An open API service indexing awesome lists of open source software.

Security

Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.

https://github.com/approov/demo-android-chatgpt

Android ChaptGPT Kotlin mobile app demo for the OpenAI GPT-3 API to send questions and get responses. This repo will be used as the basis for a series of articles on how to properly hide secrets in a mobile app.

android approov chatgpt secrets security

Last synced: 14 Apr 2026

https://github.com/sami-bre/danielgraham_ethicalhacking

a github repository to my codes working through the book

detectors hacking-tools network-scanner python reverse-shell security

Last synced: 18 Oct 2025

https://github.com/jakubboucek/legacy-escape

Right escape data inserted to HTML, CSS, JS and URL in your legacy project.

legacy-application php security

Last synced: 13 Jun 2026

https://github.com/shanemhamilton/llm-prompt-guard

TypeScript prompt-injection firewall for LLMs. Zero deps, sub-millisecond. Block/excise/quarantine/tag modes, encoding-bypass resistance, canary validation, output exfil scanning. OWASP LLM01.

agent-security ai ai-security defense-in-depth exfiltration-detection firewall generative-ai input-validation llm llm-security nodejs owasp-llm-top-10 prompt-injection rag-security sanitizer security spotlighting typescript unicode-normalization zero-dependencies

Last synced: 14 Jun 2026

https://github.com/severen/pwned

A command line interface to check if your online accounts have been possibly compromised.

haveibeenpwned security security-audit

Last synced: 18 Jun 2026

https://github.com/ch4nn0n/fencepost

A configurable permission gate for every Claude Code tool call

claude claude-code guardrail hook permissions plugin security

Last synced: 18 Jun 2026

https://github.com/signum-network/signum-account-activator-v2

Signum Account Activation/Protection Service

blockchain security web3

Last synced: 19 Jun 2026

https://github.com/jaketarnow/seceng

Repo for Security class - Hacks and defenses against common threats and vulnerabilities

hacking networking privacy security vulnerabilities

Last synced: 19 Jun 2026

https://github.com/mgnfy-view/sc-audit-portfolio

A compilation of all my audit reports and findings

audit audit-reports ethereum security security-audit smart-contracts solditiy

Last synced: 19 Jun 2026

https://github.com/marcelroozekrans/ai.sentinel

Security monitoring middleware for IChatClient (Microsoft.Extensions.AI). 55 detectors for prompt injection, hallucination, PII leakage, and operational anomalies. Intervention engine, embedded dashboard, audit forwarders to Azure Sentinel + OpenTelemetry. Drop-in middleware for any LLM client.

ai-security aot claude-code copilot csharp detection dotnet ichatclient llm-security mcp microsoft-extensions-ai middleware owasp-llm-top10 prompt-injection security

Last synced: 20 Jun 2026

https://github.com/the-17/pr-reviewer

Autonomous Python PR reviewer agent serving as the live security-hardening showcase for AgentSecrets—evolving from unsecured baseline to credentials protection (AgentSecrets), cryptographic capabilities (SEC), and behavioral abuse containment (CAD).

ai-agent autonomous-agents pr-reviewer python security

Last synced: 21 Jun 2026

https://github.com/center-key/npm-security-aggregator

🛡️ View audit reports for a published npm package

audit npm package security vulnerability

Last synced: 22 Jun 2026

https://github.com/tunahanaliozturk/secure-dotnet-skills

Aegis — 12 judgment-style agent skills for secure, production-grade .NET on Azure (security, design, performance, concurrency, observability). Works with Claude Code, Codex, Cursor, Gemini.

agent-skills ai-agents appsec aspnetcore azure claude-code csharp dotnet security skills

Last synced: 22 Jun 2026

https://github.com/majikah/majik-key

Majik Key is a next-generation seed phrase account library for creating and managing mnemonic-based identities. It provides a post-quantum ready, high-security bridge between BIP39 mnemonics and the Majikah ecosystem.

bip39 crypto cryptography key keypairs majik-message mnemonic security seed-phrase

