Security
Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.
- GitHub: https://github.com/topics/security
- Wikipedia: https://en.wikipedia.org/wiki/Computer_security
- Aliases: security-tools, security-vulnerability, security-audit,
- Last updated: 2026-01-22 00:24:28 UTC
- JSON Representation
https://github.com/blacklanternsecurity/badsecrets
A library for detecting known secrets across many web frameworks
appsec asp-net cryptography django express-js flask javaserver-faces jwt peoplesoft python rails secrets security symfony telerik-ui
Last synced: 14 May 2025
https://github.com/GoSecure/dtd-finder
List DTDs and generate XXE payloads using those local DTDs.
dtd hacktoberfest security xxe
Last synced: 02 Apr 2025
https://github.com/w3c/trusted-types
A browser API to prevent DOM-Based Cross Site Scripting in modern web applications.
dom javascript polyfill security trusted-types w3c xss
Last synced: 15 May 2025
https://github.com/madneal/articles-translator
:books:Translate the distinct technical blogs. Please star or watch. Welcome to join me.
article codeql css javascript memory-management npm parcel pwa react security security-tools vue web web-security webpack
Last synced: 15 May 2025
https://github.com/shelld3v/jsshell
JSshell - JavaScript reverse/remote shell
blindxss bugbounty hacking javascript js pentest python python3 security shell xss xss-exploitation
Last synced: 04 Apr 2025
https://github.com/vdjagilev/nmap-formatter
A tool that allows you to convert NMAP results to html, csv, json, markdown, graphviz (dot), sqlite, excel and d2-lang. Simply put it's nmap converter.
bounty csv d2lang go golang graphviz html json markdown nmap pentesting port-scanner port-scanning scan scanner security security-tools sqlite xml xml-parsing
Last synced: 05 Apr 2025
https://github.com/anna-is-cute/paste
A sensible, modern pastebin.
anonymity pastebin rust security self-hosted
Last synced: 05 Apr 2025
https://github.com/61bcdefg/hikari-llvm15
A fork of Hikari Obfuscator [WIP]
compiler llvm obfuscator obfuscator-llvm security
Last synced: 20 Feb 2025
https://github.com/bishopfox/badpods
A collection of manifests that will create pods with elevated privileges.
assessment exploitation hostipc hostnetwork hostpath hostpid kubernetes penetration-testing pods podspec privileged security
Last synced: 04 Apr 2025
https://github.com/dwisiswant0/ppfuzz
A fast tool to scan client-side prototype pollution vulnerability written in Rust. 🦀
bugbounty bugbounty-tool bugbountytips chromium prototype-pollution rust rust-tools security security-tools vulnerability-scanners
Last synced: 16 May 2025
https://github.com/w3c/webappsec-trusted-types
A browser API to prevent DOM-Based Cross Site Scripting in modern web applications.
dom javascript polyfill security trusted-types w3c xss
Last synced: 09 Mar 2025
https://github.com/payloadbox/ssti-payloads
🎯 Server Side Template Injection Payloads
bounty bugbounty bugbountytips code code-security injection payload payloadbox payloads security security-audit server-side-template-injection source source-code-analysis ssti web websecurity
Last synced: 05 Mar 2025
https://github.com/devise-security/devise-security
A security extension for devise, meeting industry-standard security demands for web applications.
activerecord devise devise-modules hacktoberfest mongoid password-expiration passwords rails ruby security session-management
Last synced: 12 May 2025
https://github.com/auth0/SimpleKeychain
A simple Keychain wrapper for iOS, macOS, tvOS, and watchOS
Last synced: 04 Apr 2025
https://github.com/ncsa/ssh-auditor
The best way to scan for weak ssh passwords on your network
auditing brute-force discover security ssh
Last synced: 16 Jan 2026
https://github.com/ESAPI/esapi-java-legacy
ESAPI (The OWASP Enterprise Security API) is a free, open source, web application security control library that makes it easier for programmers to write lower-risk applications.
