Security
Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.
- GitHub: https://github.com/topics/security
- Wikipedia: https://en.wikipedia.org/wiki/Computer_security
- Aliases: security-tools, security-vulnerability, security-audit,
- Last updated: 2026-06-23 00:28:09 UTC
- JSON Representation
https://github.com/zorggomat/fractalcryptgui
Free cross-platform deniable encryption cryptoarchiver
aes aes-256 aes-encryption cpp cross-platform cryptography deniable-crypto deniable-encryption minizip openssl openssl-library plausible-deniability qt qt5 qt5-gui quazip security steganography zlib
Last synced: 08 Oct 2025
https://github.com/WeiyiGeek/SecOpsDev
项目介绍: 自己闲来无事所写以及工作中抽取的安全/运维/开发方面的代码小脚本 ,希望大家多多star支持。
development devops security tools
Last synced: 12 Jul 2025
https://github.com/leonlatsch/Photok
Encrypted Photo Safe for Android
android android-app app encryption image kotlin photos safe security
Last synced: 15 Apr 2025
https://github.com/OWASP/samm
SAMM stands for Software Assurance Maturity Model.
maturity-models owasp-samm security
Last synced: 01 Apr 2025
https://github.com/vatsi2/btc-tax-optimization
Bitcoin whales slash taxes 47%, lock millions offline, and trade undetected. Royen: 2025’s elite crypto fortress. Become untouchable.
aml bitcoin bitcoin-analysis bitcoin-etf bitcoin-security bitcoin-wallet blockchain cryptocurrency dark-pool finance kyc market-analysis otc otc-trading privacy regulatory-compliance rust security tax-calculator wealth-management
Last synced: 31 Mar 2025
https://github.com/spectralops/keyscope
Keyscope is a key and secret workflow (validation, invalidation, etc.) tool built in Rust
developer-tools devops pentest rust security testing vault
Last synced: 15 May 2025
https://github.com/0xbug/biu
网络资产攻击面梳理
attack-surface-management biu biu-asm easm security
Last synced: 29 Jan 2026
https://github.com/SpectralOps/keyscope
Keyscope is a key and secret workflow (validation, invalidation, etc.) tool built in Rust
developer-tools devops pentest rust security testing vault
Last synced: 01 Apr 2025
https://github.com/mondoohq/mql
open source, cloud-native, graph-based query language
aws azure cis cloud-computing cloud-native gcp kubernetes linux macos security security-as-code unix windows
Last synced: 05 May 2026
https://github.com/lukebaggett/dnscat2-powershell
A Powershell client for dnscat2, an encrypted DNS command and control tool.
penetration-testing powershell security
Last synced: 02 Apr 2025
https://github.com/sneakerhax/TTPs
Red Team Tactics, Techniques, and Procedures
bash linux pentesting powershell python python3 redteam security windows
Last synced: 11 Apr 2025
https://github.com/yoxisem544/screenshotpreventing-ios
Prevent screenshot or screenrecording on iOS devices
cocoapods ios ios-lib screencapture screenrecord screenrecording screenshot security spm swift swiftpackage swiftpm swiftui uikit xcode
Last synced: 03 Oct 2025
https://github.com/sirilius/watermarkktp
Watermark KTP is a free and secure web-based tool that allows you to add a watermark to your scanned KTP (Indonesian ID card).
idcard indonesia ktp security security-tools signature watermark watermark-image watermarking watermarkktp
Last synced: 15 Apr 2025
https://github.com/noqcks/xeol
A scanner for end-of-life (EOL) software and dependencies in container images, filesystems, and SBOMs
compliance end-of-life eol fedramp nist outdated-dep outdated-libraries outdated-packages pci-dss release-policy sbom security
Last synced: 13 May 2025
https://github.com/Ostorlab/oxo
OXO is a security scanning orchestrator for the modern age.
scanner security security-scanner security-tools
Last synced: 03 Apr 2025
https://github.com/xeol-io/xeol
A scanner for end-of-life (EOL) software and dependencies in container images, filesystems, and SBOMs
compliance end-of-life eol fedramp nist outdated-dep outdated-libraries outdated-packages pci-dss release-policy sbom security
Last synced: 14 May 2025
https://github.com/hahwul/authz0
🔑 Authz0 is an automated authorization test tool. Unauthorized access can be identified based on URLs and Roles & Credentials.
