Security
Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.
- GitHub: https://github.com/topics/security
- Wikipedia: https://en.wikipedia.org/wiki/Computer_security
- Aliases: security-tools, security-vulnerability, security-audit,
- Last updated: 2026-06-25 00:24:17 UTC
- JSON Representation
https://github.com/zricethezav/gitleaks-ci
gitleaks, but for PRs
continuous-integration security
Last synced: 22 Apr 2025
https://github.com/Checkmarx/chainjacking
Find which of your direct GitHub dependencies is susceptible to RepoJacking attacks
go golang security supply-chain
Last synced: 07 May 2025
https://github.com/aws-samples/amazon-guardduty-for-aws-organizations-with-terraform
Using Terraform to enable Amazon GuardDuty for accounts in AWS Organizations.
amazon amazon-guardduty aws aws-organizations guardduty organizations proserve security terraform
Last synced: 15 Apr 2025
https://github.com/theparanoids/crypki
A simple service for interacting with an HSM or other PKCS#11 device.
ca cryptography hsm pkcs11 security signer
Last synced: 26 Jan 2026
https://github.com/cyralinc/approzium
Approzium allows a cloud service to authenticate to a database without ever having access to its password
authentication databases hacktoberfest observability security
Last synced: 05 Oct 2025
https://github.com/dgtlss/warden
A Laravel package that proactively monitors your dependencies for security vulnerabilities by running automated composer audits and sending notifications via webhooks and email
cve laravel laravel-framework laravel-package laravel-security laravel-security-checker php php8 security security-tools vulnerabilities vulnerability vulnerability-scanners warden
Last synced: 22 May 2026
https://github.com/antongolub/npm-registry-firewall
npm registry proxy with on-the-fly filtering
Last synced: 25 Jun 2025
https://github.com/makepkg/securegen
🔐 Hardware TOTP Authenticator & Password Manager | 8-layer security | AES-256 | BLE Keyboard | Offline | ESP32 T-Display | T-Display S3
2fa aes-256 air-gapped arduino authentication ble bluetooth-le embedded encryption esp32 hardware iot lilygo offline password-manager platformio security t-display totp two-factor-authentication
Last synced: 11 May 2026
https://github.com/escape-technologies/graphql-security-academy
🔒 A free, open-source platform dedicated to understand and secure GraphQL applications — all directly in your browser!
api-security certification community education graphql hacktoberfest hacktoberfest2023 learning security
Last synced: 27 Apr 2025
https://github.com/turbot/steampipe-sqlite
Steampipe SQLite is a zero-ETL engine for SQLite. Virtual tables translate queries into live API calls for cloud services and APIs. Hundreds of plugins with thousands of documented examples.
aws azure data devsecops etl gcp golang kubernetes security sql sqlite steampipe steampipe-engine zero-etl
Last synced: 28 Jul 2025
https://github.com/aguafrommars/dynamicauthproviders
Store and manage Microsoft.AspNetCore.Authentication providers dynamicaly
aspnetcore authentication security
Last synced: 09 May 2025
https://github.com/microclub-usthb/m-security
A native Rust security SDK for Flutter offering high-performance cryptography, streaming encryption with compression, an encrypted virtual file system (EVFS), and secure memory management via Flutter Rust Bridge.
Last synced: 05 Apr 2026
https://github.com/victorpreston/brutex
A tool to crack a wifi password using wordlist. The Wordlists contains over 100K commonly used passwords
brute-force brute-force-attacks bruteforce cybersecurity cybersecurity-tools hack hack-password hack-wifi-passwords hacking-tools hacking-wifi osint password pentesting python python3 security wifi-hacking
Last synced: 14 Mar 2025
https://github.com/sagarbhure/eBPFShield
🛡️ Introducing eBPFShield - a powerful 📍IP-intelligence and 📈DNS monitoring tool built using eBPF!