Last synced: 10 May 2025
https://github.com/gamemann/XDP-Firewall
A firewall that utilizes the Linux kernel's XDP hook. The XDP hook allows for very fast network processing on Linux systems. This is great for dropping malicious traffic from a (D)DoS attack. IPv6 is supported with this firewall! I hope this helps network engineers/programmers interested in utilizing XDP!
anti-ddos bpf ddos ddos-attacks ddos-mitigation ddos-protection denial-of-service distributed-denial-of-service dos dos-attack dos-protection ebpf fast firewall fw kernel linux network security xdp
Last synced: 02 Apr 2025
https://github.com/maldevel/pentestkit
Tools, scripts and tips useful during Penetration Testing engagements.
assessment hacking kali-linux network notes penetration-testing pentesting scripts security system tools web
Last synced: 18 Oct 2025
https://github.com/maldevel/PenTestKit
Tools, scripts and tips useful during Penetration Testing engagements.
assessment hacking kali-linux network notes penetration-testing pentesting scripts security system tools web
Last synced: 13 Mar 2025
https://github.com/opengovern/opensecurity
opensecurity: open-source security and compliance. See and secure your cloud, containers, code, networks, deployments, devices. Define your rules, get precise checks, fix gaps fast. Streamlined audits. No fluff.
audit cloud-security compliance container-security cspm devsecops optimization oss policy-as-code security security-auditing-tool
Last synced: 12 Jan 2026
https://github.com/0x783kb/Threat-Analysis-Handbook
常见的攻击行为监测特征及方法,涵盖端点和流量,未包含PowerShell和Sysmon。预祝运营生活愉快!
attck security security-operation soc threat-hunting
Last synced: 28 Sep 2025
https://github.com/0x783kb/Security-Operation-Book
常见的攻击行为监测特征及方法,涵盖端点和流量,未包含PowerShell和Sysmon。预祝运营生活愉快!
attck security security-operation soc threat-hunting
Last synced: 13 Mar 2025
https://github.com/google/webauthndemo
An example Node.js Relying Party implementation of the WebAuthn specification
authentication authentication-backend example google-appengine relying-party security webauthn webauthn-library
Last synced: 05 May 2025
https://github.com/eth-sri/securify2
Securify v2.0
datalog ethereum security smart-contract solidity static-analysis vulnerability
Last synced: 23 Jul 2025
https://github.com/wallarm/api-firewall
Fast and light-weight API proxy firewall for request and response validation by OpenAPI specs.
api api-firewall api-gateway api-security api-waf api-wrapper apigateway firewall openapi openapi-security openapi-spec openapi-specification proxy rest-security security security-tools swagger waf web-application-firewall web-application-security
Last synced: 14 May 2025
https://github.com/D0g3-Lab/H1ve
An Easy / Quick / Cheap Integrated Platform
awd awd-platform ctf platform security
Last synced: 12 Jul 2025
https://github.com/hynek/argon2-cffi
Secure Password Hashes for Python
argon2 cffi password password-hash python security
Last synced: 11 Dec 2025
https://github.com/smallcham/sec-admin
分布式资产安全扫描核心管理系统(弱口令扫描,漏洞扫描)
exploits infosec python scanner security security-audit vulnerability-scanners
Last synced: 16 Jan 2026
https://github.com/nhas/wag
Simple Wireguard 2FA
2fa firewall linux management-portal mfa network networking privacy security self-hosted ui virtual-network vpn vpn-server wireguard wireguard-admin wireguard-vpn
Last synced: 15 May 2025
https://github.com/coyim/coyim
coyim - a safe and secure chat client
anonymity coyim desktop encrypt golang instant-messaging multiplatform otr privacy security tor xmpp
Last synced: 12 Jan 2026
https://github.com/AxaFrance/oidc-client
Light, Secure, Pure Javascript OIDC (Open ID Connect) Client. We provide also a REACT wrapper (compatible NextJS, etc.).
axa context-api front-end-development javascript js library nextjs oauth2 oidc-client ope openid openid-client openid-connect react reactjs redux security
Last synced: 06 Aug 2025
https://github.com/jas502n/0day-security-software-vulnerability-analysis-technology
0day安全_软件漏洞分析技术
0day binary hack security software vulnerability
Last synced: 18 Jan 2026
https://github.com/Tmpertor/Raven-Storm
Raven-Storm is a powerful DDoS toolkit for penetration tests, including attacks for several protocols written in python. Takedown many connections using several exotic and classic protocols.
attacks botnet ddos ddos-attack-tools ddos-attacks ddos-script ddos-tool denial-of-service dos mitm penetration-tests pentesting protection python security security-tools server stress-testing termux web-security
Last synced: 30 Apr 2025
https://github.com/anyeduke/enterprise-security-skill
用于记录企业安全规划,建设,运营,攻防的相关资源
enterprise enterprise-security-skill osint security
Last synced: 02 Apr 2025
https://github.com/falcosecurity/falcosidekick
Connect Falco to your ecosystem
docker falco falco-event hacktoberfest kubernetes response-engine security
Last synced: 14 May 2025
https://github.com/jobhope/TechnicalNote
Repository to store what we have studied. :book: We want everyone to get a job through TechnicalNote.