auth authorization authz bugbounty golang golang-application security security-scanner security-tools
Last synced: 05 Apr 2025
https://github.com/paradigmxyz/paradigm-ctf-2022
Puzzles used in the 2022 Paradigm CTF
blockchain crypto ctf ethereum evm security solidity
Last synced: 15 Aug 2025
https://github.com/tldrsec/prompt-injection-defenses
Every practical and proposed defense against prompt injection.
ai cybersecurity prompt-injection security
Last synced: 18 Jan 2026
https://github.com/d4rckh/gorilla
tool for generating wordlists or extending an existing one using mutations.
cracking hash hashcat infosec johntheripper security
Last synced: 09 Oct 2025
https://github.com/hahwul/mad-metasploit
Metasploit custom modules, plugins, resource script and.. awesome metasploit collection
bugbounty collections hacking mad-metasploit metasploit resources security
Last synced: 05 Apr 2025
https://github.com/kintesh/containerise
Firefox extension to automatically open websites in a container
firefox firefox-extension privacy security
Last synced: 02 Apr 2025
https://github.com/teler-sh/teler-waf
teler-waf is a Go HTTP middleware that protects local web services from OWASP Top 10 threats, known vulnerabilities, malicious actors, botnets, unwanted crawlers, and brute force attacks.
go go-library go-package golang http ids middleware router security security-tools teler teler-ids teler-waf waf
Last synced: 15 Jan 2026
https://github.com/turbot/steampipe-mod-aws-compliance
Run individual controls or full compliance benchmarks for CIS, PCI, NIST, HIPAA and more across all of your AWS accounts using Powerpipe and Steampipe.
aws cis cis-benchmark compliance hacktoberfest hipaa nist-csf pci pci-dss powerpipe powerpipe-mod rbi security sql steampipe steampipe-mod
Last synced: 15 May 2025
https://github.com/HardenedBSD/hardenedBSD
HardenedBSD implements strong exploit mitigations and security hardening technologies on top of FreeBSD, with a direct focus on the nexus between human rights and information security. HardenedBSD is the first (and only) enterprise operating system to have every part of its public infrastructure accessible by human-rights focused technologies like Tor Onion Services.
hardenedbsd hardening infosec operating-system security
Last synced: 13 May 2025
https://github.com/wazuh/wazuh-ansible
Wazuh - Ansible playbook
ansible compliance elasticsearch file-integrity-management hacktoberfest hacktoberfest-accepted ids incident-response intrusion-detection log-analysis loganalyzer monitoring ossec pci-dss policy-monitoring security security-awareness security-hardening vulnerability-detection wazuh
Last synced: 06 Mar 2026
https://github.com/Koukyosyumei/AIJack
Security and Privacy Risk Simulator for Machine Learning (arXiv:2312.17667)
adversarial-attacks adversarial-examples adversarial-machine-learning dbms deep-learning differential-privacy evasion-attack federated-learning homomorphic-encryption k-anonymity machine-learning membership-inference model-inversion-attacks paillier paillier-cryptosystem poisoning-attacks privacy security
Last synced: 14 Jun 2025
https://github.com/brandonprry/gray_hat_csharp_code
This repository contains full code examples from the book Gray Hat C#
arachni automation blueteam c-sharp clamav cuckoo-sandbox dotnet fuzzer metasploit mono nessus nexpose openvas payload pentesting redteam security sql-injection sqlmap xamarin
Last synced: 14 Mar 2026
https://github.com/gildasio/h2t
h2t (HTTP Hardening Tool) scans a website and suggests security headers to apply
defense hardening headers http security web-application-security
Last synced: 14 Mar 2025
https://github.com/dymmond/ravyn
Ravyn combines performance, type safety, and elegance. A next-generation async Python framework for APIs, microservices, and web applications.