Last synced: 22 Jun 2026

https://github.com/im-anishraj/nactograph

Local-first flight recorder for AI coding agents: terminal replay, git diffs, redaction, risk findings, and shareable reports.

agentic-ai ai ai-agents cli code-review codex coding-agents developer-tools devtools git llm local-first nodejs observability redaction risk-analysis security session-replay terminal typescript

Last synced: 25 Jun 2026

https://github.com/01alekseev/psc

Petoron Seal Contracts (PSC) is a minimalistic cryptographic contract format. It doesn't execute. It verifies. Then it ends :))

binary crypto-contracts cryptography digital-signature minimal petoron psc security ttl

Last synced: 27 Jun 2026

https://github.com/0n1con3/the-antiipgrabber-blocklist

The AntiIP-Grabber Blocklist: A comprehensive and continually updated collection of IP addresses identified due to proven activities related to IP grabbing. This list assists in protecting your networks and systems from unwanted intrusions and potentially harmful activities by blocking access from these specific addresses.

adblocker adblocker-lists adguard cybersecurity docker firewall firewall-rules ip linux networking pihole safeguard security security-audit security-tools

Last synced: 05 Feb 2026

https://github.com/zebbern/secops-cli-guides

A collection of essential penetration testing and Linux administration commands, compiled in easy-to-use PDFs. This repository includes detailed guides on tools like Metasploit, Nmap, Sqlmap, Hydra, and Linux system management. Ideal for ethical hackers, sysadmins, and security professionals. More resources coming soon!

api buffer-overflow bugbounty burp-suite cloud cloud-pentesting cross-site-scripting csrf ddos exploits guide linux networking pentesting privilege-escalation secops security toolset wireshark

Last synced: 24 Dec 2025

https://github.com/jeffmaley/awsssoreporting

Reports on Users/Group, Permission Sets, and Account Assignments

audit aws cloud-computing cloud-security cloud-security-audit iam secops security security-tools

Last synced: 14 Jan 2026

https://github.com/vladimyr/gh-sec

Github security alerts CLI

cli github nodejs security vulnerabilities

Last synced: 03 May 2026

https://github.com/jrgil20/security_in_operatingsystems

yo y mi afán de usar MarkDown para llevar mis apuntes. Repositorio con información de como funciona la seguridad en sistemas operativos

markdown-notes notes operating-system security

Last synced: 08 Jan 2026

https://github.com/ernanej/natalmaissegura

como modo de solucionar e auxiliar a segurança natalense, o projeto Natal + Segura consiste em implementar duas plataformas, uma mais simples e voltada para dispositivos móveis e outra mais trabalhada, sendo um site responsivo.

natal-rn project security

Last synced: 08 Jan 2026

https://github.com/mayacostantini/sigstore-roles

Ansible roles to deploy Sigstore components

ansible security sigstore

Last synced: 12 Sep 2025

https://github.com/colesmcintosh/vibe-security-ai

A professional command-line tool that leverages Claude 4 Sonnet to perform comprehensive security analysis on your code. Get detailed security reports with actionable recommendations to improve your code's security posture.

ai claude-4 security vibe-coding

Last synced: 12 Mar 2026

https://github.com/jpkcom/jpkcom

Administrator, Consultant, Designer & Developer

11ty administration css design developer development drupal html5 javascript php security seo typo3 wordpress

Last synced: 13 Apr 2026

https://github.com/walterthesmart/nextofkin

The Next of Kin smart contract, built on the Stacks blockchain using the Clarity language, allows users to deposit their STX tokens and assign recipients who will receive the tokens after a year of user inactivity. Utilizing chainhooks to monitor activity, the contract ensures automated distribution of assets.

bitcoin blockchain-technology clarity escrow security stacks

Last synced: 25 Apr 2026

https://github.com/saugataroyarghya/openclaw-file-guard

Multi-user file ownership and access control for OpenClaw individual agents. Protects skills, core markdown files from edits by unauthorized chat users.

access-control acl authorization discord-bot file-permissions middleware multi-user openclaw openclaw-plugin security slack-bot