algorithm computer-architecture computer-science cpp data-structures database design-patterns github java linear-algebra network operating-system programming-language security software-engineering sort tech-interview technical-notes web windows
Last synced: 05 May 2025
https://github.com/urbanadventurer/urlcrazy
Generate and test domain typos and variations to detect and perform typo squatting, URL hijacking, phishing, and corporate espionage.
domainname hacking infosec kali-linux osint phishing ruby security typo-domains typosquatting
Last synced: 04 Apr 2025
https://github.com/linux-audit/audit-userspace
Linux audit userspace repository
Last synced: 21 Oct 2025
https://github.com/spatie/laravel-welcome-notification
Send a welcome notification to new users
auth laravel mail onboarding password security welcome
Last synced: 14 May 2025
https://github.com/janssenproject/jans
The Janssen Project is a home for open source IAM components, featuring Auth Server (OAuth/OpenID), Agama low-code identity orchestration, and the Cedarling policy decision point. The "Janssen Server" distributions bundle IAM components under one control plane.
access-management api iam identity kubernetes oauth2 openid-connect security sso
Last synced: 22 Jan 2026
https://github.com/YosaiProject/yosai
A Security Framework for Python applications featuring Authorization (rbac permissions and roles), Authentication (2fa totp), Session Management and an extensive Audit Trail
authentication authorization python rbac security sessionmanagement totp two-factor twofactorauth
Last synced: 22 Apr 2025
https://github.com/rek7/mXtract
mXtract - Memory Extractor & Analyzer
c-plus-plus cpp cpp11 credentials exploitation linux malware memory-hacking pentesting redteam regex security security-tools stealing
Last synced: 30 Mar 2025
https://github.com/trailofbits/twa
A tiny web auditor with strong opinions.
auditing hacktoberfest security web-security
Last synced: 15 May 2025
https://github.com/rek7/mxtract
mXtract - Memory Extractor & Analyzer
c-plus-plus cpp cpp11 credentials exploitation linux malware memory-hacking pentesting redteam regex security security-tools stealing
Last synced: 04 Apr 2025
https://github.com/clearcontainers/runtime
OCI (Open Containers Initiative) compatible runtime using Virtual Machines
container containers cri-o docker kvm oci qemu-kvm security virtual-machine virtualization
Last synced: 30 Mar 2025
https://github.com/EBWi11/AgentSmith-HIDS
By Kprobe technology Open Source Host-based Intrusion Detection System(HIDS), from E_Bwill.
anti-rootkit connect-hook create-file-hook detect-porcess-injection dns-query-hook execve-hook hids intrusion-detection kprobes load-lkm-hook security
Last synced: 02 Apr 2025
https://github.com/TheHackerDev/race-the-web
Tests for race conditions in web applications. Includes a RESTful API to integrate into a continuous integration pipeline.
appsec devops-tools infosec race-conditions security security-tools
Last synced: 02 Apr 2025
https://github.com/eth-sri/securify2?tab=readme-ov-file
Securify v2.0
datalog ethereum security smart-contract solidity static-analysis vulnerability
Last synced: 21 Oct 2025
https://github.com/OpenVPN/openvpn3-linux
OpenVPN 3 Linux client - This is a mirror of https://codeberg.org/OpenVPN/openvpn3-linux/
dbus linux openvpn security vpn vpn-client vpn-tunnel
Last synced: 28 Mar 2025
https://github.com/StamusNetworks/scirius
Scirius is a web application for Suricata ruleset management and threat hunting.
cybersecurity detection gui interface management network-intrusion-detection network-security python security signatures suricata suricata-rules threat-hunting user-interface
Last synced: 01 Apr 2025
https://github.com/robustnlp/cipherchat
A framework to evaluate the generalization capability of safety alignment for LLMs
alignment chatgpt gpt-4-0613 jailbreak large-language-models llm security
Last synced: 21 Apr 2025
https://github.com/rhinobase/hono-rate-limiter
Rate Limit middleware for Hono Server
api hono honojs middleware nodejs rate-limiter rate-limiting rest-api security serverless web
Last synced: 25 Dec 2025
https://github.com/lesnuages/hershell
Multiplatform reverse shell generator
exploit reverse-shell security
Last synced: 16 Dec 2025
https://github.com/liamg/furious
:angry: Go IP/port scanner with SYN (stealth) scanning and device manufacturer identification
ip-scanner network-scanner port-scanner security
Last synced: 04 Apr 2025
https://github.com/drduh/purse
GnuPG asymmetric password manager
bash bash-script encryption file-encryption gnupg gpg password password-manager security unix
Last synced: 04 Apr 2025
https://github.com/cedricbonhomme/stegano
A pure Python steganography module.
