kathleenwest/wcfauthenticationdemo

This project presents a Visual Studio solution including a simple demo WCF Authentication Service Application and a “Tester” Client (Windows Form Application) that allows the user to test the user registration, login, logout, and service operations. In addition to demonstrating standard authentication capabilities, the WCF service implements a custom username and password validator pattern. Passwords are stored securely using Password-Based Key Derivation Function PBKD cryptology of which the implementation is discussed. A custom error handler ensures that exceptions are properly wrapped into WCF Faults and communicated to the client caller. Certificates are discussed along with how to implement a server certificate on a client machine for development testing of “integrity” and application trust. The project includes a demo certificate and script for generating self-signed dev certificates, which must be installed into the client certificate store for the client tester application to trust and access the demo service. The client “tester” windows form application is not intended as a UX/UI demo but used to test and verify that the backend authentication service registration, login, logout, service operations, and callbacks are working as expected and sending proper WCF fault messages. Lastly, the project is shown in the demo section with a video and screen captures.

authentication certificate certificate-generation cryptology csharp custom-validation custom-validators error-handling password-hash password-safety password-store pbdk security service wcf wcf-bindings wcf-client wcf-service wcf-service-client-demo windows-communication-foundation

Last synced: 17 Oct 2025

https://github.com/cpscript/linux-security

A simple Linux security script to protect your files and data from external brute force attempts if you get caught and your device gets seized

linux security

Last synced: 12 Mar 2025

https://github.com/cdot65/device-certificate-report

A Python-based CLI tool to generate device certificate reports from PAN-OS devices.

certificates network paloaltonetworks panos reporting security

Last synced: 14 Jan 2026

https://github.com/sixt/hardcoded-slack-webhook-alerter

This tool can be used to scan for hardcoded Slack webhooks and send an alert to each one about the dangers of hardcoded credentials.

credentials devsecops pentesting secrets security security-tools

Last synced: 14 Jan 2026

https://github.com/turbot/flowpipe-mod-pipes

Pipes pipeline library for the Flowpipe cloud scripting engine. Automation and workflows to connect Pipes to the people, systems and data that matters.

automation cloud devops flowpipe flowpipe-mod hacktoberfest integrations low-code orchestration pipelines pipes security turbot-pipes workflow workflow-automation workflow-engine

Last synced: 19 Mar 2026

https://github.com/mrwanashraf/chativate-peer-to-peer

a free software project that aims to offer a secure chat app that cares about user's privacy using Peer-To-Peer model

chat-application privacy-protection security

Last synced: 09 Apr 2025

https://github.com/cybardev/checkpass

Tool to check strength of passwords and passphrases

login password security

Last synced: 24 Jan 2026

https://github.com/opticsquid/bellatrix

A prebuilt Express JS Authentication & Authorization Project based on a REST API interface. It has the basic authentication and Authorization routes with the latest security measures implemented so that your application is much more secure from day 1. You are welcome to build upon and extend this project as and when required.

authentication authorization express expressjs gdsc-tmsl hacktoberfest jwt jwt-authentication node nodejs openapi3 rest-api security

Last synced: 15 Apr 2026

https://github.com/confy-security/confy-addons

Implementation of symmetric and asymmetric encryption with AES and RSA algorithms for client applications of the Confy communication system

aes base64 confy cryptography decryption encryption privacy rsa security

Last synced: 28 Jan 2026

https://github.com/madret/kql-generator

KQL generator, for generating quick Hunting queries. Microsoft Defender XDR focussed.

dfe email endpoint generator hunting kql kusto language m365 mde query security

Last synced: 19 Mar 2026

https://github.com/steunix/passweaver-gui

A web frontend for PassWeaver-API, a collaborative password manager API

collaborative password-manager security team

Last synced: 03 Feb 2026

https://github.com/7ussainnabeel/web-check

🕵️‍♂️ All-in-one OSINT tool for analysing any website

osint privacy security security-tools sysadmin

Last synced: 13 Jul 2025

https://github.com/veto-firewall/veto

Simple Firewall For Your Browser: GeoIP, ASN, domain, URL and content blocking capabilities

asn bgp firefox firewall geoip privacy security typescript webextension

Last synced: 02 Apr 2026

https://github.com/timoniersystems/lookout

Vulnerability scanner and SBOM analyzer for software supply chain security. Processes CVE lists, Trivy scans, and CycloneDX/SPDX SBOMs with NVD enrichment, dependency graph analysis, and a web UI for interactive exploration.