dns-monitor ebpf firmware ip-intelligence kernel-security monitoring security security-tools
Last synced: 03 Mar 2026
https://github.com/avilum/smart-url-fuzzer
Explore URLs of domains fast and efficiently using fuzzing techniques
fuzzers http pentest-scripts pentest-tool pentesting python python-script python3 script scripts security security-tools urls web-crawler web-scraping website whitehat
Last synced: 21 Mar 2025
https://github.com/turbot/steampipe-mod-azure-compliance
Run individual configuration, compliance and security controls or full compliance benchmarks for CIS, HIPAA HITRUST, NIST, and more across all of your Azure subscriptions using Powerpipe and Steampipe.
azure cis cis-benchmark compliance hacktoberfest powerpipe powerpipe-mod security sql steampipe steampipe-mod
Last synced: 08 Apr 2025
https://github.com/d0ubl3g/Industrial-Security-Auditing-Framework
ISAF aims to be a framework that provides the necessary tools for the correct security audit of industrial environments. This repo is a mirror of https://gitlab.com/d0ubl3g/industrial-security-auditing-framework.
credentials ftp hacking http ics ics-security industrial industrial-security isaf modbus modicon pentest plc s7 scada schneider-electric security security-audit siemens telnet
Last synced: 12 Jul 2025
https://github.com/grottopress/shield
Comprehensive security for Lucky framework
authentication crystal lucky-framework oauth2 security
Last synced: 08 May 2025
https://github.com/claranet/sshm
Easy connect on EC2 instances thanks to AWS System Manager Agent. Just use your `~/.aws/profile` to easily select the instance you want to connect on.
Last synced: 15 Apr 2025
https://github.com/elementsinteractive/twyn
Security tool against dependency typosquatting attacks
pipeline python security security-tools typosquatting
Last synced: 10 Apr 2026
https://github.com/Veridise/Picus
Automated verification of uniqueness property for ZKP circuits
blockchain circom circomlib security verification zero-knowledge
Last synced: 11 Jul 2025
https://github.com/fenix-hub/godot-engine.jwt
JSON Web Token library for Godot Engine written in GDScript
gdscript godotengine hmac http jwt oauth2 security
Last synced: 27 Apr 2025
https://github.com/SPuerBRead/mqtts
MQTT安全测试工具 (MQTT Security Tools)
mqtt scan-tool security security-tools
Last synced: 11 Jul 2025
https://github.com/nextras/secured-links
CSRF protection for Nette Framework presenters' signals.
csrf nette-component nextras php security
Last synced: 12 Apr 2025
https://github.com/rnehra01/arp-validator
Security Tool to detect arp poisoning attacks
arp-poisoning detector network security
Last synced: 20 Jul 2025
https://github.com/oci-landing-zones/oci-landing-zone-operating-entities
The OCI Operating Entities Landing Zone is a set of open and secure OCI landing zone blueprints to simplify the onboarding and running of organizations, business units, and subsidiaries into OCI - by customers, partners, or ISVs. Use it to create your own OCI Landing Zone.
cloud-operations config-as-code declarative design gitops iac iam isv landing-zones network oci onboard oracle oracle-cloud-infrastructure security terraform
Last synced: 28 Jan 2026
https://github.com/pac4j/jee-pac4j
Security library for JEE: OAuth, CAS, SAML, OpenID Connect, LDAP, JWT...
authentication authorization cas facebook j2e j2ee java jwt ldap login logout mongodb oauth openid-connect saml security social-login sql twitter
Last synced: 15 Mar 2026
https://github.com/sametsazak/sysmon
Sysmon and wazuh integration with Sigma sysmon rules [updated]
ossec security security-tools sigma sysmon sysmon-config wazuh wazuh-manager
Last synced: 04 Apr 2026
https://github.com/benwestgate/bails
CipherStick is a Bitcoin solution protecting against surveillance, censorship, and confiscation. It installs Bitcoin Core to Tails encrypted Persistent Storage, creates and recovers Bitcoin Core wallets from Codex32 (BIP93) seed backups, and creates backup CipherSticks and shareable blank CipherSticks. Learn more in README.md.
