An open API service indexing awesome lists of open source software.

Security

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

https://github.com/riklewis/better-headers

Improve the security of your website by easily setting HTTP response headers to enable browser protection

http-headers security wordpress wordpress-plugin

Last synced: 13 May 2026

https://github.com/anatoly-semenov/cpp-security-gateway

C++ implementation of a gRPC gateway designed for scalable and secure microservice architectures on Kubernetes

cpp gateway high-performance security

Last synced: 24 Aug 2025

https://github.com/0xjonaseb11/adv_security.3.0

Advanced security | Exploitation of protocol vulnerabilities | Advanced smart contract seurity

auditing defi protocol-security security smartcontracts solidity vulnerability-detection

Last synced: 18 May 2026

https://github.com/cafernandes/express-php

Microframework PHP ultraleve inspirado no Express.js para prototipar APIs em minutos.

api-framework authentication composer express-inspired jwt microframework middleware modern-php multi-auth php psr-7 rapid-prototyping rest-api security

Last synced: 27 Jul 2025

https://github.com/ctkqiang/huo_jian_qiang

火尖枪是一款专为安全测试和性能验证设计的高性能HTTP批量请求工具。该工具能够自动化执行大规模的用户名/密码组合测试,支持高度可配置的请求参数和多线程并发处理。

admin automation bruteforce china chinese cybersecurity go golang hacking http login security

Last synced: 07 Apr 2026

https://github.com/amir20/docker-machine-bootstrap

Secures a new docker-machine instance

ansible docker docker-machine security

Last synced: 07 May 2026

https://github.com/0n1shi/redis-honeypot

Redis server

go honeypot redis security

Last synced: 07 Mar 2026

https://github.com/nickserv/password-entropy

A simple entropy calculator for evaluating password security.

security

Last synced: 05 Apr 2025

https://github.com/rgrannell1/password123.js

Check if a password is extremely common.

password security

Last synced: 27 Jul 2025

https://github.com/kpn-puppet/puppet-kpn-local_security_policy

Puppet module to manage Local Security Policies on Windows Server 2008R2 and upwards

puppet security windows

Last synced: 15 May 2025

https://github.com/z8run/aegis

Supply-chain security scanner for npm packages. Detect malicious code, typosquatting, and compromised dependencies before you install them.

cli cve developer-tools devsecops malware-detection npm npm-audit npm-security package-security rust sarif security static-analysis supply-chain tree-sitter typosquatting vulnerability-scanner

Last synced: 04 Apr 2026

https://github.com/its-danny/revery

💭 Secure and deniable messaging.

chat communication crypto encryption messaging privacy protocol security

Last synced: 28 Jul 2025

https://github.com/charles-adedotun/claude-code-sub-agents

🤖 Comprehensive sub-agent ecosystem for Claude Code - Intelligent AI assistance across the full software development lifecycle

ai-agents automation claude-code developer-tools devops productivity react security testing workflow

Last synced: 03 Sep 2025

https://github.com/kadirsenturk/argus-osint-tool

Advanced OSINT tool for username reconnaissance across 90+ websites, using Python and Playwright for high accuracy.

automation osint playwright python python3 security

Last synced: 18 May 2026

https://github.com/vbonk/repo-template

Baseline New Repository Template. .gitignore (multi-language). README.md (solo-focused). CLAUDE.md (with Copilot notes). CI workflow (.github/workflows/ci.yml) without review requirements. License. Basic structure.

ai-coding ai-first boilerplate ci-cd claude-code codex copilot cursor devcontainer developer-tools devtools gemini github-actions github-template prompt-injection repository-template security starter-template template windsurf

Last synced: 02 Apr 2026

https://github.com/briso10-dev/oracle-database

An Open source project giving a maximum of Query Solutions of various different databses in Oracle

database oracle security sql

Last synced: 20 Sep 2025

https://github.com/blessedrebus/tesi-magistrale

Tesi magistrale di Ingegneria Informatica Magistrale su Attacchi Buffer Overflow e Return Oriented Programming in architetture RISC-V, Università di Bologna

assembly bof buffer-overflow cybersecurity return-oriented-programming risc-v rop security x86 x86-64

