Security
Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.
- GitHub: https://github.com/topics/security
- Wikipedia: https://en.wikipedia.org/wiki/Computer_security
- Aliases: security-tools, security-vulnerability, security-audit,
- Last updated: 2026-06-25 00:24:17 UTC
- JSON Representation
https://github.com/prancer-io/cloud-validation-framework
prancer platform is an IaC Security engine + Continuous Compliance for your cloud (Azure, AWS, GCP) and Kubernetes environment
cloud cloudsecurity governance iac sca security
Last synced: 09 Apr 2026
https://github.com/landlock-lsm/rust-landlock
A Rust library for the Linux Landlock sandboxing feature
landlock linux sandboxing security
Last synced: 15 May 2025
https://github.com/netflix-skunkworks/aws-credential-compromise-detection
Example detection of compromise credentials in AWS
Last synced: 17 Mar 2026
https://github.com/nitrokey/nitrokey-pro-firmware
Firmware for the Nitrokey Pro device
firmware nitrokey open-source security usb-stick
Last synced: 28 Jul 2025
https://github.com/withsecurelabs/modulestomping
https://blog.f-secure.com/hiding-malicious-code-with-module-stomping/
countercept module-stomping security
Last synced: 13 Mar 2026
https://github.com/aydinnyunus/passdetective
PassDetective is a command-line tool that scans shell command history to detect mistakenly written passwords, API keys, and secrets. Using regular expressions, it helps prevent accidental exposure of sensitive information in your command history.
bash bugbounty bugbounty-tool bugbountytips golang hacking kali kali-linux kali-linux-hacking linux red-team security security-tools shell shell-script zsh
Last synced: 04 Aug 2025
https://github.com/IridiumIdentity/iridium
An OIDC provider integrator. Choose your social providers without needing to write code.
customer-identity identity-management oauth2 openid-connect passwordless security webauthn
Last synced: 22 Jul 2025
https://github.com/albertito/dnss
DNS over HTTPS [mirror]
dns dns-proxy doh doh-server go-application https-proxy security
Last synced: 10 Jul 2025
https://github.com/HamaWhiteGG/flink-sql-security
FlinkSQL数据脱敏和行级权限解决方案及源码,支持面向用户级别的数据脱敏和行级数据访问控制,即特定用户只能访问到脱敏后的数据或授权过的行。此方案是实时领域Flink的解决方案,类似于离线数仓Hive Ranger中的Row-level Filter和Column Masking方案。
Last synced: 04 Apr 2025
https://github.com/ammario/isokey
Self-contained API keys via cryptographic signatures
Last synced: 17 Mar 2025
https://github.com/pymumu/jail-shell
Jail-shell is a linux security tool mainly using chroot, namespaces technologies, limiting users to perform specific commands, and access sepcific directories.
chroot jail linux linux-namespaces security security-hardening shell ssh
Last synced: 21 Apr 2025
https://github.com/Escape-Technologies/graphinder
🕸️ Blazing fast GraphQL endpoints finder using subdomain enumeration, scripts analysis and bruteforce. 🕸️
bugbounty finder graphql osint reconnaissance security spider subdomain-enumeration subdomain-scanner
Last synced: 31 Mar 2025
https://github.com/mitre-atlas/atlas-data
ATLAS tactics, techniques, and case studies data
ai-security machine-learning mitre-atlas mitre-attack security
Last synced: 02 Apr 2026
https://github.com/skiff-org/skiff-windows-app
Skiff's Windows app for privacy-first, end-to-end encrypted Mail, Drive, Calendar, and Pages.