api async asyncio framework json json-schema openapi openapi3 pydantic python python-types python3 redoc rest security starlette swagger swagger-ui uvicorn web
Last synced: 07 Mar 2026
https://github.com/mondoohq/cnquery
open source, cloud-native, graph-based asset inventory
aws azure cis cloud-computing cloud-native gcp kubernetes linux macos security security-as-code unix windows
Last synced: 14 Feb 2026
https://github.com/abumq/licensepp
Software licensing and registration using digital signatures and public cryptography 🪪
licensing security software-license software-licensing
Last synced: 05 Apr 2025
https://github.com/pabpereza/pabpereza
Website, courses, documentation, blog and youtube video tracker.
containers curso development devops devsecops docker dockerfile gratuito kubernetes linux mac mysql python secdevops security sre sysadmin windows youtube
Last synced: 04 Apr 2026
https://github.com/gitleaks/gitleaks-action
Protect your secrets using Gitleaks-Action
action actions github github-actions secret-scanner secret-scanning secrets security security-automation security-tools static-analysis
Last synced: 12 Jan 2026
https://github.com/scheb/two-factor-bundle
[ABANDONED] Two-factor authentication for Symfony 2 & 3 applications 🔐. Please use the newer versions from https://github.com/scheb/2fa.
2fa authentication google-authenticator security symfony-bundle totp two-factor-authentication
Last synced: 03 Oct 2025
https://github.com/cloudflare/svg-hush
Make it safe to serve untrusted SVG files
sanitizer security svg xss-filter
Last synced: 16 May 2025
https://github.com/mhmdiaa/second-order
Second-order subdomain takeover scanner
crawler crawling infosec mapping penetration-testing penetration-testing-tools pentesting recon reconnaissance security security-tools web-application-security wordlist wordlist-generator
Last synced: 05 Apr 2025
https://github.com/docker/scout-cli
Docker Scout CLI
docker security supply-chain-security
Last synced: 15 May 2025
https://github.com/SPuerBRead/Bridge
无回显漏洞测试辅助平台,平台使用Java编写,提供DNSLOG,HTTPLOG等功能,辅助渗透测试过程中无回显漏洞及SSRF等漏洞的验证和利用。
dnslog httplog security security-tools
Last synced: 11 Jul 2025
https://github.com/zorggomat/FractalCryptGUI
Free cross-platform deniable encryption cryptoarchiver
aes aes-256 aes-encryption cpp cross-platform cryptography deniable-crypto deniable-encryption minizip openssl openssl-library plausible-deniability qt qt5 qt5-gui quazip security steganography zlib
Last synced: 01 May 2025
https://github.com/boyan-milanov/ropium
ROPium is a tool that helps you building ROP exploits by finding and chaining gadgets together
binary-exploitation chaining-gadgets exploit-development gadget rop-chain rop-exploits rop-gadgets security security-vulnerability semantic
Last synced: 05 Apr 2025
https://github.com/security-cheatsheet/wireshark-cheatsheet
Wireshark Cheat Sheet
cheat-sheet cheat-sheets cheatsheet cyber-security cybersecurity gitbook github information-security infosec network-analysis network-testing penetration-test penetration-testing security wireshark wireshark-cheat-sheet wireshark-cheatsheet wireshark-documantion
Last synced: 20 Mar 2025
https://github.com/alipay/ant-application-security-testing-benchmark
xAST评价体系,让安全工具不再“黑盒”. The xAST evaluation benchmark makes security tools no longer a "black box".
application benchmark dast evaluation iast sast sca security testing
Last synced: 15 May 2025
https://github.com/idaholab/malcolm
Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs and Suricata alerts.
arkime cybersecurity infosec network-security network-traffic-analysis networksecurity networktrafficanalysis opensearch opensearch-dashboards pcap security suricata zeek
Last synced: 13 Mar 2025
https://github.com/center-for-threat-informed-defense/security-stack-mappings
🚨ATTENTION🚨 The Security Stack Mappings have migrated to the Center’s Mappings Explorer project. See README below. This repository is kept here as an archive.
aws azure cloud gcp mitre-attack security
Last synced: 31 Mar 2025
https://github.com/hubblestack/hubble
Hubble is a modular, open-source security compliance framework. The project provides on-demand profile-based auditing, real-time security event notifications, alerting, and reporting.