Last synced: 08 May 2026

https://github.com/dvkunion/customs

海关(Customs) - Github Action 镜像数据收集与分析,为云安全研究提供数据支持。

actions cloud-native docker images security

Last synced: 13 Apr 2026

https://github.com/sziller/_sallet_visor

Online module of the Sallet universe. Low level, advanced Bitcoin wallet handling public data only. Coin selection, token management, gateway to an airgapped SKULL unit.

application bitcoin coin-selection desktop-app kivy low-level mobile-app nft python3 qr-code security tokens utxo-wallet wallet

Last synced: 17 Jan 2026

https://github.com/zd87pl/slm-vault

Privacy-first AI personal data manager. A local trusted agent that external AIs command via MCP — they never see your documents. Encrypted storage, local RAG, activity logging, and per-agent permissions.

agentic-ai ai apple-silicon encryption llm local-first mcp mlx model-context-protocol personal-data privacy python rag security

Last synced: 13 Apr 2026

https://github.com/f33rni/homeland-sees

RaspberryPi / OrangePi based simple automated surveillance camera project with Telegram bot integration

bot camera ffmpeg home-security orange-pi orangepi python raspberry-pi security surveillance telegram telegram-bot

Last synced: 20 Apr 2026

https://github.com/john-breton/WATER

A security focused Internet measurement framework to map the threat landscape for users that require accessibility tools to access the Internet

internet-measurements madweb23 python research-paper security selenium-python wcag21 web-accessibility

Last synced: 11 Mar 2025

https://github.com/lucasgdb/password-generator

Gerador de Senhas gratuito para Desktop (Windows 7 e posterior)

generator password security

Last synced: 13 Apr 2026

https://github.com/owlscan/owlscan

OwlScan is a community-powered, open-source OSINT intelligence framework built for security researchers, penetration testers, investigators, and enthusiasts. It combines web scraping, network reconnaissance, people intelligence aggregation, and threat analysis into a single cohesive platform.

automation bug-bounty cybersecurity dns-recon ethical-hacking flask footprinting hacking information-gathering infosec network-scanner osint penetration-testing python recon reconnaissance security security-research security-tools threat-intelligence

Last synced: 30 May 2026

https://github.com/xamiron/owasp-top-10-vulnerabilities-note

A vulnerability is a hole or a weakness in the application, which can be a design flaw or an implementation bug, that allows an attacker to cause harm to the stakeholders of an application.

hacking-notes owasp-top-10 security vulnerability-assessment

Last synced: 19 Feb 2026

https://github.com/zoracon/zoracon.github.io

My corner of the web. I also blog a bit.

security

Last synced: 10 Jan 2026

https://github.com/kotyara12/realarm

Охранно-пожарная сигнализация

alarm esp-idf esp32 esp32-idf secure security

Last synced: 13 Apr 2026

https://github.com/asankasovis/password-manager-csharplibrary

🔐 Muragala is a password manager designed to make managing passwords easy and secure. My goal is to make it a secure and reliable password manager available in the public domain for everyone to use. Privacy and security is for everyone, this is the core value behind this project.

csharp password password-generator password-manager security

Last synced: 28 Mar 2025

https://github.com/sushantnair/is

A collection of experiments I have performed for the course "Information Security" as part of the curriculum for Semester 6 of TY B. Tech. Computer Engineering at KJ Somaiya College of Engineering.

captcha cipher-algorithms recaptcha security

Last synced: 06 Jul 2025

https://github.com/didrod205/entropass

Generate strong, bias-free passwords (random/pronounceable/PIN) and measure strength — entropy & crack time — 100% locally. Zero deps. Web app + library.

crypto csprng entropy passphrase password password-generator password-strength secure-random security zero-dependency

Last synced: 16 Jun 2026

https://github.com/bklockly/shadowmeld

🕶️ 隐蔽Shellcode嵌入与反检测加载器生成框架 / Stealthy Payload Delivery Framework with Anti-EDR Capabilities

bypass-antivirus bypass-av cipher cryptography hacking hide-files image-steganography lsb-steganography security shellcode shellcode-loader

