Security
Cybersecurity (security) includes controlling physical access to hardware as well as protection from attacks that come via network access, data injection, and code injection.
- GitHub: https://github.com/topics/security
- Wikipedia: https://en.wikipedia.org/wiki/Computer_security
- Aliases: security-tools, security-vulnerability, security-audit,
- Last updated: 2026-06-25 00:24:17 UTC
- JSON Representation
https://github.com/scipag/PowerShellUtilities
PowerShellUtilities provides various utility commandlets.
exploitation kleptokitty mimikatz penetration-testing powershell-script psexec security wmi wmic
Last synced: 11 Jul 2025
https://github.com/justinmayer/django-elevate
Protect your sensitive Django views by requiring re-authentication
authentication django python security
Last synced: 17 Mar 2025
https://github.com/banzaicloud/chartsec
Helm Chart security scanner
helm helm-chart security security-scanner
Last synced: 25 Feb 2026
https://github.com/resurrecting-open-source-projects/dnsmap
Scan for subdomains using bruteforcing techniques
dns dns-server pentest pentest-tool security security-scanner security-tools
Last synced: 21 Oct 2025
https://github.com/ushelp/easyshiro
基于 RBAC 模型功能全面的 Shiro 安全集成&简化&扩展组件。Shiro integration & simplifies & Extension component based RBAC
captcha easyshiro-shiro java java-security javaee login-lock rbac rbac-management redis-session rights-management security shiro shiro-redis shiro-redis-cache shiro-redis-session spring spring-shiro user-controls
Last synced: 11 Oct 2025
https://github.com/nico3333fr/htaccess-useful
htaccess useful
htaccess performance quality security
Last synced: 21 Feb 2026
https://github.com/wazuh/wazuh-puppet
Wazuh - Puppet module
compliance elasticsearch file-integrity-management hacktoberfest hacktoberfest-accepted hacktoberfest2021 incident-response intrusion-detection log-analysis loganalyzer monitoring ossec pci-dss policy-monitoring puppet security security-awareness security-hardening vulnerability-detection wazuh
Last synced: 05 Mar 2026
https://github.com/nasa/scrub
SCRUB is a platform for orchestration and aggregation of static code analysis tools.
code-quality code-review python security static-analysis
Last synced: 26 Jan 2026
https://github.com/peterdavehello/dnslow.me
Secure DNS(also known as DNS firewall & protective DNS) with ad-blocking, threat protection, and fully encryption support for enhanced privacy and security.
adblocker dns dns-firewall dns-over-https dns-over-quic dns-over-tls dns-server dnscrypt doh doq dot encrypted-dns firewall hacktoberfest privacy security
Last synced: 04 Feb 2026
https://github.com/hanover-computing/got-ssrf
Protect untrusted requests from SSRF
client got http http-client https https-client https-proxy javascript nodejs npm-package security ssrf
Last synced: 05 Apr 2025
https://github.com/croz-ltd/nrich
Nrich is a Java library developed at CROZ whose purpose is to make development of applications on JVM a little easier.
croz csrf encryption jackson java jpa nrich query search security spring-boot spring-framework validation
Last synced: 07 Apr 2025
https://github.com/kaiiyer/rajappan
An All in one Project for Digital Privacy. A step towards a PRIVATE FUTURE
articles blog bugbounty cheatsheet conference cybersecurity differential-privacy hacktoberfest hacktoberfest2022 internet-freedom podcasts privacy rajappan security security-tools threat-hunting threat-intelligence toolkit tools
Last synced: 16 Jan 2026
https://github.com/OsbornePro/BTPS-SecPack
This repository contains a collection of PowerShell tools that can be utilized to protect and defend an environment based on the recommendations of multiple cyber security researchers at Microsoft. These tools were created with a small to medium size enterprise environment in mind as smaller organizations do not always have the type of funding available to overly spend on security. The goal of this project is to help add value to an smaller organizations security by creating more visibility for the average IT Administrator. Organizations with 1,000’s of devices may find that this entire suite does not apply to them.