encryption privacy productivity security windows wpf
Last synced: 15 May 2025
https://github.com/YingtongDou/Nash-Detect
Code for KDD 2020 paper Robust Spammer Detection by Nash Reinforcement Learning
fraud-detection game-theory machine-learning reinforcement-learning security spam-detection
Last synced: 11 May 2025
https://github.com/yingtongdou/nash-detect
Code for KDD 2020 paper Robust Spammer Detection by Nash Reinforcement Learning
fraud-detection game-theory machine-learning reinforcement-learning security spam-detection
Last synced: 14 Apr 2025
https://github.com/safe-graph/dgfraud-tf2
A Deep Graph-based Toolbox for Fraud Detection in TensorFlow 2.X
anomaly-detection datamining datascience dblp-dataset financial-engineering fraud-detection fraud-prevention graph-algorithms graphneuralnetwork machine-learning opensource outlier-detection security security-tools spam-detection toolkit yelp-dataset
Last synced: 27 Apr 2025
https://github.com/getpagespeed/ngx_security_headers
NGINX Module for sending security headers
hsts hstspreload https nginx nginx-module security securityheader x-frame-options x-powered-by
Last synced: 15 Feb 2026
https://github.com/grrrdog/tls-redirection
TLS Redirection
cheatsheet https mitm-attacks security ssl tls
Last synced: 03 Feb 2026
https://github.com/santandersecurityresearch/corsair_scan
Corsair_scan is a security tool to test Cross-Origin Resource Sharing (CORS).
cors-configurations domain-injection misconfigurations python sdlc security
Last synced: 08 May 2025
https://github.com/archlinuxstudio/modernsecurityprotectionguide
Modern Security Protection Guide
censorship-circumvention chinese digital-privacy e-book privacy security
Last synced: 14 Feb 2026
https://github.com/Santandersecurityresearch/corsair_scan
Corsair_scan is a security tool to test Cross-Origin Resource Sharing (CORS).
cors-configurations domain-injection misconfigurations python sdlc security
Last synced: 10 May 2025
https://github.com/Hamid-K/bookmarks
A personal list of various resources for those who are interested in learning about infosec and hacking and keeping themselves up to date. This is by no means a complete nor fresh list, but I occasionally add entries to lists.
Last synced: 06 Aug 2025
https://github.com/kelvinben/autoredtools
AutoRedTools是一款轻量级一站式自动下载/自动更新常用开源软件的工具,主要帮助安全从业者/安全开发人员快速进行环境搭建以及常用软件的更新,节约软件的更新或者安 装的时间,从而提升生产效率或工作效率。
developer-tools devtools efficiency efficiency-tool pentest-tool pentesting redteam-tools security security-tools toolset toolsk
Last synced: 21 Apr 2025
https://github.com/Nitrokey/nitrokey-pro-firmware
Firmware for the Nitrokey Pro device
firmware nitrokey open-source security usb-stick
Last synced: 25 Mar 2025
https://github.com/p1sec/sigfw
Open Source Signaling Firewall for SS7, Diameter filtering, antispoof and antisniff
diameter encryption firewall security signalling sigtran ss7 telecom
Last synced: 18 Jan 2026
https://github.com/jcsec-security/solidity-security-course-resources
Course material about common vulnerabilities, security and audits of Solidity smart contracts that I use during my lectures
audit beginner bug bugbounty contract ethereum evm security smart smart-contracts smartcontract solidity vulnerabilities
Last synced: 07 Apr 2025
https://github.com/ansible-lockdown/RHEL9-CIS
Ansible role for Red Hat 9 CIS Baseline
ansible ansible-playbook ansible-role benchmark benchmark-framework cis cis-benchmark compliance-as-code compliance-automation redhat9 rhel rhel9 security security-automation security-tools
Last synced: 08 Apr 2025
https://github.com/monarc-project/monarcappfo
MONARC - Method for an Optimised aNAlysis of Risks by @NC3-LU
cases cybersecurity governance monarc risk-analysis risk-assessment risk-evaluation risk-treatment security threat vulnerabilities
Last synced: 01 Apr 2026
https://github.com/ghsec/ghsec-jaeles-signatures
Signatures for jaeles scanner by @j3ssie
Last synced: 16 Jan 2026
https://github.com/ivre/masscanned
Let's be scanned. A low-interaction honeypot focused on network scanners and bots. It integrates very well with IVRE to build a self-hosted alternative to GreyNoise.