Last synced: 16 Mar 2025

https://github.com/miccy/dont-be-shy-hulud

🪱 NPM Worm Defense Guide: Detection, remediation & prevention for Shai-Hulud 2.0 and beyond!

article bun defense detection devops malware malware-detection ncident-response nodejs npm security security-audit security-tools shai-hulud shai-hulud-detector supply-chain worm

Last synced: 13 Jan 2026

https://github.com/center-key/grails-security-plugin

Straightforward security you can understand

authentication grails grails-plugin groovy security

Last synced: 01 Apr 2025

https://github.com/csaba79-coder/amigoscodejsonwebtokenjwt

JSON Web Token, Security, Authentication, Authorization

authentication authorization jsonwebtoken security

Last synced: 26 Mar 2025

https://github.com/bval/hubot-security-posters

Return a random NSA security poster from the 1950s-60s

hubot-scripts security

Last synced: 07 Dec 2025

https://github.com/smaranjitghose/sightguardai

Capitalizing moondream's capabilities to build a CCTV frame-on-framer analyzer

computer-vision llm localllm moondream python security streamlit vlm

Last synced: 10 May 2026

https://github.com/komachi/ansible-decent-router

Ansible playbook to provide decent router experience

ansible ansible-playbook playbook router security

Last synced: 25 May 2026

https://github.com/shanemhamilton/bugsweep

AI bug-hunting & auto-fix for your codebase — a Claude Code & Codex skill. An adversarial Hunter→Skeptic→Referee review finds security vulnerabilities, logic errors & race conditions across your whole repo, then fixes them on a throwaway branch you control. Safe for unattended runs.

agentic-ai ai-agents ai-code-review ai-developer-tools anthropic automated-code-review bug-detection claude claude-code code-quality code-review codex developer-tools devtools llm sast security security-tools static-analysis vulnerability-scanner

Last synced: 31 May 2026

https://github.com/gregl83/pseudo-root

Sudo make me root

root rust security sudo

Last synced: 09 Apr 2025

https://github.com/thecomputeguy/jedi

A web malware analysis framework for PHP-based backends

cms malware-detection python security

Last synced: 26 Apr 2025

https://github.com/mssm199996/mssecurity

Maven dependancy which i always use for copyright purposes for my java desktop applications

computer-identification copyright-scan decryption java java-8 maven security uncryption windows

Last synced: 13 Apr 2026

https://github.com/p10ns11y/arch-machine

**The only Arch Linux setup that audits itself harder than your ex audits your text messages 👀💔**. Meet arch-machine 🛡️🤖 — your AI-forged, profile-based Arch Linux fortress 🏰 that turns a fresh install into a paranoid, self-healing, ML/AI-ready workstation ⚡ faster than you can say “yay/paru/pacman … oh god why is it still compiling” 😩�

agents ai archlinux devex installers ml security sentinels shell system-audit tools virusscan vulenrability

Last synced: 30 May 2026

https://github.com/oaslananka/boardreadyops

Board-ready operations toolkit for governance evidence, release discipline, issue triage, security controls, and executive reporting across software delivery workflows.

automation ci-cd compliance evidence github-actions governance issue-triage operations project-management release-management reporting security typescript

Last synced: 30 May 2026

https://github.com/nabilmouzouna/exp-v0

This website demonstrates SQL injection vulnerabilities by simulating weak database security and minimal input validation. It shows how attackers can exploit these flaws, underscoring the need for secure coding practices.

pentesting security sqlinjection vunerability websecurity

Last synced: 05 Feb 2026

https://github.com/SEUNAKINTOLA/Whistle-Blower

This platform is dedicated to reporting unethical practices daily in organization either in government sectors or private Parastatals at no cost.

anonymity api human-rights json php security transparency whistle whistleblowing

Last synced: 11 Mar 2025

https://github.com/barikad/gitlabmonitor

Un script shell robuste pour surveiller automatiquement l'apparition de nouveaux dépôts publics sur une instance GitLab et envoyer des notifications par email lors de leur première détection.