Last synced: 02 Jan 2026

https://github.com/dv64/dragonattacker

DragonAttacker is an educational network diagnostic tool designed for testing network security and resilience. It simulates various types of network traffic for authorized penetration testing and security research purposes only.

ddos learn learning network py python security tool

Last synced: 13 Apr 2025

https://github.com/maeaeriah369/camgru

Simplified Instagram clone built with Node.js, Express, Ejs, MongoDB

authentication ejs email-sender error-handling express mongodb mongoose nodejs security

Last synced: 07 Apr 2026

https://github.com/silverpoision/thefirstvideo

TheFirsVideo aims to manage your Youtube channels so that you can set your channel priorities and watch latest videos from the channels you want to watch first. TheFirstVideo is a Node-Next app that uses SSR to pre-render the page content and provide user a better response time and thus a better UX

authentication authorization javascript nextjs nodejs reactjs security

Last synced: 10 Apr 2026

https://github.com/chrisfosterelli/multiply-by-two

This is a malicious demonstration module for the blog post at https://fosterelli.co/stealing-credentials-with-a-malicious-node-module.html

node research security

Last synced: 24 Jun 2025

https://github.com/mikehorn-git/routeros-hardening

Secure and Harden your MikroTik RouterBoard / RouterOS.

hardening mikrotik routerboard routeros script security

Last synced: 11 May 2025

https://github.com/nickboucher/multi-domain-sfi

An extension of Software Fault Isolation (SFI) which supports multiple isolation domains

clang fault-isolation llvm security sfi

Last synced: 20 May 2026

https://github.com/sankalpharitash21/nodejs_aws

Deploying a scalable Node.js app on AWS EC2, configuring security, and using PM2.

aws aws-ec2 pm2 security

Last synced: 19 May 2026

https://github.com/dundalek/firewrap

End-user oriented security application sandboxing

bubblewrap firejail sandboxing security

Last synced: 21 Sep 2025

https://github.com/storbeck/bait

Generate realistic IT security alert voicemails using GPT-4 for scripting and ElevenLabs for AI voice synthesis. A Go-based tool for crafting professional-grade alerts with customizable details and natural-sounding audio.

ai-generated ai-tools alert-system automation elevenlabs go gpt-4 it-security openai phishing-awareness security text-to-speech tool voice-synthesis voicemail

Last synced: 18 Feb 2026

https://github.com/sdanielsilva/simpleimageencryptor

A versatile file encryption tool that securely encrypts and decrypts image and other file types with AES and DES algorithms, supporting multiple modes and easy key management.

aes cbc cipher cryptography cryptography-tools data-protection des ecb encryption file-encryption image-encryption iv-generation java key-management secure-file-storage security

Last synced: 04 Jun 2026

https://github.com/safedep/vetpkg.dev

Open Source Component Security Dashboard

analytics security software-composition-analysis supply-chain-security

Last synced: 12 Jan 2026

https://github.com/creatornader/oss-security-scan

Reusable GitHub Actions workflow: typos + gitleaks + trufflehog + osv-scanner for public OSS repos. One uses: line.

github-actions gitleaks oss osv-scanner reusable-workflow security trufflehog

Last synced: 03 Jul 2026

https://github.com/ozceliksinan/file-encryption-csharp-winform

It is based on C# and encrypts the files with the password you specify, and if the encrypted file is to be decrypted later, the encryption algorithm applied with the decryptor step is decrypted.

algorithms application-security csharp csharp-winform encryption-decryption security

Last synced: 28 Mar 2025

https://github.com/koniz-dev/docker-cookbook

A comprehensive collection of production-grade Dockerfile best practices, optimizations, and security patterns for Java, Python, Node.js, Go, and React.

best-practices devops distroless docker dockerfile go golang java node nodejs optimization python react security

Last synced: 03 Jul 2026

https://github.com/rgrannell1/rpgen

Generate memorable secure passwords.