anonymous bash bip85 bitcoin bitcoin-core bitcoin-wallet bootable-usb codex32 cryptography gtk install-script linux luks privacy python qrcode security shamir-secret-sharing tails tor
Last synced: 17 Mar 2025
https://github.com/jay-johnson/owasp-jenkins
Want to test your applications using the latest OWASP security toolchains and the NIST National Vulnerability Database using Jenkins, Ansible and docker? :whale: :shield: :lock:
ansible c-sharp dependency-checker django docker jenkins national-vulnerability-database node nvd owasp python react ruby-on-rails security security-automation security-testing security-vulnerability tensorflow vue zap
Last synced: 06 Oct 2025
https://github.com/m-mizutani/octovy
Trivy based vulnerability management service
github-app golang security typescript vulnerability-scanners
Last synced: 02 Sep 2025
https://github.com/m1/go-generate-password
Password generator written in Golang, usable as a CLI or Go library. Provides options for human readable and accessibility friendly passwords.
go go-library golang golang-library hacktoberfest password password-generating password-generator security
Last synced: 04 Jul 2025
https://github.com/openziti/ziti-sdk-swift
An OpenZiti SDK for Swift
appsec end-to-end-encryption netsec nsurlprotocol objective-c openziti sdk security swift urlprotocol zero-trust zero-trust-network zero-trust-network-access zero-trust-security ziti ziti-sdk ztna
Last synced: 17 Jan 2026
https://github.com/virtee/sev-snp-measure
Calculate AMD SEV/SEV-ES/SEV-SNP measurement for confidential computing
attestation confidential-computing security
Last synced: 07 Sep 2025
https://github.com/slowmist/vechain-core-nodes-security-checklist
VeChain core nodes security checklist(唯链核心节点安全执行指南)
blockchain checklist hacking security vechain vechain-thor
Last synced: 15 Feb 2026
https://github.com/ZeroChaos-/blue_hydra
Blue Hydra
bluetooth bluetooth-le bluetooth-low-energy bluez security security-tools
Last synced: 12 Jul 2025
https://github.com/wazuh/wazuh-splunk
Wazuh - Splunk App
compliance file-integrity-management gdpr ids intrusion-detection log-analysis loganalyzer monitoring openscap ossec pci-dss policy-monitoring security security-awareness security-hardening splunk vulnerability-detection wazuh
Last synced: 08 Sep 2025
https://github.com/browserstack/enigma
Access management tool
access-control access-management access-management-system compliance identity-management security user-management
Last synced: 09 Apr 2025
https://github.com/faizann24/phishytics-machine-learning-for-phishing
Machine Learning for Phishing Website Detection
artificial-intelligence bpe cybersecurity data-science machine-learning phishing phishing-detection random-forest security security-tools tfidf
Last synced: 14 Jul 2025
https://github.com/lazy-actions/gitrivy
GitHub Issue + Trivy Action
docker github-actions security trivy typescript
Last synced: 13 May 2025
https://github.com/jpcertcc/lazarus-research
Lazarus analysis tools and research report
Last synced: 05 Apr 2025
https://github.com/ezequieljuliano/security4delphi
Enables and use of the concept of security in your Delphi applications
authentication authorization delphi library security security-aspect security-audit security-automation security-tools
Last synced: 20 Jan 2026
https://github.com/peg/rampart
Open-source firewall for AI agents. Policy engine that audits and controls what OpenClaw, Claude Code, Cursor, Codex, and any AI tool can do on your machine.
agent-security ai-agents ai-security audit-trail claude-code cli codex devtools golang ld-preload llm mcp openclaw policy-engine prompt-injection secure-ai-agents secure-openclaw security security-openclaw
Last synced: 06 May 2026
https://github.com/sdslabs/playctf
An Open Source CTF hosting platform
ctf ctf-challenges jeopardy-ctf-platform security
Last synced: 10 Mar 2026
https://github.com/frogsnot/concryptor
A gigabyte-per-second, multi-threaded file encryption engine. Achieves extreme throughput using a lock-free, triple-buffered io_uring pipeline, Rayon parallel chunking, and hardware-accelerated AEADs (AES-256-GCM / ChaCha20).