active-directory alert alerting alerts blueteam cmdlets cybersecurity defense defense-in-depth microsoft powershell protections ps1 security security-tools smaller-organizations wef windowseventforwarding windowsevents winrm
Last synced: 12 Jul 2025
https://github.com/abourget/secrets-bridge
Secrets bridge - Secure build-time secrets injection for Docker
docker golang security ssh-agent
Last synced: 30 Jun 2025
https://github.com/spapas/etsd
Transmit sensitive data encrypted across your organization!
crypto encryption pgp security
Last synced: 11 Aug 2025
https://github.com/deepsourcecorp/shifty
Shifty is a tiny zero-dependency secrets generator, built for the web using TypeScript.
password secrets security web-cryptography-api
Last synced: 28 Apr 2025
https://github.com/hinqiwame/soinjector
Linux shared object injector written in pure C
c cli debugging dynamic-linking injection linux process-manipulation security
Last synced: 27 Jan 2026
https://github.com/aydinnyunus/gatecracker
bypass door door-lock golang python python3 rest rest-api restful-api security security-tools streamlit
Last synced: 29 Apr 2025
https://github.com/jenkinsci/dependency-track-plugin
Main repository for the official Dependency-Track Jenkins plugin
appsec bom builder component-analysis jenkins jenkins-pipeline jenkins-plugin owasp report sbom security
Last synced: 08 Apr 2025
https://github.com/pelock/crackmez3s-ctf-crackme-tutorial
How to write a CrackMe for a CTF competition. Source code, technical explanation, anti-debugging and anti reverse-engineering tricks.
anti-debugging article capture-the-flag cpp crackme crackmes ctf ctf-challenges ctf-competition ctf-competitions ctf-writeups hacking redteam reverse-engineering security
Last synced: 30 Jul 2025
https://github.com/wiomoc/mosquitto-jwt-auth
Mosquitto Auth Plugin which enables authentication via JWTs and authorisation via ACLs stored in JWT claims
Last synced: 27 Jul 2025
https://github.com/valayDave/tell-me-your-secrets
Find secrets on any machine from over 120 Different Signatures.
aws-accesskeys find-secrets python3 secret-files secrets-detection security security-audit ssh-keys
Last synced: 27 Sep 2025
https://github.com/eqstlab/cve-2024-46538
PfSense Stored XSS lead to Arbitrary Code Execution exploit
cve cve-2024-46538 exploit pfsense php poc proof-of-concept security vulnerability
Last synced: 25 Mar 2025
https://github.com/netflix-skunkworks/skunky
Marking instances dirty since 2018
Last synced: 05 Jul 2025
https://github.com/valaydave/tell-me-your-secrets
Find secrets on any machine from over 120 Different Signatures.
aws-accesskeys find-secrets python3 secret-files secrets-detection security security-audit ssh-keys
Last synced: 27 Oct 2025
https://github.com/jvoisin/compiler-flags-distro
Usage of enabled-by-default hardening-related compiler flags across Linux distributions
Last synced: 03 Jan 2026
https://github.com/authzed/examples
A collection of examples for SpiceDB users
authorization authzed docker-compose documentation example fine-grained-access-control fine-grained-authorization kubernetes security security-tools spicedb spicedb-client zanzibar
Last synced: 23 Apr 2025
https://github.com/jetify-com/envsec
Securely store environment variables and secrets in the cloud of your choice.
aws dotenv env environment environment-variables envsec gcp go golang jetpack-io secret-distribution secret-management secrets secrets-management security security-tools
Last synced: 22 Apr 2025
https://github.com/fkie-cad/butterfly
LibAFL components for stateful fuzzing
fuzzing libafl security stateful
Last synced: 06 May 2025
https://github.com/ibm/ace-riscv
Assured confidential execution (ACE) implements VM-based trusted execution environment (TEE) for RISC-V with focus on a formally verified and auditable security monitor.