hacktoberfest honeypot ipv4 ipv6 ivre low-interaction low-interaction-honeypot network network-monitoring network-security networking security tcp udp
Last synced: 05 Apr 2025
https://github.com/ansible-lockdown/rhel9-cis
Ansible role for Red Hat 9 CIS Baseline
ansible ansible-playbook ansible-role benchmark benchmark-framework cis cis-benchmark compliance-as-code compliance-automation redhat9 rhel rhel9 security security-automation security-tools
Last synced: 12 Apr 2025
https://github.com/fatihtokus/scan2html
A Trivy plugin that scans and outputs the results (vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more) to an interactive html file.
cisa cisa-kev cloud containers devops devsecops epss iac misconfiguration opensource report sbom scan secops security trivy vulnerability vulnerability-management
Last synced: 09 Mar 2026
https://github.com/nikitastupin/pwnhub
How GitHub Actions workflows can be hacked
actions github-actions security
Last synced: 12 May 2025
https://github.com/quarantyne/quarantyne
Modern Web Firewall: stop account takeovers, weak passwords, cloud IPs, DoS attacks, disposable emails
account-takeover automation bots fraud security websecurity
Last synced: 27 Sep 2025
https://github.com/Lissy93/email-comparison
📬 A quick comparison of private and / or secure email providers
email hacktoberfest parcel privacy security
Last synced: 14 Mar 2025
https://github.com/gebruder/wirken
The switchboard for the agent era. Per-channel isolation, encrypted credential vault, per-session hash-chained audit log. Single static Rust binary.
ai-agent audit discord docker enterprise gateway llm matrix mcp rust security siem slack telegram wasm whatsapp
Last synced: 17 May 2026
https://github.com/iqlusioninc/veriform
Security-oriented protobuf-like serialization format with "Merkleized" content hashing support
authorization credentials cryptography hash-algorithm merkle protobuf security serialization
Last synced: 13 May 2025
https://github.com/haveibeensquatted/twistrs
A domain name permutation and enumeration library powered by Rust.
dns-lookup permutation rust security security-tools typosquatting
Last synced: 06 Apr 2025
https://github.com/secmon-lab/warren
AI-powered security alert management that reduces noise and accelerates response time
Last synced: 09 May 2026
https://github.com/controlplaneio/truffleproc
truffleproc — hunt secrets in process memory (TruffleHog & gdb mashup)
gdb secrets security trufflehog
Last synced: 04 Sep 2025
https://github.com/lissy93/bug-bounties
⚔️ A compiled list of companies who have active programs for responsible disclosure
Last synced: 05 Apr 2025
https://github.com/panagiotisdrakatos/javaransomware
Simple Ransomware Tool in Pure Java
cybersecurity educational-software encryption-decryption ethical-hacking java malware ransomeware ransomware security virus
Last synced: 12 Oct 2025
https://github.com/mheap/pin-github-action
Pin your GitHub actions to a specific hash
actions cli github github-actions security
Last synced: 05 Oct 2025
https://github.com/trailofbits/ebpfpub
ebpfpub is a generic function tracing library for Linux that supports tracepoints, kprobes and uprobes.