hidden-message image-processing secret security steganalysis steganography
Last synced: 20 Jan 2026
https://github.com/trailofbits/winchecksec
Checksec, but for Windows: static detection of security mitigations in executables
hacktoberfest mitigations security windows
Last synced: 15 May 2025
https://github.com/tv-labs/elixir-secure-coding
An interactive cybersecurity curriculum designed for enterprise use at software companies using Elixir
elixir elixir-lang elixir-phoenix livebook salus security security-education sobelow
Last synced: 04 Apr 2025
https://github.com/drduh/Purse
GnuPG asymmetric password manager
bash bash-script encryption file-encryption gnupg gpg password password-manager security unix
Last synced: 27 Mar 2025
https://github.com/AnyeDuke/Enterprise-Security-Skill
用于记录企业安全规划,建设,运营,攻防的相关资源
enterprise enterprise-security-skill osint security
Last synced: 13 Mar 2025
https://github.com/leiweibau/pi.alert
Scan the devices connected to your WIFI / LAN and alert you the connection of unknown devices. It also warns if a "always connected" device disconnects. In addition, it is possible to check web services for availability. For this purpose HTTP status codes and the response time of the service are evaluated.
arp-scan network-security pi-hole pialert security self-hosted
Last synced: 10 Apr 2025
https://github.com/CERT-Polska/Artemis
A modular vulnerability scanner with automatic report generation capabilities.
artemis pentesting security security-scanner security-tools vulnerability-detection vulnerability-scanner web-scanner
Last synced: 28 Sep 2025
https://github.com/Graphite-Docs/graphite
Encrypted, secure, user-owned productivity suite
blockchain decentralized-applications privacy security writing
Last synced: 03 Apr 2025
https://github.com/TechRate/Smart-Contract-Audits
Smart Contract security audit reports
audit defi ethereum reflection security security-audit smart-contracts smart-contracts-audit solidity techrate
Last synced: 08 May 2025
https://github.com/RobustNLP/CipherChat
A framework to evaluate the generalization capability of safety alignment for LLMs
alignment chatgpt gpt-4-0613 jailbreak large-language-models llm security
Last synced: 12 Mar 2025
https://github.com/datadog/dd-trace-py
Datadog Python APM Client
apm ci datadog debugging error-monitoring observability profiling python security tracing
Last synced: 16 Jan 2026
https://github.com/EvilBytecode/GoRedOps
🦫 | GoRedOps is a repository dedicated to gathering and sharing advanced techniques and offensive malware for Red Team, with a specific focus on the Go programming language, all is made for educational purpoeses only.
go golang hacking malware malware-development offensive-security red-team redteaming security windows
Last synced: 14 Oct 2025
https://github.com/ConsenSysDiligence/vscode-solidity-auditor
Solidity language support and visual security auditor for Visual Studio Code
security solidity vscode vscode-extension vscode-language vscode-theme
Last synced: 15 Apr 2025
https://github.com/Marshall-Hallenbeck/red_team_attack_lab
Red Team Attack Lab for TTP testing & research
ansible hacking infosec lab penetration-testing pentesting red-team redteam security security-testing security-tools vagrant
Last synced: 12 Jul 2025
https://github.com/jkctech/Telegram-Trilateration
Proof of concept for abusing Telegram's "People Near Me" feature and tracking people's location
exploit gps-coordinates gps-location nox nox-player privacy python security telegram vulnerability
Last synced: 20 Apr 2025
https://github.com/elliotkillick/mido
The Secure Microsoft Windows Downloader
automation download downloader microsoft security windows windows-10 windows-11 windows-7 windows-8-1 windows-downloader windows-iso windows-iso-downloader windows-ltsc windows-server windows10 windows11
Last synced: 04 Apr 2025
https://github.com/diversenok/TokenUniverse
An advanced tool for working with access tokens and Windows security policy.