confidential-computing coq formal-verification refinedrust riscv rust-lang security trusted-computing trusted-execution-environment virtualization
Last synced: 02 May 2025
https://github.com/0xbf00/simbple
macOS Sandbox Profile Language (SBPL) Interpreter
Last synced: 24 Dec 2025
https://github.com/leobenkel/soteria
Plugin to block compilation when unapproved dependencies are used or code styling does not comply.
sbt sbt-plugin scala security security-automation security-tools security-vulnerability
Last synced: 22 Jul 2025
https://github.com/juspay/hyperswitch-card-vault
Hyperswitch Card Vault is an open-source sensitive information storage system built on Rust.
beginner-friendly finance open-source postgresql rust security
Last synced: 12 Sep 2025
https://github.com/edoardottt/msc-cybersecurity-sapienza
Master of Science in Cybersecurity, Sapienza University of Rome.
course courses cybersecurity degree hacking master-of-all-science pentesting programming sapienza sapienza-student sapienza-university security uniroma1 university university-assignment university-course university-project
Last synced: 21 Mar 2025
https://github.com/jorianwoltjer/practical-ctf
Gitbook: A big collection of my notes for Capture The Flag (CTF) challenges or Hacking in general
book capture-the-flag hacking markdown notes security
Last synced: 07 Mar 2026
https://github.com/imperva/terraform-provider-incapsula
This package is a plugin for Terraform, and is designed to be used to auto-provision sites in Incapsula via Incapsula’s API from the terraform cli/yaml configurations.
imperva security terraform waf
Last synced: 26 Apr 2026
https://github.com/sentinel-one/ai-siem
A community‑driven, SentinelOne‑assisted library of parsers, dashboards, detections & response playbooks that supercharge the Singularity Platform.
Last synced: 27 Apr 2026
https://github.com/aspnetrun/learn
The best path to .Net Microservices Udemy Learning Path. .Net world evolving to the microservices and Cloud-native systems to provide rapid change, large scale, and resilience cutting-edge systems. Cloud-native microservices empower organizations to build and run scalable applications in modern, dynamic environments such as public, private, and hybrid clouds.
cloud-native deployment grpc microservices security
Last synced: 22 Apr 2025
https://github.com/philips-labs/slsa-provenance-action
Github Action implementation of SLSA Provenance Generation
github-action github-actions hacktoberfest in-toto provenance security security-tools slsa software-supply-chain
Last synced: 06 Apr 2025
https://github.com/iammukeshm/jwt-authentication-golang
Implementing JWT Authentication in Golang REST APIs and securing it with Authentication Middleware.
go golang golang-jwt jwt jwt-authentication security
Last synced: 01 May 2025
https://github.com/reconmap/rest-api
REST API backend for Reconmap
api cve hacktoberfest ipe nmap pentesting reconnaissance secdevops security vulnerability
Last synced: 09 Apr 2025
https://github.com/hotcakex/privacy-anonymity-compartmentalization
This GitHub repository explores the topics of privacy, anonymity and compartmentalization. These concepts are interrelated and essential for protecting one’s identity, data and online activities from unwanted surveillance, tracking and interference.
anonymity censorship compartmentalization container privacy sandbox security separation severance tor windows
Last synced: 16 Mar 2025
https://github.com/tuxxy/iacr-eprint-mirror
Mirror of all PDFs from the IACR's eprint
cryptography mathematics research security
Last synced: 29 Aug 2025
https://github.com/yezz123/Athena
Test your Security Skills, and Clean Code Development as a Pythonist, Hacker & Warrior 🥷🏻
athena flask hacking linux owasp pentesting python security shell sqlite3 vulnerability
Last synced: 29 Apr 2025
https://github.com/binarymist/holisticinfosec-for-webdevelopers-fascicle0
:books: Overview :lock: Tooling :lock: Process :lock: Physical :lock: People :books:
agile book books devops devsecops hacking infosec people people-security people-test physical physical-security physical-test security security-audit security-review security-testing social-engineering threat-modeling websecurity
Last synced: 02 Jan 2026
https://github.com/wravoc/harden-freebsd
Updated for 14.0. A half days worth of work can be done in seconds, with comprehensive logging, togglable secure/performance settings, and backups. Implements a broad, time-tested, thoroughly researched, cohesive group of hardening settings for FreeBSD. Any directive can be set, re-set, for administering, tuning, jails. Verify in /vendor.