audit hubble nebula nova osquery pulsar quasar saltstack security
Last synced: 04 Apr 2025
https://github.com/ivpn/android-app
Official IVPN Android app
android ivpn privacy security vpn vpn-client
Last synced: 16 May 2025
https://github.com/johnnykv/heralding
Credentials catching honeypot
deception honeypot security security-tools
Last synced: 16 May 2025
https://github.com/jim-schwoebel/voicebook
🗣️ A book and repo to get you started programming voice computing applications in Python (10 chapters and 200+ scripts).
data data-cleaning encryption-decryption featurization generation machine-learning python3 security server transcription visualization voice voice-activity-detection voice-assistant voice-computing voice-control voice-recognition voice-recording wake-word-detection
Last synced: 06 Apr 2025
https://github.com/sofianehamlaoui/pentest-notes
Collection of Pentest Notes and Cheatsheets
cheatsheets offensive-security penetration-testing penetration-testing-tools pentesting security security-audit security-tools sofianehamlaoui
Last synced: 27 Jan 2026
https://github.com/discord/access
Access, a centralized portal for employees to transparently discover, request, and manage their access for all internal systems needed to do their jobs
access authorization okta permissions rbac security
Last synced: 08 Apr 2025
https://github.com/stefanoj3/dirstalk
Modern alternative to dirbuster/dirb
auditing bruteforce bruteforce-wordlist dictionaries dirb dirbuster enumeration hacktoberfest pentest security url-bruteforcer web-content-scanner
Last synced: 25 Jan 2026
https://github.com/plazmaz/lnkup
Generates malicious LNK file payloads for data exfiltration
data-exfiltration lnk lnk-payloads microsoft ntlm payload penetration-testing pentesting security usb windows
Last synced: 08 Apr 2025
https://github.com/adysec/ARL
ARL 资产侦察灯塔系统(可运行,添加指纹,提高并发,升级工具及系统,无限制修改版) | ARL(Asset Reconnaissance Lighthouse)资产侦察灯塔系统旨在快速侦察与目标关联的互联网资产,构建基础资产信息库。 协助甲方安全团队或者渗透测试人员有效侦察和检索资产,发现存在的薄弱点和攻击面。
arl cyber-security flask fofa python scan security security-tools shodan tools
Last synced: 31 Oct 2025
https://github.com/adysec/arl
ARL 资产侦察灯塔系统(可运行,添加指纹,提高并发,升级工具及系统,无限制修改版) | ARL(Asset Reconnaissance Lighthouse)资产侦察灯塔系统旨在快速侦察与目标关联的互联网资产,构建基础资产信息库。 协助甲方安全团队或者渗透测试人员有效侦察和检索资产,发现存在的薄弱点和攻击面。
arl cyber-security flask fofa python scan security security-tools shodan tools
Last synced: 08 Apr 2025
https://github.com/grt1st/wooyun_search
乌云公开漏洞、知识库搜索 search from wooyun.org
Last synced: 08 Jan 2026
https://github.com/curtbraz/PhishAPI
Comprehensive Web Based Phishing Suite for Rapid Deployment and Real-Time Alerting!
cyberaware cybersecurity hacking infosec pentesting phish phishing phishing-kit security socialengineering
Last synced: 11 Jul 2025
https://github.com/Fuzzapi/API-fuzzer
API Fuzzer which allows to fuzz request attributes using common pentesting techniques and lists vulnerabilities
gem ruby ruby-gem rubygem security vulnerability
Last synced: 07 Apr 2025
https://github.com/paradoxalarminterface/pai
Paradox Magellan, Spectra and EVO, with MQTT, Signal, Pushbullet, Pushover and others
alarm evo home-security homeassistant homebridge homekit ip150 magellan mqtt openhab paradox paradox-alarm pushbullet pushover python security signal spectra surveillance
Last synced: 15 May 2025
https://github.com/fuzzapi/api-fuzzer
API Fuzzer which allows to fuzz request attributes using common pentesting techniques and lists vulnerabilities
gem ruby ruby-gem rubygem security vulnerability
Last synced: 09 Apr 2025
https://github.com/yuawn/NTU-Computer-Security
台大 計算機安全 - Pwn 簡報、影片、作業題目與解法 - Computer Security Fall 2019 @ CSIE NTU Taiwan
binary-exploitation course csie ctf education exploitation exploits ntu pwn reverse-engineering security
Last synced: 02 Apr 2025
https://github.com/yuawn/ntu-computer-security
台大 計算機安全 - Pwn 簡報、影片、作業題目與解法 - Computer Security Fall 2019 @ CSIE NTU Taiwan
binary-exploitation course csie ctf education exploitation exploits ntu pwn reverse-engineering security
Last synced: 23 Jul 2025
https://github.com/jamesturk/django-honeypot
🍯 Generic honeypot utilities for use in django projects.