bpf ebpf llvm monitoring security tracepoints tracing
Last synced: 15 Apr 2025
https://github.com/azu/ni.zsh
Alternative `ni` written in zsh: npm/yarn/pnpm/bun with the same command
bun node npm pnpm security shell-script yarn
Last synced: 05 Apr 2025
https://github.com/jreisinger/gokatas
Internalize the Go movements 🥋
devops go golang katas practice programming reference security sysadmin
Last synced: 31 Jan 2026
https://github.com/0xmachos/macos-security-research
macOS Security Research
Last synced: 14 Jul 2025
https://github.com/chhantyal/5minutes
First 5 minutes on new servers. Secure your servers with single command - Ansible playbook
ansible devops security ubuntu
Last synced: 16 Mar 2025
https://github.com/lightswitch05/php-version-audit
Audit your PHP version for known CVEs and patches
audit composer-package cves docker-image hacktoberfest php php-library php-security security security-audit security-scanner
Last synced: 16 May 2025
https://github.com/vatshayan/blockchain-final-year-project
Final Year College Project made on Concept of blockchain with Project Report, Project Code, Research Paper, PPT, Synopsis and Video Explanation
bitcoin blockchain blockchain-project blockchain-projects blockchain-technology college-project cse-project cse-projects ethereum final-year-project final-year-projects finalyearproject finalyearprojects jupyter-notebook projects python-projects security semester-project
Last synced: 21 Mar 2025
https://github.com/guillac/wsmanager
Webshell Manager
caidao infosec pentest redteam remote remote-admin-tool remote-shell security security-tools webshell wsmanager
Last synced: 11 May 2025
https://github.com/palant/pfp
A simple and secure browser extension to be used with KeePass databases.
browser-extension chrome chrome-extension firefox firefox-addon javascript opera password-generator password-manager pfp scrypt security
Last synced: 11 Apr 2025
https://archlinuxstudio.github.io/ModernSecurityProtectionGuide/
Modern Security Protection Guide
censorship-circumvention chinese digital-privacy e-book privacy security
Last synced: 03 May 2025
https://github.com/macmod/ldapx
Flexible LDAP proxy that can be used to inspect & transform all LDAP packets generated by other tools on the fly.
active-directory go golang infosec ldap proxy security
Last synced: 16 Feb 2026
https://github.com/guillaC/wsManager
Webshell Manager
caidao infosec pentest redteam remote remote-admin-tool remote-shell security security-tools webshell wsmanager
Last synced: 13 Mar 2025
https://github.com/stepchowfun/hashpass
A simple password manager with a twist.
password password-manager security security-tools
Last synced: 05 Apr 2025
https://github.com/wkovacs64/hibp
An unofficial TypeScript SDK for the 'Have I been pwned?' service.
breach breach-events breaches data-breach deno dump hack haveibeenpwned hibp javascript passwords pastes promise pwned security typescript
Last synced: 25 Aug 2025
https://github.com/wKovacs64/hibp
An unofficial TypeScript SDK for the 'Have I been pwned?' service.
breach breach-events breaches data-breach deno dump hack haveibeenpwned hibp javascript passwords pastes promise pwned security typescript
Last synced: 23 Mar 2025
https://github.com/SpriteOvO/sigmatch
✨ Modern C++ 20 signature match / search library
assembler binary binary-analysis compile-time cpp cpp-library cpp20 cpp20-lib cpp20-library header-only library match pattern reverse-engineering search security signature
Last synced: 14 May 2025
https://github.com/hahwul/regexpassive
🔭 Collection of regexp pattern for security passive scanning
bugbounty collection hacking passive-scan passive-vulnerability-scanner patterns regex regexp security
Last synced: 09 Feb 2026
https://github.com/werbot/werbot
🔑 Team Access Sharing - a self-hosted solution with single sign-on for secure, easy shared access to servers, databases, and applications.
1password audit bastion cluster database-access firewall firewalls go golang hacktoberfest kubernetes kubernetes-access pam postgresql rdp security self-hosted ssh werbot zero-trust
Last synced: 06 Aug 2025
https://github.com/CityBaseInc/SIAC
SIAC is an enterprise SIEM built on open-source technology.
aws compliance elk fim incident-response intrusion-detection osquery pci-dss secdevops security siem wazuh
Last synced: 30 Mar 2025
https://github.com/spriteovo/sigmatch
✨ Modern C++ 20 signature match / search library
assembler binary binary-analysis compile-time cpp cpp-library cpp20 cpp20-lib cpp20-library header-only library match pattern reverse-engineering search security signature
Last synced: 04 Mar 2026
https://github.com/aruss/identitybase
IdentityBase is a Universal Identity Platform for web, mobile and IoT built on top of IdentityServer.