dictionary password random security

Last synced: 29 Jul 2025

https://github.com/pungrumpy/blackhead

😈 A vulnerability detection and penetration testing system with automatic report generation

security turborepo typescript website

Last synced: 25 Feb 2025

https://github.com/indiana-university/puppet-aide

This puppet module manages the installation and configuration of AIDE (Advance Intrusion Detection Environment)

aide audit auditing cis cis-benchmarks file-integrity ids intrusion-detection puppet puppet-module security

Last synced: 13 Apr 2025

https://github.com/tunahorse/gobuster_looper

Bust URLs directory's from a text file.

brute-force gobuster recon security

Last synced: 07 Sep 2025

https://github.com/rezen/hardcidr

Dockerized hardcidr

osint security

Last synced: 09 Oct 2025

https://github.com/deco31416/facialtrustpay-deco31416

MVP designed for facilitating micropayments using facial recognition and blockchain technology, ensuring secure and fast transactions while prioritizing user privacy by not storing biometric data.

blockchain dapp data-privacy decentralized facial-recognition hash-based-identification micropayments mvp payments privacy security solidity

Last synced: 25 Jan 2026

https://github.com/amul-thantharate/aws-project-golang-terraform

This repository contains a collection of serverless applications built with Go, leveraging AWS Lambda, API Gateway, and DynamoDB. The projects are designed to demonstrate scalable and efficient serverless architectures, including CRUD operations, event tracing, and more.

aws azure docker golang groq python security shell terraform

Last synced: 07 Apr 2026

https://github.com/oneananda/software-architecture-best-practices

This repository is dedicated to providing valuable insights and guidance on software architecture. Here, you’ll find best practices, performance suggestions, comparative analyses of different technologies, and a Q&A section addressing common and complex scenarios.

aws azure best-practices cloud docker ibm-cloud performance security security-tools software-architecture software-architecture-and-design solid-principles

Last synced: 13 Apr 2026

https://github.com/jenkinsci/redhat-codeready-dependency-analysis-plugin

A Jenkins plugin by Red Hat, to scan the dependency stack and give information related to vulnerabilities, popularity, maintainability, compatibility and more

analysis crda dependencies dependency-analysis deprecated devsecops maintainability redhat scanning security vulnerabilities

Last synced: 30 Sep 2025

https://github.com/aryan-136/cis-sentinel-automated-auditing-for-windows-linux-systems

The focus of this project is to develop an automated audit script tailored for Windows 11 (Enterprise and Standalone) and Linux operating systems (Red Hat Enterprise and Ubuntu) based on CIS benchmarks. By automating the audit process, organizations can ensure that their systems adhere to CIS security guidelines in an efficient and reliable manner.

audit automation bash cis cis-benchmark compliance cross-platform linux powershell python security securityreports system-audit windows

Last synced: 09 Apr 2026

https://github.com/destan0098/subenum

This tool Enumeration subdomains and check cdn and not ,This tool just is for training.

enumeration security security-tools subdomain subdomain-enumeration

Last synced: 30 Jul 2025

https://github.com/byjpr/plug_shopify_verify_timestamp

Validates inbound connection timestamp delta, designed for Shopify App Bridge

app-bridge elixir plug security shopify shopify-app shopify-embedded-applications

Last synced: 21 May 2026

https://github.com/bjoern-hempel/bash-securizer

A tool to check the security of web applications.

bash dns email header security security-tools websecurity

Last synced: 16 May 2026

https://github.com/sparshsam/ecosystem-standards

Canonical repository, documentation, security, and publication standards for Sparsh Sam's public and private software ecosystem.

calm-software documentation governance infrastructure open-source open-source-governance publication-readiness repository-standards rfc security security-policy software-architecture

Last synced: 29 Jun 2026

https://github.com/kpol/passwordgenerator

A lightweight, secure, and flexible password generator library for .NET, built with cryptographic randomness and fully customizable character sets.

csharp password password-generator security

Last synced: 30 Jul 2025

https://github.com/lily-osp/rfid-access-control-system

This project is just one of many examples of how we can apply the use of google theachable machine.