gitlab monitor public security

Last synced: 13 Apr 2026

https://github.com/alabr0s/mp-captcha

Modern, secure, and user-friendly CAPTCHA solution. Built with Bootstrap 5, featuring light/dark themes and responsive design. demo:https://devland.pw/Captcha

anti-spam bootstrap bootstrap5 bot-protection captcha captcha-image form-validation javascript php responsive-design security web-security

Last synced: 17 Apr 2026

https://github.com/sudhanplayz/ecdsa-node

Secure, centralized transfers with Elliptic Curve Signatures.

crypto cryptography ecdsa elliptic-curve-cryptography elliptic-curves security

Last synced: 29 Oct 2025

https://github.com/didrod205/csp-doctor

Lint a Content-Security-Policy for XSS holes locally — 'unsafe-inline', wildcards, missing directives, and allowlisted hosts that bypass CSP (JSONP/AngularJS). Nonce/strict-dynamic aware. Deterministic CLI, JSON/MD reports, no website.

appsec cli content-security-policy csp csp-evaluator devsecops linter security security-headers strict-dynamic typescript web-security xss zero-dependency

Last synced: 16 Jun 2026

https://github.com/simoneonofri/inclusion-2024-simone

Slide Deck for Inclusion 2024 Conference

identity security threat-modeling w3c

Last synced: 18 Jan 2026

https://github.com/didrod205/unspook

Reveal & remove invisible, dangerous & confusable characters in your text — zero-width spaces, BOMs, bidi (Trojan Source), homoglyphs, smart quotes. 100% local. Web app + library + CLI.

homoglyph invisible-characters prompt-injection security smart-quotes text-cleaner trojan-source unicode zero-dependency zero-width-space

Last synced: 16 Jun 2026

https://github.com/vsingh55/devsecops-pipeline

DevSecOps Pipeline ensures secure, automated, and continuously monitored CI/CD processes on GCloud. It integrates security by design, leverages automation through Jenkins and Docker, and employs continuous monitoring with Prometheus and Grafana to maintain application and infrastructure health.

automation bash devsecops docker dockerhub gcp gmail graphana kubernetes prometheus security sonarqube terraform terraform-module trivy

Last synced: 13 Apr 2026

https://github.com/euandrelucas/adg-crypto

API simples e rápida para criptografar textos e arquivos com Node.js + Fastify.

crypto decryption encryption file-encryption secure-api security text-encryption

Last synced: 25 Apr 2025

https://github.com/owlsome-official/cipherpayload

CipherPayload middleware for Fiber that use AES Algorithm for encrypt and decrypt payload in request and response body.

cipher encryption gofiber golang golang-library middleware payload-encryption security

Last synced: 23 Feb 2026

https://github.com/houseos/scp

Arduino library for secure-control-protocol devices

chacha20-poly1305 esp8266 http iot json protocol rest security wifi

Last synced: 13 Apr 2026

https://github.com/kathleenwest/wcfauthenticationdemo

This project presents a Visual Studio solution including a simple demo WCF Authentication Service Application and a “Tester” Client (Windows Form Application) that allows the user to test the user registration, login, logout, and service operations. In addition to demonstrating standard authentication capabilities, the WCF service implements a custom username and password validator pattern. Passwords are stored securely using Password-Based Key Derivation Function PBKD cryptology of which the implementation is discussed. A custom error handler ensures that exceptions are properly wrapped into WCF Faults and communicated to the client caller. Certificates are discussed along with how to implement a server certificate on a client machine for development testing of “integrity” and application trust. The project includes a demo certificate and script for generating self-signed dev certificates, which must be installed into the client certificate store for the client tester application to trust and access the demo service. The client “tester” windows form application is not intended as a UX/UI demo but used to test and verify that the backend authentication service registration, login, logout, service operations, and callbacks are working as expected and sending proper WCF fault messages. Lastly, the project is shown in the demo section with a video and screen captures.