aead aes-gcm argon2 chacha20-poly1305 cli-tool cryptography encryption io-uring performance rust security zero-copy
Last synced: 09 Apr 2026
https://github.com/foxboron/ssh-tpm-ca-authority
SSH Certificate Authority with device attestation
attestation openssh security ssh tpm
Last synced: 27 Jul 2025
https://github.com/blokadaorg/fem
Blokada 5 for Android and iOS (repo moved).
adblocking dns privacy security vpn
Last synced: 16 Jul 2025
https://github.com/gosecure/break-fast-serial
A proof of concept that demonstrates asynchronous scanning for Java deserialization bugs
exploit java security serialization tool vulnerability
Last synced: 05 Apr 2025
https://github.com/gaurav-gogia/mutant
Mutant is an open-source, garbage-collected programming language that tries to enable security by default.
encryption go golang hacktoberfest metamorphism programming-language security
Last synced: 12 Jan 2026
https://github.com/kube-tarian/tarian
Protect your Cloud Native Applications running on Kubernetes from malicious attacks with pre-registered source code, pre-registered runtime processes monitoring, automated actions based on configure-actions, analytics, alerting and also sharing detections with community. Maybe save from Ransomware. Shift-Left your threat detection. Shift Right threat elimination.
anti-malware anti-virus antimalware antivirus antivirus-software cloudnative containers devsecops ebpf hacktoberfest kubernetes kubernetes-antimalware kubernetes-security microservices runtime-security security security-hardening security-tools shiftleft tarian
Last synced: 08 Mar 2026
https://github.com/tarcieri/ithos
A cryptographically verifiable access control and directory system for Linux servers
access-control authentication authorization blockchain capabilities credentials database delegation directory ed25519 grpc kerberos ldap pam password-server pki policy rust security x509
Last synced: 28 Mar 2025
https://github.com/echo-devim/xbackdoor
A tool for the persistent XSS exploitation with a focus for mobile web browsers
android backdoor mobile php remote-control security xss
Last synced: 27 Mar 2025
https://github.com/celenityy/ublock-origin-settings
My recommendations for the ultimate configuration of uBlock Origin :)
adblock adblock-list ads annoyances anti-fingerprinting filterlists metrics privacy privacy-protection security telemetry tracking ublock ublock-filters ublock-filters-rules ublock-list ublock-lists ublock-origin ublock-origin-filters
Last synced: 07 Mar 2026
https://github.com/70sh1/eddy
Simple, fast CLI file encryption tool
blake2b chacha20 cli cryptography decryption encryption encryption-decryption file go golang privacy scrypt security
Last synced: 23 Apr 2026
https://github.com/acuvity/minibridge
Make your MCP servers secure and production ready
acuvity mcp mcp-server modelcontextprotocol mtls security
Last synced: 21 Jan 2026
https://github.com/l-vo/sf_keycloak_example
Example of Symfony authentication with openid connect (Keycloak as identity provider)
authentication authenticators keycloak openid security symfony
Last synced: 08 Oct 2025
https://github.com/alibaba/sec-code-bench
SecCodeBench is a benchmark suite focusing on evaluating the security of code generated by large language models (LLMs).
benchmark datasets llm security
Last synced: 14 Oct 2025
https://github.com/stacklok/frizbee
Throw a tag at and it comes back with a checksum.
github-actions kubernetes security security-tools supply-chain
Last synced: 30 Jan 2026
https://github.com/david-palma/wifi-cracking
A guide to using the Aircrack-ng suite for cracking 802.11 WEP and WPA/WPA2-PSK keys, including techniques like packet sniffing and injection attacks to test Wi-Fi network security.