aspnet-core dotnet identity identityserver identityserver4 oauth2 openid-connect security
Last synced: 07 Oct 2025
https://github.com/bkbilly/alarmpi
🚨 Home Security Intrusion Detection for Raspberry PI or any other linux OS
alarm android-application diy hikvision home-assistant ifttt-maker mqtt python raspberry-pi restful-api security voip zigbee
Last synced: 14 Jun 2025
https://github.com/snowflake-labs/sansshell
A non-interactive daemon for host management
administration automation go reliability security unshelled
Last synced: 08 Apr 2026
https://github.com/ivan-sincek/php-ransomware
PHP ransomware that encrypts your files, as well as file and directory names.
defensive-security ethical-hacking malware offensive-security openssl php ransomware reverse-engineering security
Last synced: 30 Mar 2025
https://github.com/simp/simp-core
The base SIMP build repository
automation compliance puppet security simp
Last synced: 05 Apr 2025
https://github.com/webreflection/proxy-pants
Secured and reliable Proxy based utilities for more or less common tasks.
proxy security utilities utility
Last synced: 12 Sep 2025
https://github.com/bullfrogsec/bullfrog
Simple plug-and-play Github Action to block unauthorized outbound traffic (egress) in your Github workflows
actions egress-filtering github github-actions security
Last synced: 12 Jan 2026
https://github.com/4ra1n/poc-runner
Small & Fast Vulnerability Scanner Engine based on XRAY YAML Rule | 基于 XRAY YAML 规则的超轻量快速漏洞扫描引擎 | 可执行文件体积仅 2 MB
poc security vulnerability vulnerability-detection vulnerability-scanner web-security web-vulnerability-scanner
Last synced: 21 Jul 2025
https://github.com/grapheneos/attestationserver
attestation.app remote attestation server. Server code for use with the Auditor app: https://github.com/GrapheneOS/Auditor. It provides two services: submission of attestation data samples and a remote attestation implementation with email alerts to go along with the local implementation based on QR code scanning in the app.
android attestation authenticity cryptography grapheneos hsm integrity monitoring remote-attestation secure-boot secureboot security strongbox verifiedboot
Last synced: 04 Apr 2025
https://github.com/aruss/IdentityBase
IdentityBase is a Universal Identity Platform for web, mobile and IoT built on top of IdentityServer.
aspnet-core dotnet identity identityserver identityserver4 oauth2 openid-connect security
Last synced: 04 May 2025
https://github.com/SeyZ/clawbands
ClawBands is a security middleware for OpenClaw AI agents.
Last synced: 16 Feb 2026
https://github.com/Obscurix/Obscurix
Obscurix is a live operating system based on Arch Linux that is heavily configured for privacy, security and anonymity. It safely forces all traffic through the Tor network, has support for other networks such as I2P and is hardened a lot for security. All data is lost at shutdown as it is run from RAM.
anonymity freenet i2p linux privacy security tor zeronet
Last synced: 12 Mar 2025
https://github.com/ilmari-h/envie
The convenient and secure .env file replacement. Open source and self-hostable secrets manager.