access-tokens delphi native-api security security-tools windows windows-internals
Last synced: 09 Apr 2025
https://github.com/xfiftyone/STS2G
Struts2漏洞扫描利用工具 - Golang版. Struts2 Scanner Written in Golang
golang golang-application security struts2-exp vulnerability
Last synced: 14 Apr 2025
https://github.com/aboutcode-org/vulnerablecode
A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sponsored by NLnet https://nlnet.nl/project/vulnerabilitydatabase/ for https://www.aboutcode.org/ Chat at https://gitter.im/aboutcode-org/vulnerablecode Docs at https://vulnerablecode.readthedocs.org/
cpe cve cvss nvd ossindex osv package-url purl security security-tools snyk vulndb vulnerability vulnerability-database vulnerability-databases vulnerability-detection vulnerability-identification vulnerability-scanners
Last synced: 14 May 2025
https://github.com/DataDog/dd-trace-py
Datadog Python APM Client
apm ci datadog debugging error-monitoring observability profiling python security tracing
Last synced: 26 Mar 2025
https://github.com/artginzburg/sudo-touchid
Permanent TouchID support 👆 for `sudo`.
authentication bash cli macos security sudo terminal touchid
Last synced: 25 Oct 2025
https://github.com/rust-ammonia/ammonia
Repair and secure untrusted HTML
crates html-sanitization security web
Last synced: 13 May 2025
https://github.com/stacklok/codegate
CodeGate: Security, Workspaces and Muxing for AI Applications, coding assistants, and agentic frameworks.
ai ai-gateway aisecurity artificial-intelligence claude cline codegen copilot developer-productivity developer-tools generative-ai ide jetbrains llm ollama openai privacy python security vscode
Last synced: 15 May 2025
https://github.com/dan-v/rattlesnakeos-stack
Build your own privacy and security focused Android OS in the cloud.
android aosp aws aws-lambda chromium custom ec2 f-droid golang ota-update privacy security signing-keys spot-instances terraform verified-boot
Last synced: 03 Oct 2025
https://github.com/Coldcard/firmware
❄️ Firmware and simulator for Coldcard Hardware Wallet
bitcoin bitcoin-wallet cryptocurrency cryptography security
Last synced: 26 Mar 2025
https://github.com/prompt-security/ps-fuzz
Make your GenAI Apps Safe & Secure :rocket: Test & harden your system prompt
ai ai-fuzzer fuzzer generative-ai llm llm-fuzzer security security-tools system-prompt-hardener
Last synced: 14 Jan 2026
https://github.com/konstruktoid/ansible-role-hardening
Ansible role to apply a security baseline. Systemd edition.
almalinux amazon-linux ansible auditd centos debian hacktoberfest hardening information-security openscap security security-compliance security-hardening security-tools systemd ubuntu vagrant
Last synced: 19 Oct 2025
https://github.com/OWASP/www-project-kubernetes-top-ten
OWASP Foundation Web Respository
Last synced: 12 Apr 2025
https://github.com/devops-kung-fu/bomber
Scans Software Bill of Materials (SBOMs) for security vulnerabilities
cyclonedx devsecops epss golang gomodule oss sbom security security-automation security-tools spdx supply-chain supplychain syft vulnerability-scanners
Last synced: 15 May 2025
https://github.com/shenril/sitadel
Web Application Security Scanner
penetration-testing python3 scanner-web security
Last synced: 02 Apr 2025
https://github.com/liamg/scout
🔭 Lightweight URL fuzzer and spider: Discover a web server's undisclosed files, directories and VHOSTs
fuzzer hackthebox pentesting security url url-fuzzer
Last synced: 05 Apr 2025
https://github.com/m0nad/hellraiser
Vulnerability scanner using Nmap for scanning and correlating found CPEs with CVEs.
cve cve-scanning hacking hacking-tool network network-analysis nmap rails ruby scanner security security-audit security-tools vulnerability-assessment vulnerability-detection vulnerability-scanners
Last synced: 05 Apr 2025
https://github.com/m0nad/HellRaiser
Vulnerability scanner using Nmap for scanning and correlating found CPEs with CVEs.
cve cve-scanning hacking hacking-tool network network-analysis nmap rails ruby scanner security security-audit security-tools vulnerability-assessment vulnerability-detection vulnerability-scanners
Last synced: 07 Apr 2025
https://github.com/trailofbits/fickling
A Python pickling decompiler and static analyzer
machine-learning python security
Last synced: 05 Oct 2025