authentication certificate certificate-generation cryptology csharp custom-validation custom-validators error-handling password-hash password-safety password-store pbdk security service wcf wcf-bindings wcf-client wcf-service wcf-service-client-demo windows-communication-foundation

Last synced: 17 Oct 2025

https://github.com/ruedigervoigt/bote

A Python library to send email. Enforces encryption if not sending via localhost.

email email-sender python-email python-library security smtp ssl tls

Last synced: 14 Jan 2026

https://github.com/localzet/jwt

Localzet JWT is a library for working with JSON Web Tokens (JWT). Developed by Ivan Zorin, it uses modern technologies and standards for creating, verifying, and handling JWTs.

library security

Last synced: 10 Jan 2026

https://github.com/cpscript/linux-security

A simple Linux security script to protect your files and data from external brute force attempts if you get caught and your device gets seized

linux security

Last synced: 12 Mar 2025

https://github.com/cdot65/device-certificate-report

A Python-based CLI tool to generate device certificate reports from PAN-OS devices.

certificates network paloaltonetworks panos reporting security

Last synced: 14 Jan 2026

https://github.com/ashutosh0x/aardvark-security-scanner

An AI-powered security scanning system with automated triage, sandbox validation, and patch suggestions. Integrates Semgrep, Bandit, Trivy with LLM analysis for comprehensive vulnerability detection and remediation.

ai automated-patching bandit cybersecurity devsecops docker github-actions go javascript llm openai python sandbox security security-automation security-research security-tools semgrep trivy vulnerability-scanning

Last synced: 13 Apr 2026

https://github.com/mrwanashraf/chativate-peer-to-peer

a free software project that aims to offer a secure chat app that cares about user's privacy using Peer-To-Peer model

chat-application privacy-protection security

Last synced: 09 Apr 2025

https://github.com/clay-good/qiuth

Transform API keys from bearer tokens into proof-of-possession tokens, requiring multiple authentication factors to prevent unauthorized access even if your API key is leaked.

api proof-of-possession security

Last synced: 18 Jan 2026

https://github.com/jantytgat/go-transcrypt

go-transcrypt provides functionality to encrypt arbitrary data into a hex encoded string for safe on-disk storage

encryption-decryption encryption-library golang golang-library golang-package security

Last synced: 02 Mar 2026

https://github.com/mrwanashraf/chativate-client-server

a free software project that aims to offer a secure chat app that cares about user's privacy using Client/Server Model

chat-application privacy-protection security

Last synced: 09 Apr 2025

https://github.com/madebyjake/hashreport

Generate detailed file hash reports quickly and efficiently. Process large numbers of files with multiple filtering options.

agplv3 checksum hash python3 report security utility

Last synced: 09 Apr 2025

https://github.com/fastuptime/csrf-shield

🚀 csrf-shield is a middleware for protecting web applications from Cross-Site Request Forgery (CSRF) attacks. It integrates easily with Express.js and ensures that your forms and requests are secure.

csrf express expressjs security

Last synced: 09 Apr 2025

https://github.com/r3nanp/portscanner

🔒 It's a port scanner available from a vulnerable website.

port-scanner portscanner security

Last synced: 06 Jul 2026

https://github.com/quinnturner/owasp-js

TypeScript security utilities following OWASP best practices

logging owasp security

Last synced: 14 Jul 2025

https://github.com/tuxxy/speck

A no_std implementation of NSA's lightweight blockcipher SPECK

cryptography encryption lightweight-cryptography rust rust-crypto security speck

Last synced: 24 Apr 2025

https://github.com/krisarmstrong/seed

Portable network diagnostic appliance — real-time link, switch, DHCP, DNS, Wi-Fi, and security posture from any network jack.

cisa-kev cve go hipaa network-diagnostics network-monitoring network-tools raspberry-pi security wifi

Last synced: 29 May 2026

https://github.com/eternaltyro/dumbstuff

(Mirror) Dumb Stuff I do everynow and then; Mirrored from Gitlab 👇

ansible archlinux logstash security shell vimrc

Last synced: 08 May 2026