aircrack-ng education hack hacking infosec injection-attacks packet-sniffing practice security tutorial wep wifi wifi-cracking wireless-security wpa wpa2 wpa2-psk
Last synced: 31 Jan 2026
https://github.com/indra-labs/indra
Distributed Virtual Private Network Powered By Bitcoin Lightning
bitcoin distributed-systems lightning-network privacy privacy-enhancing-technologies security vpn
Last synced: 12 Jan 2026
https://github.com/Nix-Security-WG/nix-security-tracker
Web service for managing information on vulnerabilities in software distributed through Nixpkgs
nixpkgs security vulnerabilities
Last synced: 08 Aug 2025
https://github.com/spyoungtech/hikvision-recover
Command-line tool for generating recovery codes for Hikvision IP Cameras
hikvision ip-camera security security-vulnerability
Last synced: 21 Mar 2025
https://github.com/kljunowsky/CVE-2022-42889-text4shell
Apache commons text - CVE-2022-42889 Text4Shell proof of concept exploit.
apache bug-bounty bug-bounty-hunting bugbounty bugbounty-tool commons-text cve-2022-42889 exploit oneliner security security-tools
Last synced: 12 Jul 2025
https://github.com/passbolt/charts-passbolt
Helm charts to run Passbolt on Kubernetes. No strings attached charts to run the open source password manager for teams!
charts helm helm-chart high-availability kubernetes passbolt password-manager security
Last synced: 02 May 2025
https://github.com/e3prom/rvrrpd
A lightweight, fast, and highly secure VRRP daemon.
daemon freebsd high-availability linux network rust security virtual-routers vrrp vrrpv2-daemon
Last synced: 13 May 2025
https://github.com/secretlint/webextension
Detect secrets in your request/response using secretlint.
credentials secretlint secrets security webextension
Last synced: 10 Sep 2025
https://github.com/alulsh/docker-npmrc-security
.npmrc files are often used insecurely in Docker images. Use multi-stage builds or Docker build secrets to protect your .nrpmc files.
docker npm npmrc npmrc-files security
Last synced: 25 Apr 2025
https://github.com/gosecure/security-cheat-sheet
Minimalist cheat sheet for developpers to write secure code
cheatsheet dotnet security xss
Last synced: 04 Mar 2026
https://github.com/apurvsinghgautam/http-reverse-shell
An HTTP Reverse Shell in Python
http-server python reverse-shell security
Last synced: 12 Feb 2026
https://github.com/e3prom/rVRRPd
A lightweight, fast, and highly secure VRRP daemon.
daemon freebsd high-availability linux network rust security virtual-routers vrrp vrrpv2-daemon
Last synced: 07 Apr 2025
https://github.com/ozontech/dtrack-audit
OWASP Dependency Track API client for intergration into CI/CD pipeline
component-analysis security security-tools software-composition-analysis
Last synced: 10 Aug 2025
https://github.com/nitrokey/nitrokey-storage-firmware
Firmware for the Nitrokey Storage device
c device firmware gplv3 mass-storage-device nitrokey-stick-devices nitrokey-storage otp security smartcard-reader
Last synced: 28 Jul 2025
https://github.com/azathothas/arsenal
Hastly written Tools & Scripts for Personal Use Cases & Bug Bounties
bug-bounty bugbounty hacking recon recon-tools security security-tools tools
Last synced: 12 May 2025
https://github.com/Nitrokey/nethsm
Nitrokey NetHSM system software and firmware
cryptography hsm mirageos muen ocaml security unikernel
Last synced: 20 Jul 2025
https://github.com/r1b/CVE-2017-13089
PoC for wget v1.19.1
cve-2017-13089 docker security wget
Last synced: 12 Jul 2025
https://github.com/stytchauth/samlshield
SAML Shield is an open-source Node.js library that proactively validates and rejects malicious SAML assertions at the protocol level, providing drop-in protection against common SAML vulnerabilities without relying on upstream library patches.