bsd cybersecurity freebsd kernel risk-management security security-hardening
Last synced: 06 Apr 2025
https://github.com/zeek/package-manager
A package manager for Zeek
bro network-monitoring nsm package-manager packages pcap plugin-manager security
Last synced: 13 Jun 2025
https://github.com/duyfken/alternative-front-ends
Privacy-respecting front-ends for popular platforms (e.g. YouTube, Reddit, Twitter, etc.)
alternative-frontends anonymity decentralized degoogle frontend privacy security security-tools self-hosted tor tracking web
Last synced: 27 Mar 2026
https://github.com/pelock/autoit-obfuscator
AutoIt Obfuscator lets you protect AutoIt script source code against analysis, reverse engineering & decompilation using advanced obfuscation techniques and polymorphic encryption.
autoit autoit-script autoit-source autoit3 autoit3-script cracking debugging decompilation mangle obfuscate obfuscation obfuscation-options obfuscator reverse-engineering security
Last synced: 30 Jul 2025
https://github.com/springload/wagtailenforcer
The Wagtail arm of the law - enforce security protocols on your Wagtail site
axes security security-protocol wagtail
Last synced: 31 Jul 2025
https://github.com/cookpad/deepalert
Serverless SOAR (Security Orchestration, Automation and Response) framework for automatic inspection and evaluation of security alert
aws go security serverless soar
Last synced: 13 Aug 2025
https://github.com/codetyio/codety-scanner
Codety Scanner is a comprehensive code scanner designed to detect code issues for 30+ programming languages and IaC frameworks. It embeds more than 6,000 code analysis rules and can detect code smells, vulnerable code, secrets in the code, performance issues, style violations, and more.
code code-scanner code-scanning codety scanner security security-scanner
Last synced: 27 Feb 2025
https://github.com/ffmancera/pentesting-multitool
Different utility scripts for pentesting and hacking.
dns-record dnspython free-software network python python3 scapy security security-audit security-scanner security-tools shodan
Last synced: 04 May 2025
https://github.com/keikoproj/iam-manager
AWS IAM role management for K8s cluster using kube builder "Operator" framework
aws crd-controller iam iam-manager iam-roles irsa kubebuilder kubernetes security
Last synced: 28 Jan 2026
https://github.com/expressvpn/xoth_location_tracker_investigation
Investigation Xoth: Location Trackers
privacy research-data security
Last synced: 16 Aug 2025
https://github.com/james7132/hourai
The world's most advanced security and moderation bot for Discord.
automation discord-bot moderation music security
Last synced: 28 Apr 2025
https://github.com/dcso/balboa
server for indexing and querying passive DNS observations
api dns golang graphql graphql-api hacktoberfest monitoring passive passive-dns passivedns pdns rocksdb security suricata
Last synced: 27 Oct 2025
https://github.com/antrea-io/theia
Network observability for Kubernetes
kubernetes network-analytics network-observability networking networkpolicy security
Last synced: 07 Apr 2025
https://github.com/bcsecorg/ethereum_devp2p_wireshark_dissector
This is Ethereum devp2p protocol dissector plugin for wireshark.