environment-variables secret-management security
Last synced: 16 Jan 2026
https://github.com/electroniccats/flipper-addons
Flipper addons by Electronic Cats
addons canbus flipper flipper-addon flipper-shield flipper-zero lora magspoof marauder modbus rs485 rs485-comunication security security-tools subghz
Last synced: 21 Jan 2026
https://github.com/jcsec-security/all-things-reentrancy
Workshop about the different types of reentrancy attacks
audit ethereum learning security smart-contracts solidity workshop
Last synced: 07 Apr 2025
https://github.com/alash3al/httpsify
a transparent HTTPS termination proxy using letsencrypt with auto certification renewal
auto-renewal docker dockerfile golang letsencrypt reverse-proxy security ssl transparent-https-proxy webserver
Last synced: 29 Jun 2025
https://github.com/ignis-sec/cve-2023-38831-rarce
An easy to install and easy to run tool for generating exploit payloads for CVE-2023-38831, WinRAR RCE before versions 6.23
archive exploit exploit-development rce security winrar
Last synced: 06 May 2025
https://github.com/shelld3v/aquatone
A Tool for Domain Flyovers
appsec bug-bounty bugbounty golang hacking hacking-tool infosec osint penetration-testing pentest pentesting reconnaissance security security-tools
Last synced: 16 Aug 2025
https://github.com/tylerwince/flake8-bandit
Automated security testing using bandit and flake8.
bandit flake8 security security-automation security-tools static-code-analysis vulnerability-detection
Last synced: 14 Jan 2026
https://github.com/ackee-blockchain/solana-auditors-bootcamp
Learn to audit Solana programs and help secure the ecosystem. Take your security practices to the next level and get certified by Ackee Blockchain Security. It's free, too.
anchor bootcamp capture-the-flag rust security security-audit security-tools solana trident
Last synced: 17 Apr 2025
https://github.com/sdrapkin/securitydriven.core
Modern, fast, safe, cryptographically strong .NET replacement for Random and RandomNumberGenerator.
cryptography cryptorandom encryption net50 net60 random randomnumbergenerator security
Last synced: 13 Apr 2025
https://github.com/crocs-muni/JCAlgTest
Automated testing tool for algorithms from JavaCard API supported by particular smart card. Performance testing of almost all available methods. The results for more than 100+ cards.
cryptography javacard security smartcard
Last synced: 16 Mar 2025
https://github.com/ballerina-platform/module-ballerina-crypto
Ballerina crypto Module
ballerina crypto cryptography encryption hacktoberfest integration security wso2
Last synced: 28 Apr 2026
https://github.com/midoxnet/mapperplus
MapperPlus facilitates the extraction of source code from a collection of targets that have publicly exposed .js.map files.
automation javascript map pentest recon security security-tools source sourcemapper
Last synced: 27 Sep 2025
https://github.com/tooonychen/authinbox
Auth Inbox 📬 is a self-hosted, open-source platform for receiving multiple email verification codes and real-time notifications, built using Cloudflare's free services. | Auth Inbox 📬 是一个自建的开源多邮箱验证码的接码平台,基于 Cloudflare 的免费服务。
2fa cloudflare cloudflare-email cloudflare-email-routing cloudflare-workers email mail multiple-emails open-source security verfication
Last synced: 05 Apr 2025
https://github.com/openfga/go-sdk
OpenFGA SDK for Go
access-control authorization fga fine-grained-authorization hacktoberfest openfga openfga-client security zanzibar
Last synced: 24 Feb 2026
https://github.com/sandbox-quantum/sandwich
Sandwich is a multi-platform, multi-language, open-source library that provides a simple unified API for developers to use (multiple) cryptographic libraries in their applications.
api boringssl crypto crypto-agility cryptographic-agility cryptography go openssl python rust security tls
Last synced: 31 Mar 2025
https://github.com/microchiptech/gcp-iot-core-examples
Google Cloud Platform IOT Core Examples
atecc508 atecc608 cryptography elliptic-curves gcp-iot google-iot iot microchip mqtt security tls winc1500
Last synced: 29 Apr 2025
https://github.com/nextcloud/twofactor_u2f
🔑 U2F second factor provider for Nextcloud
nextcloud security two-factor u2f
Last synced: 04 Oct 2025
https://github.com/ignis-sec/markopy
Markov Model libraries, optimized for cracking-focused password generations.
cpp markov-chain markov-model password security security-tools
Last synced: 10 Oct 2025