Last synced: 05 Sep 2025
https://github.com/baroshem/nuxt-starter
Opinionated Nuxt Starter
a11y ci dockerfile e2e editorconfig image lighthouse-ci linter nuxt performance prettier security seo tailwindcss typescript unit-testing vue
Last synced: 21 Aug 2025
https://github.com/dmarc-viewer/dmarc-viewer
Django based web-app to visually analyze DMARC aggregate reports
analysis dmarc email security statistics
Last synced: 26 Mar 2025
https://github.com/jackaduma/threatreportextractor
Extracting Attack Behavior from Threat Reports
advanced-persistent-threat cyber-threat-intelligence cybersecurity deep-learning deeplearning graph graph-algorithms machine-learning machine-learning-algorithms natural-language-processing nlp nlp-machine-learning nlp-parsing security threat-analysis threat-intelligence
Last synced: 05 Mar 2026
https://github.com/jakartaee/security
Jakarta Security
authentication authorization security
Last synced: 07 May 2025
https://github.com/moloch--/cve-2016-1764
Extraction of iMessage Data via XSS
cve exploit imessage security vulnerability xss
Last synced: 18 Jul 2025
https://github.com/spatie/email-concealer
Conceal e-mail addresses in a string by replacing their domain
developer-tools email obfuscation security
Last synced: 02 Sep 2025
https://github.com/ysmood/whisper
A simple lib and tool to encrypt, decrypt data with Public-key cryptography.
cli cryptography decryption ecc encryption public-key-cryptography rsa security
Last synced: 28 Dec 2025
https://github.com/unclecheng-li/cybersecurity-daily
网络安全日报—每日推送;Daily updated report on cybersecurity hotspots
cybersecurity hacker-news html security vulnerability
Last synced: 24 Jun 2026
https://github.com/supertokens/supertokens-website
Frontend SDK for SuperTokens - for session management + automatically refreshing sessions
authentication authorization axios frontend jwt jwt-auth security supertokens supertokens-frontend typescript
Last synced: 24 Oct 2025
https://github.com/damienbod/aspnetcorecertificateauth
ASP.NET Core 3.1 Certificate Authentication Self Signed and Chained
aspnet-core aspnetcore authentication certificate chained powershell powershell-script security
Last synced: 28 Oct 2025
https://github.com/typicalhog/thcrypt
C++ console application that features unique (at least I think so) symmetric key based file encryption algorithm.
algorithm application base58 bytes character cipher cli console cpp cryptography decryption encryption encryption-algorithm file key lookup password security symmetric table
Last synced: 16 Jul 2025
https://github.com/damienbod/AspNetCoreCertificateAuth
ASP.NET Core 3.1 Certificate Authentication Self Signed and Chained
aspnet-core aspnetcore authentication certificate chained powershell powershell-script security
Last synced: 18 Apr 2025
https://github.com/SDA-SE/cluster-image-scanner
Discover vulnerabilities and container image misconfiguration in production environments.
image kubernetes scanning security security-tools
Last synced: 12 Jul 2025
https://github.com/aws-samples/example-permissions-boundary
This repository contains a sample IAM permissions boundary as a starting point for creating your own permissions boundary to meet the security needs of your organization. The IAM permissions boundary sample, when attached to an IAM role, allow it to perform all expected workload tasks without being able to modify the security of its environment.
Last synced: 16 Apr 2025
https://github.com/AikidoSec/firewall-node
Zen protects your Node app against attacks with one line of code. Get peace of mind— at runtime.
attack-defense firewall nodejs nosql-injection path-traversal rasp security shell-injection sql-injection
Last synced: 08 Mar 2025
https://github.com/reload/github-security-jira
Github Action for integrating Security Alerts with JIRA
actions jira security security-alerts
Last synced: 08 May 2025
https://github.com/jcsec-security/cosmwasm-audit-roadmap
Roadmap to get up to speed with CosmWasm smart contract audits and security vulnerabilities
audit blockchain bug bugbounty contract cosmos cosmossdk cosmwasm dapp defi hacking roadmap rust security smart smartcontract vulnerabilities
Last synced: 08 Jul 2025
https://github.com/jwilk/abmagick
abuse ImageMagick (or GraphicsMagick) to create arbitrary files
Last synced: 13 Mar 2026
https://github.com/hantsy/ee8-sandbox
Java EE 8/Jakarta EE 8 sandbox
bean-validation cdi glassfish javaee8 jaxrs jpa jsf jsonb jsonp microprofile mvc security
Last synced: 17 Mar 2025