django honeypot python security
Last synced: 14 May 2025
https://github.com/hillu/local-log4j-vuln-scanner
Simple local scanner for vulnerable log4j instances
cve-2019-17571 cve-2021-44228 log4j2 log4shell scanner security security-tools
Last synced: 05 Apr 2025
https://github.com/navikt/mock-oauth2-server
A scriptable/customizable web server for testing HTTP clients using OAuth2/OpenID Connect or applications with a dependency to a running OAuth2 server (i.e. APIs requiring signed JWTs from a known issuer)
authorization-server docker java junit5 jwt kotlin mock mock-oauth2-server nav-authnz oauth2 oidc openid-connect security token tokens
Last synced: 06 May 2026
https://github.com/JFreegman/SpicyPass
A light-weight password manager with a focus on simplicity and security
password-generator password-manager password-safety password-store security security-tools spicy-software
Last synced: 22 Nov 2025
https://github.com/snyk/vulnerabilitydb
Snyk's public vulnerability database
infosec security snyk vulndb vulnerabilities vulnerability-databases
Last synced: 02 Apr 2025
https://github.com/santatic/web2attack
Web hacking framework with tools, exploits by python
hacking hacking-tool hacking-tools hackingtools pentesting python security
Last synced: 25 Oct 2025
https://github.com/egebalci/deoptimizer
Evasion by machine code de-optimization.
antivirus detection evasion malware redteaming security snort suricata yara
Last synced: 13 Apr 2025
https://github.com/Charlie-belmer/nosqli
NoSql Injection CLI tool, for finding vulnerable websites using MongoDB.
mongodb nosql nosql-injection security security-automation security-scanner security-tools sqlinjection
Last synced: 02 Apr 2025
https://github.com/charlie-belmer/nosqli
NoSql Injection CLI tool, for finding vulnerable websites using MongoDB.
mongodb nosql nosql-injection security security-automation security-scanner security-tools sqlinjection
Last synced: 06 Apr 2025
https://github.com/ParadoxAlarmInterface/pai
Paradox Magellan, Spectra and EVO, with MQTT, Signal, Pushbullet, Pushover and others
alarm evo home-security homeassistant homebridge homekit ip150 magellan mqtt openhab paradox paradox-alarm pushbullet pushover python security signal spectra surveillance
Last synced: 07 Apr 2025
https://github.com/sap-samples/machine-learning-diff-private-federated-learning
Simulate a federated setting and run differentially private federated learning.
differential-privacy federated-learning machine-learning sample sample-code security
Last synced: 11 Apr 2025
https://github.com/ccbrown/cloud-snitch
Map visualization and firewall for AWS activity, inspired by Little Snitch for macOS.
aws cloud cloudtrail golang monitoring nextjs security typescript
Last synced: 13 Mar 2026
https://github.com/jasonlovesdoggo/caddy-defender
Caddy module to block or manipulate requests originating from AIs or cloud services trying to train on your websites
ai ai-blocker blocker blockers caddy caddy-plugin caddyserver chatgpt filter ip-blacklist ip-filtering security waf web-security
Last synced: 30 Dec 2025
https://github.com/Plecost/plecost
Plecost - Professional WordPress Security Scanner
security security-tools vulnerability wordpress
Last synced: 07 May 2026
https://github.com/jfreegman/spicypass
A light-weight password manager with a focus on simplicity and security
password-generator password-manager password-safety password-store security security-tools spicy-software
Last synced: 06 Apr 2025
https://github.com/hl2guide/filterlist-for-adguard-or-pihole
A very aggressive filter-list that consolidates over 370 lists for use in AdGuard Home, Pi-Hole or similar.