blockchain blockchain-technology devp2p ethereum rlp security wireshark-dissector wireshark-dissector-plugin wireshark-plugin
Last synced: 11 May 2025
https://github.com/qlyoung/lagopus
Distributed fuzzing platform
cluster fuzzing kubernetes security
Last synced: 21 Mar 2025
https://github.com/seibert-media/teamvault
Keep your company's passwords behind the firewall
enterprise password-manager python security
Last synced: 18 Feb 2026
https://github.com/KnightmareVIIVIIXC/AIO-Firebog-Blocklists
Supercharge your network privacy and security with DNS blocklists from The Firebog • Daily updates shield you from ads, trackers, malware, spam and more • Copy and Paste a RAW link into DNS applications and adblock browser extensions, or import it into your hosts file for a safer world wide web experience
adblock adblock-plus adguard adguard-home ads blocklist crypto dns dnsmasq firebog hosts malicious nsfw phishing pi-hole privacy security tracking ublock-origin
Last synced: 27 Mar 2025
https://github.com/slowmist/ontology-triones-service-node-security-checklist
Ontology Triones Service Node security checklist(本体北斗共识集群安全执行指南)
blockchain checklist hacking ontology security
Last synced: 26 Jun 2025
https://github.com/mrlew1s/BrokenSMTP
Small python script to look for common vulnerabilities on SMTP server.
bugbounty pentest pentest-scripts pentest-tool pentesting python python3 security security-tools smtp spoofing userenumeration vulnerabilities vulnerability
Last synced: 12 Jul 2025
https://github.com/slowmist/Ontology-Triones-Service-Node-security-checklist
Ontology Triones Service Node security checklist(本体北斗共识集群安全执行指南)
blockchain checklist hacking ontology security
Last synced: 11 Jul 2025
https://github.com/sysflow-telemetry/sysflow
SysFlow documentation and issues tracker
cloud cloud-native docker edge-detection elk kubernetes mitre-attack monitoring security telemetry
Last synced: 08 May 2025
https://github.com/secrethub/actions
Load secrets into GitHub Actions
devops github-actions hacktoberfest secret-management secrets security
Last synced: 15 Dec 2025
https://github.com/shivam141296/android-firewall
Basic netguard app from playstore ,reduced to its minimum level for vpn and firewall logic
android firewall internet listview networking security vpn-service
Last synced: 09 Jul 2025
https://github.com/yezz123/athena
Test your Security Skills, and Clean Code Development as a Pythonist, Hacker & Warrior 🥷🏻
athena flask hacking linux owasp pentesting python security shell sqlite3 vulnerability
Last synced: 07 Oct 2025
https://github.com/beerisgood/security-link-collection
a collection of links on various security topics
badness-enumeration facts insecurity privacy real-talk security
Last synced: 27 Jan 2026
https://github.com/shanepeckham/aks_security
azure azure-active-directory kubernetes rbac-management security
Last synced: 24 Apr 2025
https://github.com/enkomio/misc
A repository with simple projects created for testing/learning purpose
programming reverse-engineering security utility
Last synced: 22 Apr 2025
https://github.com/geraldohomero/best-foss-alternatives
List of the best Free and Open Source Software alternatives
alternatives apps best foss list opensource privacy privacy-tools security vitrinedev
Last synced: 05 Mar 2026
https://github.com/diver-osint-ctf/writeups
Official Writeups for DIVER OSINT CTF
Last synced: 05 Apr 2026
https://github.com/jonathancross/jc-docs
📝 Tools & Documentation from Jonathan Cross
bitcoin bitcoin-mobile-privacy git gpg mac-osx pgp security tor yubikey-neo
Last synced: 20 Jun 2025
https://github.com/mageplaza/magento-2-security
Magento 2 Security extension FREE. Security extension gives store owners the ability to detect the IP addresses that are intentionally attacking their store at any given time. Therefore, they have timely measures to prevent this issue such as blocking those IP addresses or sending warning emails to store owners.
blacklist magento magento-2-extension magento-2-security magento2 magento2-extension magento2-extension-free magento2-module magento2-module-bootstrap magento2-module-free mageplaza-security security whitelist
Last synced: 04 Apr 2025
https://github.com/guard0-ai/g0
The control layer for AI agents. 1,200+ rules, 12 domains, 10 frameworks, 4,000+ adversarial payloads. Discover. Assess. Test. Monitor. Comply.