access-control arduino automation computer-vision nfc rfid security

Last synced: 19 May 2026

https://github.com/securesauce/vscode-precaution

A Visual Studio Code extension with support for the Precaution static analysis tool.

formatter linter precaution python sast security security-scanner security-tools static-analysis vscode vscode-extension

Last synced: 20 Aug 2025

https://github.com/madsmtm/security-txt

A security.txt draft 09 parser for Rust

rust rust-lang security security-txt

Last synced: 24 Aug 2025

https://github.com/chrishubert/password-manager-crypt

🔐 Secure, zero-dependency cryptographic library for password managers with universal runtime support (Node.js, CloudFlare Workers, Browsers)

browser cloudflare-workers cryptography encryption nodejs password-manager security typescript webcrypto zero-knowledge

Last synced: 17 May 2026

https://github.com/destan0098/simpleportscanner

This Simple Fast PortScanner For TCP in Golang , Just For Education

network portscanner security security-tools

Last synced: 30 May 2026

https://github.com/gunh0/os-security-hub

🛡️ A comprehensive security auditing and hardening toolkit for multiple operating systems. Features automated compliance checks and security assessment tools based on industry standards and official security guidelines.

compliance golang hardening linux-security security security-audit security-scanning ubuntu xenserver

Last synced: 16 May 2026

https://github.com/dadi/ssl

Autonomous SSL certificate generation in support of SSL-first approach.

dadi letsencrypt security ssl ssl-certificates

Last synced: 20 Oct 2025

https://github.com/copyleftdev/pricklypwn

An advanced RCE tool tailored for exploiting a vulnerability in Cacti v1.2.22. Crafted with precision, this utility aids security researchers in analyzing and understanding the depth of the CVE-2022-46169 flaw. Use responsibly and ethically.

cacti command-injection cve-2022-46169 cybersecurity ethical-hacking exploitation-tool payload penetration-testing rce remote-command-execution reverse-shell security vulnerability-assessment

Last synced: 01 Aug 2025

https://github.com/wreos/dart_secrets_scanner

dart_secrets_scanner is a command-line tool designed to scan Dart and related files in Flutter projects for hardcoded sensitive information such as API keys, tokens, passwords, and other credentials.

dart devsecops flutter scanner security security-tools

Last synced: 18 May 2026

https://github.com/dentarg/gem-compare

GitHub Action to show what changed when Dependabot bumps a Ruby gem

gem github-actions ruby security

Last synced: 22 Jan 2026

https://github.com/masajinobe-ef/prsc

🔐Free cross-platform password manager on Flask, Python, SQLite with Cryptography

cross-platform cryptography database flask linux macos password password-manager python security sql sqlite web-development windows

Last synced: 01 Aug 2025

https://github.com/dev-dami/ignite

Bun-first local execution framework for JavaScript/TypeScript microservices with Docker-based isolation

ai-agents code-execution docker javascript llm microservices sandbox sandboxing security typescript

Last synced: 19 Feb 2026

https://github.com/dockfixlabs/agentguard-vscode

VS Code extension for AgentGuard — scan AI agent code for OWASP ASI Top 10 vulnerabilities directly in your editor.

agent-security agentguard ai-security linting owasp-asi python security vscode vscode-extension

Last synced: 05 Jul 2026

https://github.com/dockfixlabs/trustlayer

Trust intelligence for ACP agents — reads ERC-8004 on-chain data, scores agents 0-100, gives HIRE/AVOID recommendations

ai-agents defi erc-8004 security solana trust

Last synced: 05 Jul 2026

https://github.com/mikaelfangel/casemanager

💼 A flexible and scalable case management platform for MSSPs

ash case-management elixir phoenix security

Last synced: 04 Mar 2025

https://github.com/containerssh/guest-image

The source code of the default ContainerSSH guest image

devsecops docker kubernetes security ssh

Last synced: 15 May 2026

https://github.com/contributte/php-hostinfo

Simple PHP tool to quickly check for sane webhosting setup

apache2 audit permissions php security shared-hosting unix-perm webhosting

Last synced: 02 Aug 2025

https://github.com/kareimgazer/safe-lock-embeded-systems

save lock using an AVR microcontroller.