adblock-list adguard adguard-blocklist adguard-home adguardhome allowlist blocklist blocklists filterlist phishing-domains pi-hole pi-hole-blocklist privacy privacy-protection protection ransomware-prevention security spam-filter typosquatting whitelist
Last synced: 29 Sep 2025
https://github.com/flatt-security/shisho
Lightweight static analyzer for several programming languages
code-analysis devsecops go rust security static-analysis terraform terraform-security
Last synced: 30 Mar 2025
https://github.com/cheshirecaat/puppeteer-with-fingerprints
Anonymous automation via puppeteer with fingerprint replacement technology.
automation browser browser-fingerprint browser-fingerprinting chrome chromedriver chromium detection-evasion device-fingerprint device-fingerprinting devtools fingerprint fingerprinting headless privacy privacy-protection puppeteer security stealth stealth-mode
Last synced: 15 May 2025
https://github.com/byt3bl33d3r/red-baron
Automate creating resilient, disposable, secure and agile infrastructure for Red Teams
infrastructure infrastructure-as-code red-teams security security-tools terraform terraform-modules
Last synced: 30 Sep 2025
https://github.com/hl2guide/Filterlist-for-AdGuard-or-PiHole
A very aggressive filter-list that consolidates over 370 lists for use in AdGuard Home, Pi-Hole or similar.
adblock-list adguard adguard-blocklist adguard-home adguardhome allowlist blocklist blocklists filterlist phishing-domains pi-hole pi-hole-blocklist privacy privacy-protection protection ransomware-prevention security spam-filter typosquatting whitelist
Last synced: 03 Apr 2025
https://github.com/fuzzuf/fuzzuf
Fuzzing Unification Framework
afl afl-fuzz fuzz-testing fuzzer fuzzing fuzzing-framework libfuzzer security testing vuzzer
Last synced: 10 Apr 2025
https://github.com/bndw/pick
A secure and easy-to-use CLI password manager for macOS and Linux
aes-gcm chacha20-poly1305 cli crypto linux macos openpgp password password-manager pbkdf2 scrypt security
Last synced: 15 Mar 2025
https://github.com/phalcon/vokuro
Sample application for Phalcon Framework (Acl, Auth, Security)
acl demo phalcon phalcon-framework php sample security tutorial vokuro
Last synced: 13 May 2025
https://github.com/shmakov/honeypot
Low interaction honeypot that displays real time attacks
data-visualization honeypot logs nodejs security ssh tail telnet
Last synced: 02 Apr 2025
https://github.com/Shmakov/Honeypot
Low interaction honeypot that displays real time attacks
data-visualization honeypot logs nodejs security ssh tail telnet
Last synced: 06 Apr 2025
https://github.com/mindersec/minder
Software Supply Chain Security Platform
security software-supply-chain software-supply-chain-security supply-chain
Last synced: 15 Jan 2026
https://github.com/teivah/designdeck
An Open-Source Collection of 230+ Flash Cards to Help You Succeed in Your System Design Interview and More 💯
cache cloud database http interview interview-preparation kafka leetcode network reliability scalability security system-design
Last synced: 03 Apr 2025
https://github.com/ionescu007/simpleator
Simpleator ("Simple-ator") is an innovative Windows-centric x64 user-mode application emulator that leverages several new features that were added in Windows 10 Spring Update (1803), also called "Redstone 4", with additional improvements that were made in Windows 10 October Update (1809), aka "Redstone 5".
containerization containers emulator hyper-v malware malware-analysis operating-systems reverse-engineering security virtualization
Last synced: 15 Oct 2025
https://github.com/conduktor/kafka-security-manager
Manage your Kafka ACL at scale
acl acl-changes broker docker kafka ksm security zookeeper
Last synced: 10 Apr 2025
https://github.com/ivan-sincek/android-penetration-testing-cheat-sheet
Work in progress...
android android-penetration-testing bug-bounty ethical-hacking frida magisk mobile-penetration-testing mobsf objection offensive-security penetration-testing red-team-engagement security
Last synced: 26 Mar 2025