ai ai-agents governance monitoring security
Last synced: 07 Apr 2026
https://github.com/ariary/TrojanSourceFinder
🔎 Help find Trojan Source vulnerability in code 👀 . Useful for code review in project with multiple collaborators (CI/CD)
ci-cd code-review golang scanner security trojan
Last synced: 11 Jul 2025
https://github.com/ivan-sincek/xss-catcher
Simple API for storing all incoming XSS requests and various XSS templates.
api blind-xss bug-bounty cors cross-origin-resource-sharing cross-site-request-forgery cross-site-scripting csrf ethical-hacking javascript offensive-security penetration-testing php red-team-engagement security web web-penetration-testing xss
Last synced: 09 Oct 2025
https://github.com/arthaud/formatstring
Format string exploitation helper
exploitation formatstring python security
Last synced: 14 Apr 2025
https://github.com/Erdemstar/VulnerableApp4APISecurity
This repository was developed using .NET 7.0 API technology based on findings listed in the OWASP 2019 API Security Top 10.
apisecurity appsec devsecops docker docker-compose infosec pentest pentesting security
Last synced: 10 May 2025
https://github.com/tsotimus/vite-plugin-csp-guard
A vite plugin for your content security policy
csp security spa vite vite-plugin
Last synced: 05 Mar 2025
https://github.com/adorsys/datasafe
Datasafe - flexible and secure data storage and document sharing using cryptographic message syntax for data encryption
cloud-storage cryptographic-message-system cryptography data-encryption document-storage encrypted-store file-sharing graal-native java library privacy s3-encryption security vault
Last synced: 26 Oct 2025
https://github.com/microsoft/authjanitor
Manage the lifecycle of application tokens, keys, and secrets in Azure
application-lifecycle-management application-secret application-security azure azure-functions blazor key-vault secrets secrets-management security
Last synced: 10 Oct 2025
https://github.com/deislabs/image-layer-provenance
Container image provenance spec that allows tracing CVEs detected in registry images back to a CVE's source of origin.
container container-image containerization containers cve docker oci oci-image oras provenance security security-audit security-tools slsa slsaprovenance vulnerabilities vulnerability vulnerability-assessment vulnerability-management
Last synced: 06 Feb 2026
https://github.com/paulveillard/cybersecurity-threat-intelligence
An ongoing & curated collection of awesome software best practices and remediation techniques, libraries and frameworks, E-books and videos, Technical guidelines and important resources about Threat Intelligence.
cyberattack cybersecurity cyberthreatintelligence dashboard intel maps security threat-detection-policy threat-hunting threat-intelligence threat-intelligence-data threat-intelligence-database threat-intelligence-platform threat-response
Last synced: 07 Feb 2026
https://github.com/mrofisr/gf-patterns
A collection of useful grep patterns and tools by Tomnomnom for extracting specific values from text.
Last synced: 29 Jan 2026
https://github.com/ariary/trojansourcefinder
🔎 Help find Trojan Source vulnerability in code 👀 . Useful for code review in project with multiple collaborators (CI/CD)
ci-cd code-review golang scanner security trojan
Last synced: 26 Apr 2025
https://github.com/padok-team/git-secret-scanner
Find secrets in git repositories with TruffleHog & Gitleaks
auditing credentials git scan secrets security
Last synced: 07 Apr 2025
https://github.com/bgalek/safe-svg
Simple and lightweight library that helps to validate SVG files in security manners.
hacktoberfest security svg xss xss-detection
Last synced: 10 Mar 2026
https://github.com/edoardottt/comptia-security-notes
CompTIA Security+ SY0-601 notes (passed 788 points)
certification comptia comptia-notes comptia-security comptia-security-exam hacking infosec notes security security-notes syo-601
Last synced: 11 Feb 2026
https://github.com/servicenow/doomarena
DoomArena is a Framework for Testing AI Agents Against Evolving Security Threats
ai ai-safety attack browsergym defense llm machine machine-learning red-teaming security taubench web-agents
Last synced: 09 Oct 2025