atmega32 avr c eeprom motor security uart-protocol

Last synced: 29 Mar 2025

https://github.com/sjinks/docker-alpine-dirb

Alpine-based image to run dirb scanner

alpine-image dirb docker-image pentest-tool security security-tool

Last synced: 02 Aug 2025

https://github.com/t-richards/password-generator

A secure, sane-defaults password generator for Unix and GNU/Linux.

password password-generator sane-defaults security

Last synced: 14 Jun 2026

https://github.com/markac007/mcp-server-scf

MCP server for SCF Controls Platform — security compliance controls, frameworks, evidence, and risk management for AI agents

ai-agent claude compliance fedramp grc iso-27001 mcp model-context-protocol nist risk-management scf security soc-2

Last synced: 18 Apr 2026

https://github.com/jojiiofficial/tripphp

A PHP client for the triplink system

bannnig filtering php security security-automation triplink

Last synced: 04 Mar 2025

https://github.com/django-access-control/django-access-control

Field and object level access control for Django

access-control authorization django permissions python security

Last synced: 08 Apr 2026

https://github.com/5noxi/base64-wrapper

Obfuscates your script by using B64 - Adjustable Iterations.

b64 base64 encoding obfuscation obfuscator powershell security tool wrapper

Last synced: 03 Aug 2025

https://github.com/masdxi/right-to-left-attack-solidity

An example of right to left attack on smart contract

rtlo security smart-contracts solidity

Last synced: 19 May 2026

https://github.com/pradeepsingroul/aulacube_technologies

This is the basic project which is given by AulaCude technology in this project have two entities User and taks user can create tasks, delete task, view tasks, view active task, view completed task, update task and other features are there.

authentication authorization github java jpa-hibernate mysql postman security spring-boot sql

Last synced: 05 Apr 2026

https://github.com/plaguevrc/bouncer

VRChat Security Mod For Stopping Force Joining, Crashing & More In Events/Clubs.

anti bouncer club clubs event events force join joining melonloader safety security vrchat vrchat-mod

Last synced: 05 Apr 2025

https://github.com/ram001-code/fortipass

This is an Simple yet effective Password Strength Checker

cybersecurity security

Last synced: 22 Mar 2025

https://github.com/solution10/heat

Brute force protection library.

brute-force composer-packages php security

Last synced: 21 Mar 2025

https://github.com/sidclawhq/platform

The approval and accountability layer for AI agents. Identity → Policy → Approval → Trace. 13 framework integrations. Free during early access.

ai-agents approval-workflow audit-trail compliance crewai eu-ai-act finra governance langchain mcp open-source openai policy-engine python security typescript vercel-ai

Last synced: 03 Apr 2026

https://github.com/alqasr/alqasr

A complementary solution to access Boundary HTTP targets.

golang security squid-proxy zerotrust

Last synced: 17 Jan 2026

https://github.com/jnaulty/cargo-diff

Security Review Utility to help highlight risk signals in reviews of dependency updates.

dependency-analysis rust security supply-chain

Last synced: 18 May 2026

https://github.com/sap-samples/security-research-confounding-effects

This repository contains the source code for our paper "Broken Promises: Measuring Confounding Effects in Learning-based Vulnerability Discovery" that was accepted at AISec '23.

machine-learning research sample sap security security-research vulnerability-discovery

Last synced: 13 May 2026

https://github.com/mlswg/mlswg.github.io

Website for the MLS WG

messaging-layer security

Last synced: 20 Jan 2026

https://github.com/ubgo/crypt

Batteries-included Go cryptography library: AES-256-GCM & ChaCha20-Poly1305 authenticated encryption, argon2id/bcrypt password hashing, HMAC & Ed25519 signing, HKDF, key rotation, KMS envelope encryption, and secure random — safe defaults, stdlib-only, byte-for-byte interop with the TypeScript crypt-ts.

aead aes-gcm argon2 bcrypt chacha20-poly1305 cryptography ed25519 encryption envelope-encryption go golang hkdf hmac key-rotation password-hashing security

Last synced: 05 Jul 2026