cve cyclonedx dgraph docker golang helm kubernetes nvd sbom security software-supply-chain spdx trivy vulnerability-scanner

Last synced: 01 Apr 2026

https://github.com/armaan29-09-2005/ai-osint-security-analyzer

AI OSINT Security Analyzer is an intelligent platform that leverages AI to perform autonomous investigations across various intelligence sources. With features like multi-source integration and real-time threat intelligence, it ensures comprehensive security assessments. 🛡️🔍

ai ai-agent analysis cohere cve cve-analysis cybersecurity ip ip-address osint osint-tool osint-tools python security security-analysis shodan streamlit vulnerability-assessment

Last synced: 15 Apr 2026

https://github.com/thayeeb9211/ortho-secure

Orthosecure: Secure Dentistry Appointment Booking and Management System. It is designed to be robust and secure application with enhanced security and compliance checks within containerized environments. It leverages cutting-edge technologies to monitor, analyze, and secure workloads in real-time.

cicd csrf-attacks ddos-attacks devsecops docker-compose docker-image gitlab security xss-attacks xss-vulnerability

Last synced: 28 Feb 2026

https://github.com/sayalisachin/medicrypt

This is a Hospital Communication System Using DNA Encryption and Image Steganography This project enables secure communication between two hospitals, Hospital A and Hospital B, by encrypting and hiding sensitive patient data within images using DNA encryption and Least Significant Bit (LSB) steganography techniques, powered by Socket.IO

cryptography dna dna-sequencing information informationsecurity lsb lsb-steganography manipal-institute-of-technology matplotlib pandas pillow security socket-io steganography streamlit websocket

Last synced: 13 Apr 2026

https://github.com/dradis/dradis-wpscan

WPScan plugin for the Dradis Framework

dradis dradis-framework infosec pentesting security wpscan

Last synced: 24 Jan 2026

https://github.com/dubniczky/prototype-pollution

JavaScript Prototype Pollution Attack demo against a NodeJS Express server using Lodash

demo exploit javascript lodash prototype-pollution security yarn-berry

Last synced: 30 Apr 2026

https://github.com/SEUNAKINTOLA/Whistle-Blower

This platform is dedicated to reporting unethical practices daily in organization either in government sectors or private Parastatals at no cost.

anonymity api human-rights json php security transparency whistle whistleblowing

Last synced: 11 Mar 2025

https://github.com/aayushadhikari7/aegis

A local-first WebAssembly sandbox runtime with capability-based security

capability-based-security runtime rust sandbox security wasm wasmtime webassembly

Last synced: 18 Jan 2026

https://github.com/p10ns11y/arch-machine

**The only Arch Linux setup that audits itself harder than your ex audits your text messages 👀💔**. Meet arch-machine 🛡️🤖 — your AI-forged, profile-based Arch Linux fortress 🏰 that turns a fresh install into a paranoid, self-healing, ML/AI-ready workstation ⚡ faster than you can say “yay/paru/pacman … oh god why is it still compiling” 😩�

agents ai archlinux devex installers ml security sentinels shell system-audit tools virusscan vulenrability

Last synced: 30 May 2026

https://github.com/qeeqbox/security-controls

Countermeasures or safeguards for detecting, preventing, and mitigating cyber threats and attacks (Protect assets)

controls infosecsimplified qeeqbox security security-controls

Last synced: 19 Mar 2026

https://github.com/eagleclarinet22/usbkeypresencewatcher

Automatically lock Windows when a YubiKey or security USB device is removed. PowerShell-based presence watcher with Task Scheduler integration.

automation lock-screen powershell security task-scheduler usb windows yubikey

Last synced: 30 May 2026

https://github.com/jpkcom/jpkcom

Administrator, Consultant, Designer & Developer

11ty administration css design developer development drupal html5 javascript php security seo typo3 wordpress

Last synced: 13 Apr 2026